Product Cyber Security Arch. Manager
Honeywell Building Technologies (HBT) is a global leader for products and technologies that are installed in more 10 million buildings worldwide. These offerings enable building owners to stay connected and in control of comfort, lighting, security, fire systems, and support building owners and occupants to ensure their facilities are safe, comfortable, and sustainable. Honeywell also is a pioneer in the Internet of Things, developing the next generation of connected offerings.
The Product Security Architect Manager reports to the Global Product Security Architect Leader and will be responsible for leading, managing, and directing a team of Product Security Architects to provide product security expertise to development teams throughout all phases of the SDLC.
Lead, manage, and direct a team of Product Security Architects
Support NPI project product security process activities including threat modeling, final security reviews, threat vulnerability assessment, etc. for all software and firmware development in HBT
Audit key process deliverables related to security for correctness and completeness.
Drive efforts with the development teams to quantify residual product risk and identification of appropriate security controls.
Provide product security related coaching/mentoring and security expertise for all software and firmware development teams in HBT
Help engineering and Product Management teams identify security requirements
Drive a standardized set of security product requirements into product and service offerings
Lead and coordinate cross-functional activities for incident response
YOU MUST HAVE
Bachelor’s degree in computer science or software engineering, electrical engineering or equivalent experience
10 years of software development with at least 5 years in developing secure systems
2 years experience as a Product Security Architect
ISC² CSSLP Certification
Excellent cyber security capabilities and strong software engineering skills
Strong knowledge of secure software development lifecycle and practices such as threat modeling, security reviews, penetration tests, and security incident response
Understanding of security by design principles and architecture level security concepts
Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities
Excellent communication and leadership skills
Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among project stakeholders
Master’s degree in computer science or software engineering, or equivalent
Technical leadership experience in the software security field
Certifications in security and privacy demonstrating deep practical knowledge such as ISC² CISSP or CSSP
Experience and knowledge of penetration testing methodologies and tools
Understanding of Agile software development practices