Information Security Architect

What you will do

At Johnson Controls, we’re seeking a skilled Information Security Architect to join our Global Information Security team. In this role, you’ll collaborate with cybersecurity, IT, and business teams to design and implement robust security architectures, standards, and controls that protect our systems and data. You’ll play a key role in ensuring compliance, assessing security posture, and guiding secure technology deployments across the enterprise.

How you will do it

Design & Architecture

• Develop and implement enterprise-wide security reference architectures.

• Ensure alignment with global security standards and policies.

• Approve final designs and validate builds for compliance.

• Follow the Security Posture Assessment process, which involves research, validation, and evaluation of all new initiatives, with phase gates reviews presented to all stakeholders during the process

Security Assessment & Compliance

• Conduct security posture assessments for new initiatives.

• Identify and mitigate risks in third-party solutions.

• Ensure adherence to regulatory and internal security requirements.

Collaboration & Consulting

• Partner with service management and stakeholders to gather requirements.

• Act as a trusted advisor to business units and IT teams.

• Provide expert input on security standards, roadmaps, and infrastructure.

Documentation & Communication

• Create high-quality technical documentation, white papers, and presentations.

• Communicate complex security concepts clearly to technical and non-technical audiences.

Continuous Improvement

• Stay current on emerging threats, vulnerabilities, and technologies.

• Recommend improvements in network, identity, and infrastructure security.

What we look for

Required

• 3+ years of experience in information security, including security applications.

• Strong understanding of attacker techniques, threat landscapes, vulnerability management, and security monitoring.

• Broad technical expertise in:

  • Endpoint and platform security (Windows, Linux, mobile)

  • Identity and access management (IAM), PKI, encryption/tokenization, data protection

  • Cloud security (AWS, Azure, GCP)

  • Network security (web proxies, reverse proxies, load balancing, IDS/IPS, firewall, wireless, and remote connectivity, TCP/IP protocol, and remote access security techniques/products)
     

• Excellent communication skills—both written and verbal.

• Ability to work independently and collaboratively in a global team.

• High integrity and discretion in handling confidential matters.

Preferred 

• Bachelor’s degree in Computer Science, Engineering, or a related field (or equivalent experience).

• Familiarity with compliance frameworks (PCI-DSS, HIPAA, FISMA, SOX).

• Overview of NIST standards and security architecture frameworks (e.g., SABSA, TOGAF).

• Experience in security operations or incident analysis.

• Certifications

  • Certified Information Systems Security Professional (CISSP) 

  • Certified Information Systems Security Professional - Information Systems Security Architecture Professional (CISSP-ISSAP)

  • Certified Cloud Security Professional (CCSP)

  • Certified Information Security Manager (CISM)

  • Certified Information Systems Auditor (CISA)

  • Certified Ethical Hacker (CEH)

  • Cisco Certified Network Associate Security (CCNA Security)

  • Cisco Certified Network Associate (CCNA)

  • Cisco Certified Network Professional Security (CCNP Security)

  • Cisco Certified Network Professional (CCNP)

  • Server Platform Certifications (Microsoft, Linux)

About Us

Johnson Controls, a global leader in thermal management, mission-critical building systems, energy efficiency, and decarbonization, helps customers use energy more productively, reduce carbon emissions, and operate with the precision and resilience required in rapidly expanding industries such as data centers, healthcare, pharmaceuticals, advanced manufacturing, and higher education.

For more than 140 years, Johnson Controls has delivered performance where it really matters. Backed by advanced technology, lifecycle services and an industry-leading field organization, we elevate customer performance, turn goals into real-world results and help move society forward.

The initial basic salary for this position will be in the range of 16 000 to 19 000 PLN per month. The final offer will reflect your experience, skills, and qualifications relevant to the role. We are committed to fair, equitable, and gender-neutral pay practices.

#LI-BB1

#LI-Hybrid