Job Description

Innovate to solve the world\'s most important challenges Innovate to solve the world\'s most important challenges Honeywell is a Fortune 100 company with global sales surpassing $40B and has been one of Fortune\'s Most Admired Companies for over a decade. Through innovation the company brings together the physical and digital world to tackle some of the toughest societal and business problems - making the world a more productive, safe and sustainable place. The business is organized into five primary groups: Aerospace Building Technologies Performance Materials and Technologies Safety and Productivity Solutions and the Connected Enterprise. Honeywell Connected Enterprise (HCE) is a global leader for products and technologies that are installed in more than 10 million buildings, aircraft, and facilities worldwide. We are a pioneer in the Internet of Things, developing the next generation of connected offerings. The Security Architect reports to the HCE Product Security Leader and will be responsible to drive Secure SDLC practices, cloud security architecture, design, & configuration and process improvements within our products. RESPONSIBILITIES .Support secure lifecycle process activities for SaaS and On-Prem Offerings, including security requirements, threat modeling, risk assessment, analysis of findings from penetration tests, and tools .Proactive collaboration with broader security teams to establish and mature security by design / default best practices .Partner with engineering teams to drive the security by design and alignment to security policies & standards. .Understand HCE\'s products and how the customers use those products to ensure that products are built with security by design and by default .Engage in PI Planning to enable & ensure development teams prioritize security features. .Be a coach to Security Advocates to grow their product security skills .Influence Product Management to drive down cyber security risk in a measurable way .Evaluate the Secure Development Life Cycle (SDLC) activities to keep them lean in order to build solid working relationships between development and product security teams .Perform threat modeling, review vulnerability assessment and penetration testing results to prioritize security work in development team backlog WE VALUE . Product architecture and development background . Software engineering or development experience . Secure software development lifecycle experience .Understanding of Agile software development practices .Experience with DevSecOps (CI/CD) .Familiarity of security regulations and standards .Certifications in security such as CSSLP, (Azure/AWS) Certified Security Architect .Understanding of security by design principles and architecture level security concepts .Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities .Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts ADDITIONAL INFORMATION .Experience 5-7 years of software development experience Threat modeling and software architecture .Location: Bangalore, India

foundit