Advanced Cyber Sec Archt/Engr

As an Advanced Cyber Sec Archt/Engr here at Honeywell, you will be responsible for leading the design and implementation of cutting-edge cybersecurity solutions. You will be hands-on in fortifying defenses against emerging threats and acting as the subject matter expert for technical challenges. You will be responsible for collaborating with cross-functional teams, staying informed about emerging technologies, and fostering a culture of continuous improvement.

In this role, you will impact our cyber security initiatives by protecting critical assets and information across industries, ensuring the security and resilience of businesses worldwide. As the Advanced Cyber Sec Archt/Engr at Honeywell, you will play a pivotal role from driving technical excellence and solution innovation to leading incident response efforts and conducting digital analysis. Your work will directly impact the safety and integrity of systems that power the modern world. Join us at Honeywell, where cybersecurity meets innovation, and together, we'll build a safer and more secure future.

Key Responsibilities

• Design and implement advanced cybersecurity solutions to protect our digital infrastructure and sensitive data
• Collaborate with crossfunctional teams and senior leadership to develop and execute our cybersecurity strategy
• Conduct risk assessments and vulnerability assessments to identify potential security threats and vulnerabilities
• Develop and implement incident response plans to effectively respond to and mitigate cybersecurity incidents
• Stay uptodate with the latest cybersecurity trends, technologies, and best practices to continuously improve our security posture

Must Have Skills

• 3 to 6 years of experience in Hardware / Systems / Network / Application / Cloud penetration testing
• Has a Bachelor’s Engineering degree or equivalent, preferably in Computer Science
• Identify vulnerabilities in embedded systems and connected objects
• Identify security flaws in the electronic layer using PCB Layouts / Schematics
• Expertise in embedded software and communication protocols like USB, UART/USART, I2C, SPI, CAN, Bluetooth/BLE, Zigbee, RS232, RS485, JTAG, LoRa, RFID
• Encryption tools and techniques for securing mobile and virtual machines.
• Good understanding of security development lifecycle processes
• Knowledge of OWASP Top 10 and SANS Top 25 and how to effectively remediate vulnerabilities associated with each
• Run & Analyze the penetration test (Manual & Automated) and pinpoint the security issues and suggest countermeasures for security improvements
• Demonstrated manual product penetration testing experience; for example, simulate a SQL injection attack without tools, simulate XSS attack, X-Path Injection, etc.
• Good knowledge and hands-on experience using various penetration testing tools like Nessus, Web Inspect, Nmap (Slow Scans, Service detection, OS detection, Nmap Scripts), Burp Suite, AppScan, ZAP, Frida, Binary Ninja, Hak5, RF Hacking, Kali Linux
• Communicate results and security risks to Product Owners
• Good communication & negotiation skills
• Highly motivated with willingness to take ownership/responsibility for their work and ability to work both independently and in a team-oriented environment.
• Highly customer-focused
• Adept at selecting and utilizing appropriate technologies to solve complex problems effectively
• Ability to work with geographically distributed, cross-functional teams
  

Good to have skills

• Certification such as CEH, OSCP, OSCE, CCSP, CCSK will be highly desirable.
  Familiar with tools such as Ubertooth, Attify Badge, JTAGulator, Bus Pirate, etc.
• Ability to learn emerging security trends and tools
• Domain knowledge of ICS and related security trends

WE VALUE

• Bachelor’s or Advanced Degree in Cybersecurity, Computer Science, or another related field
• Relevant certifications such as CISSP, CISM, or GIAC are highly desirable
• Demonstrated leadership skills and experience managing cybersecurity teams