Lead Cloud Security Architect
Atlanta, GA
Employer: | Honeywell |
Category: | Engineering |
Description | |
Innovate to solve the world's most important challenges Innovate to solve the world's most important challenges The future is what you make it. When you join Honeywell, you become a member of our global team of thinkers, innovators, dreamers and doers who make the things that make the future. That means changing the way we fly, fueling jets in an eco-friendly way, keeping buildings smart and safe and even making it possible to breathe on Mars. Working at Honeywell isn't just about developing cool things. That's why all of our employees enjoy access to dynamic career opportunities across different fields and industries. Are you ready to help us make the future? Honeywell Connected Enterprise (HCE) is a global leader for products and technologies that are installed in more than 10 million buildings, aircraft, and facilities worldwide. We are a pioneer in the Internet of Things, developing the next generation of connected offerings. Are you someone who wants to drive real improvements into real products in an environment which has a strong organizational support for product security? In the role of Lead Cloud Security Architect for Honeywell Connected Enterprise, you will join a growing Product Security team overseeing the posture of HCE Cloud offerings and driving security by design across cloud-based products. The Lead Cloud Security Architect will report to the HCE Cloud Security Manager and will drive secure cloud posture and risk reduction across software products through standardized and defined processes by partnering with Honeywell Global Security, mentoring junior team members and influencing CTOs and SRE at all levels using data-based metrics. Responsibilities: -Mentor junior team members by teaching them state of the art cloud security practices -Innovate by solutioning new ways of doing things and identifying industry leading practices and solutions -Influence CTO and SRE to drive best-in-class cloud practices using a data driven approach -Partner with Honeywell Global Security to understand their baselines and influence their baselines with practical solutions with engineering considerations without adding risk -Develop cloud security baseline across a multi-cloud environment -Identify metrics which will drive behavior changes in the cloud such as cloud resources not tagged, cloud not built with code, cloud risk. etc. -Conduct office hours to train Security Architects and Security Advocates across HCE -Implement dashboards to provide insight into cloud risk and drive risk reduction activities. -Support security incident and response activities, performing analysis, collaborate with stakeholders, and drive resolution of incidents. -Promote and apply Zero Trust architecture and principles throughout cloud & edge #Li-Hybrid You must have: -Bachelor's degree from an accredited institution in a technical discipline such as sciences, technology, engineering, or mathematics -6+ years of experience with a public cloud such as AWS, Azure, GCP -Ability to perform threat modeling of cloud-based systems We value: -Ability to identity and define project scope and level of effort -Experience with programming and automation -Ability to identify and remediate issues early, analyze, and propose alternative solutions -Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among stakeholders -Passion for achieving results and continual self-improvement -Experience and knowledge of Public Cloud Provider (e.g., Azure, AWS, GCP) security controls and capabilities (e.g., DDoS, Firewalls, WAF, Network Segregation) -Understanding of secure networking design and principles -Experience of multi-layer cloud security controls ensuring confidentiality, integrity, and availability -Understanding of Internet of Things (IOT) security concerns, architecture, and controls -Experience with Identity and Access Management security solutions and protocols (e.g., SAML, OpenID, and OAuth) -Experience and understanding of Container/Kubernetes security and controls -Understanding of security by design principles, architecture level security, API security, and Zero Trust security concepts -Up to date knowledge of current and emerging security threats and techniques for exploiting security weaknesses -Understanding of National and International regulatory and compliance standards -Certifications in security demonstrating deep practical knowledge such as CCSP, or CISSP -Master's Degree Additional Information
Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status. |