Honeywell is a Fortune 100 company with global sales surpassing $40B and has been one of Fortune’s Most Admired Companies for over a decade. Through innovation the company brings together the physical and digital world to tackle some of the toughest societal and business problems – making the world a more productive, safe and sustainable place. The business is organized into five primary groups: Aerospace; Building Technologies; Performance Materials and Technologies; Safety and Productivity Solutions; and the Connected Enterprise.
Honeywell Industrial Automation is a global leader for industrial control and smart energy systems. The Security Architect will be responsible to drive Secure SDLC practices, cloud security architecture, design, & configuration and process improvements within our products.
As a Advanced Cybersecurity Architect/Engineer here at Honeywell, you will play a crucial role in designing and implementing advanced cybersecurity solutions to protect our critical assets. You will collaborate with cross-functional teams and senior leadership to develop and execute our cybersecurity strategy, ensuring the highest level of protection for our digital infrastructure. Your expertise and leadership will contribute to the secure and resilient future of our organization.
KEY RESPONSIBILITIES
• Support secure lifecycle process activities for SaaS and On-Prem Offerings, including security requirements, threat modeling, risk assessment, analysis of findings from penetration tests, and tools
• Proactive collaboration with broader security teams to establish and mature security by design / default best practices
• Partner with engineering teams to drive the security by design and alignment to security policies & standards.
• Be a coach to Security Advocates to grow their product security skills
• Influence Product Management to drive down cyber security risk in a measurable way
• Evaluate the Secure Development Life Cycle (SDLC) activities to keep them lean in order to build solid working relationships between development and product security teams
• Perform threat modeling, review vulnerability assessment and penetration testing results to prioritize security work in development team backlog
BENEFITS OF WORKING FOR HONEYWELL
• Benefits – Medical, Vision, Dental, Mental Health
• Paid Vacation
• 401k Plan/Retirement Benefits (as per regional policy)
• Career Growth
• Professional DevelopmentYOU MUST HAVE
• 5+ years of experience in cybersecurity, with a focus on advanced architecture and engineering.
• Strong knowledge of cybersecurity principles, technologies, and best practices.
• Proficiency in Azure Cloud Security (ideally with familiarity of Azure Kubernetes Service(AKS))
WE VALUE
• CKS Certification
• Proficiency in Microsoft threat modeling tool, and reviewing vulnerability assessment
• Product architecture and development background
• Software engineering or development experience
• Secure software development lifecycle experience
• Knowledge of penetration testing
• Understanding of Agile software development practices
• Experience with DevSecOps (CI/CD)
• Familiarity of security regulations and standards
• Certifications in security such as CSSLP, (Azure/AWS) Certified Security Architect
• Understanding of security by design principles and architecture level security concepts
• Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities
• Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts
• Excellent problem-solving skills and the ability to make critical decisions in a fast-paced environment.
• Outstanding communication and interpersonal skills to collaborate with stakeholders at all levels.
Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.