Driving Infinite Possibilities Within A Diversified, Global Organization

The Advanced Cybersecurity Architect is responsible for providing application and system level security expertise and mentoring to Aerospace products. As an integral member of our global product security community, support product security activities aligned to the Secure Development Lifecycle process across Aero products.

Key Responsibilities:

· Good understanding of Design Objectives DO-178B/C, DO-326A, DO-355, and DO-356A to support continuous Airworthiness of an aircraft from safety and security aspects.

· Experience in Certifying and meeting the compliance for the Embedded products that run in an Aircraft cockpit with Certifying Authorities like FAA, and EASA.

· Lead efforts with the development teams to manage product risk and apply the appropriate security controls.

· Experience in driving secure architecture by design, security risk assessment, defense-in-depth approach, multilayer security controls, identifying the gaps, and defining the remediation approach by using the security controls during the risk assessment.

· Expert in threat modeling of both Embedded products as well as web applications and effectively communicating the security risks to the program teams in advance.

· Experience in providing security architecture guidance and support to a large development organization to support security by design principles.

· Good understanding of Cryptographic principles, Hashing, Certificate Management, Symmetric, and Asymmetric algorithms.

· Drive best in class security requirements into product and service offerings.

· Provide architecture and best practices guidance in building secure Honeywell products.

· Support product security process activities including threat modeling, security requirements, security reviews, threat vulnerability assessments and risk management for Aerospace applications.

· Must have product architecture and development background with Secure software development lifecycle experience.

· Understanding of security by design principles and architecture level security concepts up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities

· Have experience in developing, securing, and driving security requirements recommendations for, Embedded & IIOT based Avionics Products, on RTOS platforms such as VxWorks, Deos.,
Experience with securing Commercial Cloud, Hybrid and private cloud deployed applications, Containers, and VMs, through secure configurations and performing periodic security reviews.

· Lead efforts in mentoring and training the engineering development community and facilitate adoption of shift-security-to-left practice

· Lead new initiatives that add value to SDL processes and procedures

YOU MUST HAVE:

· Bachelor’s degree or equivalent work experience in Cyber Security or Information Technology

· Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among stakeholders

· 6+ years Cyber Security or Information Technology experience

WE VALUE:

· Understanding of Agile software development practices.

· Understanding DevsecOps and have a good working understanding of tooling specific to CI/CD pipelines and security tooling.

· Information Security accreditation (CISSP/CSSLP or other security related certifications)

· Developing secure systems, web application penetration testing or application security consultant

· Azure, AWS or GCP Security or Solutions Architecture certifications

· Experience with widely used security tools like SD Elements, BlackDuck Hub, Microsoft Threat modeling tool, SAST (Coverity, SonarQube), DAST (Burp, ZAP, AppSpider), Fuzzing, Vulnerability management and continuous monitoring tools

· Sound understanding of Cryptography, encryption algorithms, Public Key Infrastructure (PKI), Secure boot and Open-source risk management.

· An effective communicator with excellent relationship management skills and strong analytical, leadership, decision-making, and problem-solving skills.

· Ability to lead, motivate and direct a workgroup. Strong leadership and team-building skills. Manage stakeholders across business verticals & regions.

· Must be a Firm believer in continuous learning, upskilling the team competency on new-age skills and developing the capabilities of new technologies.

Additional Information

• JOB ID: HRD239920
• Category: Engineering
• Location: HW Camp II,Bldgs 9A&9B,Plot C2,RMZ Ecoworld,Varturhobli,Sarjapur Marathahalli Outer Ring Road,Bangalore,KARNATAKA,560103,India
• Exempt