This job posting isn't available in all website languages

Data Protection Analyst

Information Systems
WD30101429275 Requisition #

The Johnson Controls Global Information Security (GIS) team is undergoing a transformation and expansion as Johnson Controls increases its cybersecurity resources and capabilities in order to address the ever-changing cybersecurity threat landscape.  

What you will do

The successful candidate will be a cybersecurity and data security subject matter expert capable of partnering across functional disciplines to bring clarity to measurements and trends within and affecting the Information Protection Risk landscape.  This role reports into the Director, Information Protection.

The candidate will be able to articulate thoughts clearly, plan initiatives, and execute with appropriate urgency. The candidate will demonstrate drive, intelligence, maturity, and energy and will be a proven change agent. 

How you will do it

  • Continually partner with business stakeholders to understand and document the lifecycle of critical and sensitive information and be able to articulate the business purposes for information handling, and the people, processes and technology involved.
  • Create various documents, such as data and process flow diagrams, process narratives focusing on data handling and related technology components supporting those processes.
  • Conduct regular assessments against Information Protection policies, standards and guidelines to assist personnel in identifying information at risk or out of compliance.
  • Provide recommendations and implement changes to improve the classification and protection of high value information assets while minimizing impact to end-users.
  • Develop and maintain policies, standards, processes and guidelines for the operation of the Information Protection Program and broadly socialize with internal stakeholders.
  • Help develop training materials and educate information owners on information protection requirements.
  • Work with legal, privacy, audit and regulatory teams to periodically review policies, procedures and program compliance.
  • Foster strong relationships with IT leadership and business process owners.
  • Responsible for maintaining the tools used to classify information assets.
  • Effectively communicate information security compliance status and progress to leadership and other stakeholders.
  • This job description indicates the general nature and level of work expected of the incumbent.  It is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities required of the incumbent.  Incumbent may be required to perform other related duties.

What we look for

  • Minimum of six (6) years of experience in data security, data protection, data governance or data privacy
  • Experience implementing data protection and/or data governance policies, standards, processes and support models to achieve business objectives.
  • Understanding of Data Privacy and Security Regulations including GDPR, China Cybersecurity Law, CCPA and PCI.
  • Understanding of data protection and data governance capabilities, such as data classification, data discovery, DLP, masking, encryption and anomaly detection.
  • Experience with process design, implementation and improvement.
  • Ability to work with business leaders to identify and align on feasible solutions to data protection requirements and challenges.
  • Strong analytical skills with the ability to identify, quantify and effectively raise business risks related to data protection.
  • Ability and desire to learn new technologies
  • Experience working collaboratively with cross-functional teams.
  • Self-starter with strong interpersonal, written and verbal skills with proven ability to educate, inform, persuade, and achieve understanding and consensus on needs across different functions, levels and customers.
  • Ability to work independently with little or no supervision
  • Bachelor’s degree in discipline related to existing job experience. Equivalent experience in lieu of a degree will be considered.
  • Past experience directly supporting business units on Cybersecurity issues strongly preferred.


Previous Job Searches

My Profile

Create and manage profiles for future opportunities.

Go to Profile

My Submissions

Track your opportunities.

My Submissions

Similar Listings

Ireland, Ireland, Cork

📁 Information Systems

Requisition #: 2011477

Ireland, Ireland, Cork

📁 Information Systems

Requisition #: 2011620

Ireland, Ireland, Cork

📁 Information Systems

Requisition #: WD30102610296

View All Jobs