Product Security Lead - Sparta (Remote)

Driving Infinite Possibilities Within A Diversified, Global Organization

Honeywell is charging into the Industrial IoT revolution with the establishment of Honeywell Connected Enterprise (HCE), building on our heritage of invention and deep, on-the-ground industry expertise. HCE is the leading industrial disruptor, building and connecting software solutions to streamline and centralize the assets, people and processes that help our customers make smarter, more accurate business decisions. Moving at the speed of software, we are creating, innovating, and delivering solutions fast, challenging the way things have always been done, piloting new ways for all of us to work, and expecting our successes to set new standards for our customers and for Honeywell.

Honeywell Connected Enterprise (HCE) is a global leader for products and technologies that are installed in more than 10 million buildings, aircraft, and facilities worldwide. We are a pioneer on the Internet of Things, developing the next generation of connected offerings. The Security Engineer - Tools & Technology reports to the HCE Product Security Leader and will be responsible for driving hardware selection, configuration, design, and process improvements within our products; and providing mentoring and mentorship to other team members.

The Cyber Security Architect requires business acumen; technical acuity; and the ability to think, communicate and write at various levels of abstraction. Security architects are expected to advocate for security requirements and evaluate new services, vendors, applications, and security tools; drive hardware selection, configuration, design, and process improvements within our products from a technical perspective, and to translate the risk characteristics of these activities and functions into enterprise cyber risk terms.

As a key member of our growing product security team, you'll leverage your proven experience to...

• Provide architecture and standard methodologies' mentorship in building secure Honeywell products.
• Collaborate in broader security community to establish and mature Security & Product Compliance by design best practices, including HCE specific process improvement, HCE security architecture library updates.
• Provide hands-on leadership for secure lifecycle process activities including threat modeling, risk assessment, analysis of findings from penetration tests, and tools (e.g. SAST/DAST, SCA, vulnerability scans), identification and design of risk-remediating security requirements.
• Develop and drive standardized set of security product requirements into HCE product and service offerings.
• Serve as a security expert, helping project teams comply with enterprise security policies, industry regulations, and best practices. Quantify residual product risk and identification of appropriate security controls.
• Support a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology, and threat drivers.