Pracovní místa it audit

What you will do

Join the Johnson Controls Global Information Security team to enhance our cybersecurity capabilities. As a Data Protection Engineer, you'll be a key expert in cybersecurity and data security, collaborating across disciplines to analyze Information Protection Risk trends. Reporting to the Director of Information Protection, you'll plan and execute initiatives with urgency, showcasing your drive, intelligence, and energy.

How you will do it

• Collaborate with business stakeholders to understand and document the lifecycle of critical and sensitive information, articulating the business purposes for information handling, and detailing the people, processes, and technology involved.

• Create various documents, including data and process flow diagrams and process narratives that focus on data handling and related technology components.

• Conduct regular assessments against Information Protection policies, standards, and guidelines to assist personnel in identifying information at risk or out of compliance.

• Provide recommendations and implement changes to enhance the classification and protection of high-value information assets while minimizing impact on end-users.

• Develop and maintain policies, standards, processes, and guidelines for the Information Protection Program and promote awareness among internal stakeholders.

• Help create training materials and educate information owners on information protection requirements.

• Work with legal, privacy, audit, and regulatory teams to periodically review policies, procedures, and program compliance.

• Foster strong relationships with IT leadership and business process owners.

• Maintain tools used for classifying information assets.

• Effectively communicate information security compliance status and progress to leadership and other stakeholders.

What we look for

Required

• Solid experience in data security, data protection, data governance, or data privacy.

• Experience in implementing data protection and/or data governance policies, standards, processes, and support models to achieve business objectives.

• Understanding of Data Privacy and Security Regulations, including General Data Protection Regulation (GDPR) and China Cybersecurity Law.

• Knowledge of data protection and data governance capabilities, such as data classification, data discovery, Data Loss Prevention, masking, encryption, and anomaly detection.

• Experience in process design, implementation, and improvement.

• Strong analytical skills to identify, quantify, and effectively communicate business risks related to data protection.

• A willingness and ability to learn new technologies.

• Experience working collaboratively with cross-functional teams.

• A self-starter with strong interpersonal, written, and verbal skills, with a proven ability to educate, inform, persuade, and achieve understanding and consensus across different functions, levels, and customers.

• Ability to work independently with minimal supervision.

Preferred

• Bachelor’s degree in a relevant field.

• Experience directly supporting business units on Cybersecurity issues.

• Understanding of Data Privacy and Security Regulations California Consumer Privacy Act (CCPA) and Payment Card Industry Data Security Standard (PCI).

• Ability to collaborate with business leaders to identify and align feasible solutions to data protection requirements and challenges.

Our culture

At Johnson Controls you’ll have the opportunity to work on some of the most exciting projects in today’s market. Our hardworking people empower us, and we believe in being part of a team that is open, collaborative, results-oriented, hardworking and above all fun.

We believe that diversity and inclusion matter and make a difference. By embracing the true value of diversity and inclusion, getting comfortable with having crucial conversations, and valuing different perspectives, we will be one of the most desirable places to work.

#LI-MP1

#LI-Hybrid