The **Sr Advanced Cybersecurity Architect** is responsible for providing Product and system level security expertise and mentoring to Aerospace products. As an integral member of our global product security community, we support product security activities aligned to the Secure Development Lifecycle process across Aero products.
**Key Responsibilities:**
+ Lead efforts with the development teams to manage product risk and apply the appropriate security controls to products at various phase of the life cycle.
+ Drive _best in class_ security requirements into product and service offerings.
+ Provide architecture and best practices guidance in building secure Honeywell products.
+ Support product security process activities including threat modeling, risk modeling, security requirements, security reviews, threat vulnerability assessments and risk management for Aerospace products and applications.
+ Must have product architecture and development background with Secure software development lifecycle experience.
+ proficiency in cloud platforms like Azure Kubernetes Service (AKS) and a strong understanding of core security concepts, architectural thinking, communication, and problem-solving abilities, along with knowledge of tools like Kong for API security and management within cloud environments
+ Understanding of security by design principles and architecture level security concepts up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities
+ Have experience in developing, securing, and driving security requirements recommendations for, Mobile applications, and Cloud deployed applications on platforms such as Azure, AWS, GCP, others.
+ Experience with securing Commercial Cloud, Hybrid and private cloud deployed applications, Containers, and VMs, through secure configurations and performing periodic security reviews.
+ Lead efforts in mentoring and training the engineering development community and facilitate adoption of shift-security-to-left practice
+ Lead new initiatives that add value to SDL processes and procedures
**YOU MUST HAVE:**
+ Bachelor’s degree or equivalent work experience in Cyber Security or Information Technology
+ Strong interpersonal skills with the ability to facilitate diverse groups, help defining and understanding the priorities, and resolve conflicts among stakeholders across geography.
+ 8+ years Cyber Security or Information Technology experience
**WE VALUE:**
+ Understanding of Agile software development practices.
+ CISSP/CSSLP Equivalent Certifications
+ Understanding DevsecOps and have a good working understanding of tooling specific to CI/CD pipelines and security tooling.
+ Developing secure systems, web application penetration testing or application security consultant
+ Azure, AWS or GCP Security or Solutions Architecture certifications
+ Experience with widely used security tools like SD Elements, BlackDuck Hub, Microsoft Threat modeling tool, SAST (Coverity, SonarQube), DAST (Burp, ZAP, AppSpider), Fuzzing, Vulnerability management and continuous monitoring tools
+ Sound understanding of Cryptography, encryption algorithms, Public Key Infrastructure (PKI), Secure boot and Open-source risk management.
Honeywell helps organizations solve the world's most complex challenges in automation, the future of aviation and energy transition. As a trusted partner, we provide actionable solutions and innovation through our Aerospace Technologies, Building Automation, Energy and Sustainability Solutions, and Industrial Automation business segments – powered by our Honeywell Forge software – that help make the world smarter, safer and more sustainable.
Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.