Cyber Sec Archt/Engr II

Responsibilities:

• Individual contributor within the Product Security Assurance Team with some team leadership responsibilities.
• Provide mentorship, expertise, and direction to junior team members.
• Assist with onboarding and internal team training.
• Champion strategic Product Security initiatives.
• Oversee and ensure timely delivery of client deliverables and fulfillment of requirements.
• Proactively anticipate and manage potential escalations.
• Lead initiatives to engineer improved solutions.
• Develop methodologies and determine scoping requirements for security testing.
• Deliver security testing across all Honeywell products.
• Assist in developing modular, repeatable, and effective security testing processes.
• Partner with Tools and Technology Team to select, implement, develop, and automate testing using appropriate tools.
• Collaborate with cross-functional teams to develop remediation suggestions.
• Report observations using a standardized reporting structure.
• May be required to lift and/or move up to 25 pounds.

Basic Qualifications:

• Bachelor's degree in Computer Science, Software Engineering, Electrical Engineering, or equivalent experience.
• Minimum 5 years of total experience.
• At least 3 years of demonstrated experience in penetration testing.
• Minimum 1 year of project management experience.

Preferred Qualifications:

• Experience in penetration testing of Web, Mobile Apps, Thick Clients, APIs, Web Services, Hardware, Cloud, and Containers.
• Exposure to IoT penetration testing.
• Understanding of application protocols, software development, and common attack vectors.
• Strong cybersecurity capabilities and solid software engineering skills.
• In-depth understanding of security-by-design principles and architecture-level security concepts.
• Knowledge and experience with penetration testing methodologies and tools.
• Up-to-date awareness of current and emerging security threats and techniques used to exploit vulnerabilities.
• Effective oral and written communication skills.
• Good interpersonal skills.
• Experience in security testing within the relevant domain.
• Relevant security certifications.
• Experience speaking at technical conferences.
• Familiarity with reverse engineering tools, debuggers, and dynamic analysis techniques.
• Experience integrating penetration testing tools into CI/CD pipelines.