Penetration Test Security Manager

The Lead Penetration Test Security Engineer reports to the Global Product Security Assurance Leader and will be responsible for delivering services to assess and evaluate the security posture of a variety of Honeywell Products and partner technologies. This role will be responsible for security services delivery, which may include use of application/network/firmware/hardware security toolsets, detection of security defects, and remediation consultation of those weaknesses. Our services support the identification of potential attack techniques and serve as the foundation for continuously improving the product development lifecycle.

You will provide leadership for a team of Product Security Assurance Engineers. This position will also work with other business stakeholders across Honeywell Building Technologies to ensure testing techniques are developed in accordance with asset risk and business functionality and will play a key role in ensuring appropriate remediation activities are completed as planned.
RESPONSIBILITIES
Leadership role with Product Security Assurance Team
Direct staff and team leaders
Provide mentorship, expertise and direction to junior security assurance and product team members
Interview and hire qualified candidates
Conduct meaningful performance reviews
Champion strategic Product Security initiatives
Create development plans
Track skillsets and approve training requests
Proactively anticipate escalations and track issues/conduct root cause analysis assessments
Lead initiatives to engineer better solutions
Ensure accountability for the development, maintenance and improvement of Security Testing across all of HBT
Assist in the development of modular, repeatable, effective Security Testing processes
Partner with Tools and Technology Team to select, implement, develop, and automate testing with appropriate tools.
Continuously monitors levels of service and interprets and prioritizes threats based on test results
Provide briefings to Product Security leadership and other executive leaders
Work with cross functional teams to develop remediation suggestions
YOU MUST HAVE
Bachelor's degree in computer science or software engineering, electrical engineering.
5+ years demonstrated experience in penetration testing.
2+ years demonstrated experience leading a team of 3 or more individual contributors.
WE VALUE
Experience in security testing within the appropriate domain.
Experience leading security test programs at a Fortune 100 corporation.
Relevant Security certifications.
Public speaking at Technical Conferences.
2+ years of application development.
Familiarity with reverse engineering tools, debuggers, and dynamic analysis techniques.
Understanding of application protocols, development, and common attack vectors.
Published vulnerability research.
Good cybersecurity capabilities and strong software engineering skills.
Excellent understanding of security by design principles and architecture level security concepts.
Experience and knowledge of penetration testing methodologies and tools.
Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities.
Demonstrated project management skills.
Effective oral and written communication skills.
Excellent interpersonal skills.