Cyber Sec ArchtEngr I

The Cyber Security Engineer I reports to the Product Security Assurance Leader and will be responsible for assessing and evaluating the security posture of a variety of Honeywell Products and partner technologies. This role will be responsible for security services delivery which may include use of hardware/firmware/application/network/Mobile/Cloud security toolsets detection of security defects and remediation consultation of those weaknesses. Our services support the identification of potential attack techniques and serve as the foundation for continuously improving the product development lifecycle.

• Individual Contributor with Product Security Assurance Team
• Deliver Security Testing Honeywell Products
• Assist in the development of modular repeatable effective Security Testing processes
• Partner withTools and Technology Team to select implement develop and automate testing with appropriate tools.
• Work with cross functional teams to develop remediation suggestions
• Report observations using our standardized reporting structure
• The engineer may frequently lift and/or move up to 25 pounds

• Bachelors degree in computer science or software engineering electrical engineering or equivalent experience
• 1+ years demonstrated experience in the information security-VA PT field
• Exposure to security testing within the appropriate domain

Preferred Qualifications

• Experience in pentesting Web Network Embedded security ( Hardware and Firmware) Protocol fuzzing Mobile App Thick ClientAPI Web services Cloud
• Fuzzing various Industrial protocols like Modbus (TCP and RTU) BACnet DNP3 and IT protocols like FTP Telnet SSH HTTP(s) SNMP v1/2/3 NTP RADIUS MQTT DNS.
• Understanding of application protocols development and common attack vectors.
• Good cybersecurity capabilities and strong software engineering skills
• Experience with pentest tools and frameworks such as: Burp Suite IDA Pro GHidra Kali OWASP Metasploit Nessus Nmap MObSF Genymotion Frida APK Tool
• Scripting experience in Python Powershell and Bash preferred.
• Experience working with other languages such as C C++ or javascript.
• Excellent understanding of security by design principles and architecture level security concepts
• Experience and knowledge of penetration testing methodologies and tools
• Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities
• Effective oral and written communication skills
• Good interpersonal skills
• Experience in security testing within the appropriate domain
• Demonstrated project management skills.
• Good Presentation skills
• Relevant Security certifications: CEH OSCP GPEN
• Familiarity with reverse engineering tools debuggers and dynamic analysis techniques