Innovate to\nsolve the world's most important challenges
The future is what you make it.
When you join Honeywell, you become\na member of our global team of thinkers, innovators, dreamers and doers who\nmake the things that make the future.
That means changing the way we fly,\nfueling jets in an eco-friendly way, keeping buildings smart and safe and even\nmaking it possible to breathe on Mars.
Working at Honeywell isn’t just\nabout developing cool things. That’s why all of our employees enjoy access to\ndynamic career opportunities across different fields and industries.
Are you ready to help us make the\nfuture?
Honeywell\nConnected Enterprise (HCE) is a global leader for products and technologies\nthat are installed in more than 10 million buildings, aircraft, and facilities\nworldwide. We are a pioneer in the Internet of Things, developing the next\ngeneration of connected offerings.
Are you someone\nwho wants to drive real improvements into real products in an environment which\nhas a strong organizational support for product security?
In the role of Lead\nCloud Security Architect for Honeywell Connected Enterprise, you will join a\ngrowing Product Security team overseeing the posture of HCE Cloud offerings and\ndriving security by design across cloud-based products. The Lead Cloud Security Architect will report\nto the HCE Cloud Security Manager and will successfully drive secure cloud\nposture and risk reduction across software products through standardized and\ndefined processes.
Responsibilities:
-Develop cloud security baseline across multi-cloud environment.
-Work closely with DevOps to ensure the Cloud is built securely using IaC and manage cloud security posture via enforcing policies.
-Develop automation in support of streamlined cloud policy and risk management initiatives.
-Interface with corporate security team, SRE, product management, and engineering leadership to lead cloud security initiatives, kubernetes security, planning, and risk reduction across cloud-based products.
-Evaluate and integrate cloud security posture management tools.
-Facilitate secure engagement activities including security requirements, secure cloud design, threat modeling, vulnerability analysis, and risk assessment.
-Implement dashboards to provide insight into cloud risk and drive risk reduction activities.
-Support security incident and response activities, performing analysis, collaborate with stakeholders, and drive resolution of incidents.
-Mentor stakeholders in cloud security best practices
-Monitor cloud risks, ensure key stakeholders are informed, plan and communicate intended outcomes.
-Coordinate and collaborate with internal and external stakeholders including security architecture, SRE, governance, and certification entities to achieve risk reduction and reach organizational milestones.
-Ensure cloud security requirements are understood and applied in accordance with HGS policies, applicable country laws, and regulations.
-Promote and apply Zero Trust architecture and principles throughout service offerings.
#Li-Hybrid
You must\nhave:
-Bachelor's degree from an accredited institution in a technical discipline such as sciences, technology, engineering, or mathematics
-6+ years of experience with a public cloud such as AWS, Azure, GCP
-Ability to perform threat modeling of cloud-based systems
We value:
-Ability to identity and define project scope and level of effort
-Experience with programming and automation
-Ability to identify and remediate issues early, analyze, and propose alternative solutions
-Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among stakeholders
-Passion for achieving results and continual self-improvement
-Experience and knowledge of Public Cloud Provider (e.g., Azure, AWS, GCP) security controls and capabilities (e.g., DDoS, Firewalls, WAF, Network Segregation)
-Understanding of secure networking design and principles
-Experience of multi-layer cloud security controls ensuring confidentiality, integrity, and availability
-Understanding of Internet of Things (IOT) security concerns, architecture, and controls
-Experience with Identity and Access Management security solutions and protocols (e.g., SAML, OpenID, and OAuth)
-Experience and understanding of Container/Kubernetes security and controls
-Understanding of security by design principles, architecture level security, API security, and Zero Trust security concepts
-Up to date knowledge of current and emerging security threats and techniques for exploiting security weaknesses
-Understanding of National and International regulatory and compliance standards
-Certifications in security demonstrating deep practical knowledge such as CCSP, or CISSP
-Master’s Degree
Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.