Finding the best job has never been easier
Share
As a Security Engineer II here at Honeywell with LenelS2, you will play a crucial role in ensuring the safety and security of our building automation systems. In this role you will help strengthen the security posture and drive competitive advantage of our comprehensive product portfolio to protect buildings, people, and assets, providing innovative security products that include advanced software and hardware, IP solutions, wireless communications, electronic locking systems, and mobile applications. Join our team and make a significant impact on the security of our building automation solutions.
You will report directly to our Security Engineering Manager, and you'll work out of either the Pittsford, NY, Framingham, MA, or Atlanta, GA location on a hybrid work schedule within the Security Engineering group. As part of this team, you will work to advance the security posture, as well as develop and maintain secure software controls to support the Software Development Lifecycle (SDLC) for legacy and strategic products. This role is to advise and architect security requirements and help ensure customer software is free from vulnerabilities that can be exploited by an attacker. The ideal candidate would have a passion for Product Security and DevSecOps.
The annual base salary for this position is $111,000 - $139,000. Please note that this compensation information serves as a general guideline. Honeywell considers various factors when extending an offer, including but not limited to the scope and responsibilities of the position, the candidate's work experience, education and training, key skills, as well as market and business consideration.
As a Security Engineer you will focus on the Security by Design of our LenelS2 products and be able to establish, maintain, monitor and communicate secure resiliency within LenelS2’s product offerings. Day to day responsibilities vary including but not limited to:
• Provide integration of product development per Secure Development Lifecycle (SDLC) with security policies and continuous improvement of information protection strategies and security maturity.
• Collaboration with cross-functional teams on adhering to security standards, procedures, and guidelines.
• Provide security guidance, technical assessments and education to all stakeholders including information “owners,” product delivery teams, and customers.
• Be able to work directly with members of various departments within LenelS2 Globally
• Assurance of secure operations, response, support, and channel engagement for all offerings.
• Build internal scripts, automate tools and methodologies to enhance security DevSecOps capabilities.
• Monitor security findings and advocate appropriate corrective actions such as upgrading open-source libraries, tuning configurations and development of correlation rules.
• Work with Engineering and security principles to implement remediation of vulnerabilities.
• Assemble tools to support hardening and testing of software and operating systems.
• Drive secure development principles, practices and activities within engineering and production to help quantify cybersecurity risk, issues, and defects within LenelS2 offerings and partner eco-system, such that teams may appropriately characterize, manage, and remediate to standard.
• Perform threat modeling in coordination with delivery teams, security assurance testing, cyber risk assessment, security reviews and threat vulnerability assessment for product offerings.
• Provide audit, analysis, and review support for certification, standards, governance.
• Medical, Vision, Dental, and Mental Health Benefits
• Paid Vacation
• 401k Plan/Retirement Benefits (as per regional policy)
• Career Growth Opportunities
• Professional Development Programs
• 2+ years of experience in cybersecurity
• 2+ years of experience in software development
• Experience with security analysis tools and product security safeguards such as SAST, DAST, Fuzz testing, and Open-Source scanning
• Experience with OOP and scripting languages such as C++ or .NET, NodeJS or python, or other similar languages
• Experience with development and deployment tools such as Git, Jenkins, and Docker/Kubernetes in an Agile software development environment
• Subject matter expertise of secure SW development lifecycle, practices, and activities
• Integration experience with vulnerability or ticket management systems such as Jira
• Understanding of applications running on Desktop, as web applications, or in the Cloud and their differences with respect to security threats and solutions
• Understanding of security certifications, accreditations, or frameworks such as SOC2, ISO 27001, FedRAMP, NIST, CSA etc.
• Knowledge in the building technologies domain, especially Physical Security, Video Surveillance and/or related services
• Bachelor’s degree from an accredited institution in a technical discipline such as computer science, information technology, or cybersecurity
• Certifications such as CISSP, CISM, or CEH
• Strong thoughtful and problem-solving skills
• Excellent communication, collaboration, and organizational abilities
These jobs might be a good fit