Logo
Honeywell

Lead Cloud Security Architect

Honeywell, Atlanta, Georgia, United States, 30383


Innovate to solve the world's most important challenges

The future is what you make it.

When you join Honeywell, you become a member of our global team of thinkers, innovators, dreamers and doers who make the things that make the future.

That means changing the way we fly, fueling jets in an eco-friendly way, keeping buildings smart and safe and even making it possible to breathe on Mars.

Working at Honeywell isn’t just about developing cool things. That’s why all of our employees enjoy access to dynamic career opportunities across different fields and industries.

Are you ready to help us make the future?

Honeywell Connected Enterprise (HCE) is a global leader for products and technologies that are installed in more than 10 million buildings, aircraft, and facilities worldwide. We are a pioneer in the Internet of Things, developing the next generation of connected offerings.

Are you someone who wants to drive real improvements into real products in an environment which has a strong organizational support for product security?

In the role of Lead Cloud Security Architect for Honeywell Connected Enterprise, you will join a growing Product Security team overseeing the posture of HCE Cloud offerings and driving security by design across cloud-based products. The Lead Cloud Security Architect will report to the HCE Cloud Security Manager and will successfully drive secure cloud posture and risk reduction across software products through standardized and defined processes.

Responsibilities:

-Develop cloud security baseline across multi-cloud environment.

-Work closely with DevOps to ensure the Cloud is built securely using IaC and manage cloud security posture via enforcing policies.

-Develop automation in support of streamlined cloud policy and risk management initiatives.

-Interface with corporate security team, SRE, product management, and engineering leadership to lead cloud security initiatives, kubernetes security, planning, and risk reduction across cloud-based products.

-Evaluate and integrate cloud security posture management tools.

-Facilitate secure engagement activities including security requirements, secure cloud design, threat modeling, vulnerability analysis, and risk assessment.

-Implement dashboards to provide insight into cloud risk and drive risk reduction activities.

-Support security incident and response activities, performing analysis, collaborate with stakeholders, and drive resolution of incidents.

-Mentor stakeholders in cloud security best practices

-Monitor cloud risks, ensure key stakeholders are informed, plan and communicate intended outcomes.

-Coordinate and collaborate with internal and external stakeholders including security architecture, SRE, governance, and certification entities to achieve risk reduction and reach organizational milestones.

-Ensure cloud security requirements are understood and applied in accordance with HGS policies, applicable country laws, and regulations.

-Promote and apply Zero Trust architecture and principles throughout service offerings.

#Li-Hybrid

You must have:

-Bachelor's degree from an accredited institution in a technical discipline such as sciences, technology, engineering, or mathematics

-6+ years of experience with a public cloud such as AWS, Azure, GCP

-Ability to perform threat modeling of cloud-based systems

We value:

-Ability to identity and define project scope and level of effort

-Experience with programming and automation

-Ability to identify and remediate issues early, analyze, and propose alternative solutions

-Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among stakeholders

-Passion for achieving results and continual self-improvement

-Experience and knowledge of Public Cloud Provider (e.g., Azure, AWS, GCP) security controls and capabilities (e.g., DDoS, Firewalls, WAF, Network Segregation)

-Understanding of secure networking design and principles

-Experience of multi-layer cloud security controls ensuring confidentiality, integrity, and availability

-Understanding of Internet of Things (IOT) security concerns, architecture, and controls

-Experience with Identity and Access Management security solutions and protocols (e.g., SAML, OpenID, and OAuth)

-Experience and understanding of Container/Kubernetes security and controls

-Understanding of security by design principles, architecture level security, API security, and Zero Trust security concepts

-Up to date knowledge of current and emerging security threats and techniques for exploiting security weaknesses

-Understanding of National and International regulatory and compliance standards

-Certifications in security demonstrating deep practical knowledge such as CCSP, or CISSP

-Master’s Degree

Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.