Cybersecurity Engineer – Smart Energy America
\nThis Cybersecurity Engineer position is part of Honeywell Smart Energy, based in Raleigh, NC. Honeywell Smart Energy develops Electric, Gas and Water Smart Metering Systems for utilities in America and world-wide.
\nThe Cybersecurity Engineer role is responsible for ensuring that all assigned software product development and support adhere to the Honeywell Security Development Lifecycle (SDLC), which is built around industry standards and compliance against IEC-62443. This position is integrated within the Tier 3 support team, reporting to a Tier 3 manager within the Product Support organization. The candidate follows established software development and release processes to assure high quality product delivery according to requirements and schedule. curity Engineer acts as the interface between the software development team(s) and the Cybersecurity Leadership, owner of the Honeywell Security Development Lifecycle (SDLC) process. The Cybersecurity Engineer leads the Planning, Definition, Implementation and Deployment phases of the SDLC. The candidate works within the Tier 3 support team to prepare and submit any required artifacts, conduct reviews with the Cybersecurity Leadership, obtain approval for each phase and final approval before release. The candidate can review code vulnerabilities, design, and implement fixes.
\nKEY RESPONSIBILITIES
\n\nEnsure all assigned software products developments adhere to the Honeywell Security Development Lifecycle (SDLC).\nLead the software architecture design of the assigned products and ensure the products meet security requirements.\nFor the software product releases planned for a given release cycle, conduct reviews with the Cybersecurity Leadership and obtain formal security approval before external releases.\nFor the Planning, Definition, Implementation and Deployment phases of the SDLC,lead the Tier 3 team to gather data, perform tasks and prepare reports specified by the cybersecurity process (example: perform static code analysis review output reports, resolve vulnerabilities).
Example of security activities and related deliverables that fall under the responsibility of the Cybersecurity Engineer are:\n\nSecurity Requirements Specification\nSecurity Architecture\nPrivacy Impact Assessment\nThreat Model\nProduct Security Risk Analysis\nStatic Code Analysis\nOpen Source and Commercial third-party library analysis\nSecure Coding Practice\nSecurity Manual\nSecurity Risk Management\nSecurity Testing\nSecurity Reviews (Checklist)\n\n\nPrepare all cybersecurity artifacts, submit, and track approval through secure portal.\nCoordinate the work of cybersecurity tester(s) assigned to the team, to specify security test plan, perform tests, review, and record test results.\nDefine and track the cybersecurity review progress.\nWork with Tier 3 manager and team to define plan for release cycles, escalate issues, sort priorities, and address any scheduling impacts.\n\n
BENEFITS OF WORKING FOR HONEYWELL
In addition to a performance-driven salary, cutting-edge work, and developing solutions side-by-side with dedicated experts in their fields, Honeywell employees are eligible for a comprehensive benefits package. This package includes employer-subsidized Medical, Dental, Vision, and Life Insurance; Short-Term and Long-Term Disability; 401(k) match, Flexible Spending Accounts, Health Savings Accounts, EAP, and Educational Assistance; Parental Leave, Paid Time Off (for vacation, personal business, sick time, and parental leave), and 12 Paid Holidays. For more information go to benefits.honeywell.com
The application period for the job is estimated to be 40 days from the job posting date; however, this may be shortened or extended depending on business needs and the availability of qualified candidates.
We Value
\n\nKnowledge of C++ (preferred) and/or Java languages\nCybersecurity certification (example CISSP) or equivalent knowledge\nPrevious experience as product Cybersecurity Engineer\nExperience with software development practices\nDomain knowledge of smart metering systems (preferred) or other industrial software systems\n\n\n\n\n\n\n\nABOUT HONEYWELL\nHoneywell International Inc. (Nasdaq: HON) invents and commercializes technologies that address some of the world’s most critical demands around energy, safety, security, air travel, productivity, and global urbanization. We are a leading software-industrial company dedicated to introducing state-of-the-art technology solutions to improve efficiency, productivity, sustainability, and safety in high-growth businesses in broad-based, attractive industrial end markets. Our products and solutions enable a safer, more comfortable, and more productive world, enhancing the quality of life of people around the globe. Learn more about Honeywell here.\nTHE BUSINESS UNIT\n\n\n\n\n\n\nHoneywell Industrial Automation enables process industry operations, creates world-class sensor technologies, automates supply chains, makes warehouses smarter, and improves worker safety. This combination builds on our core strengths in controls and automation technologies which in turn allows us to deliver better commercial outcomes for our customers. We enable customers to enhance the safety, sustainability, resiliency, and productivity of their people, plants, and assets.
\n\nAdditional InformationJOB ID: HRD250603Category: EngineeringLocation: 208 South Rogers Lane,Raleigh,North Carolina,27610,United StatesExemptEarly Career (ALL)Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.