Cyber Sec Archt/Engr II in Tempe, Arizona

Are you passionate about helping to drive global Cybersecurity innovation and change? Do you thrive in environments that encourage critical thinking, creativity, and challenging the status quo?

Cyber Fusion Center is looking for a cyber security analyst to work as part of our L3 incident response team. This person is responsible to help remediate complex cybersecurity incidents that span multiple service towers. This person will help coordinate globally with multiple teams to defend Honeywell from cyber-attacks.

This position allows deep insight into various aspects of cyber security and will require attention to detail, a sense of urgency, and strong communication skills.

Responsibilities

• Participate on a team of highly skilled cybersecurity incident responders.

• Build and maintain processes and procedures.

• Assist with driving complex cybersecurity incidents to successful conclusion.

• Understand root causes of cybersecurity incidents.

• Perform initial analysis, identification, and remediation of network intrusions, application attacks, and computer system compromises.

• Help mentor junior analysts in our L1 team to help build a pipeline of talent that flows into L2.

• Constantly optimize work procedures and automate recurring tasks. Develop and update technical documentation and formulate work instructions to address repeating issues.

• Collaborate with global team members based in the US, India and Europe.

U.S. PERSON REQUIREMENTS

Due to compliance with U.S. export control laws and regulations, candidate must be a U.S. Person, which is defined as, a U.S. citizen, a U.S. permanent resident, or have protected status in the U.S. under asylum or refugee status.

Must have

• Bachelor’s degree in Cybersecurity, Computer Science, or equivalent experience.

• 2+ years of experience in Information Security or Information Technology fields.

• 2+ years of experience in a cybersecurity role

• Experience with SIEM and EDR solutions.

• Good technical knowledge of Windows/Linux operating systems, various types of applications, and networking technologies

• Analytical skills in threat, vulnerability, and intrusion detection analysis.

• Keen understanding of threat vectors as well as exfiltration techniques.

• Attention to detail.

• Ability to develop and follow complex work instructions and documentation.

• Willingness to learn.

We value

• Experience with SOAR Solutions like XSOAR/Demisto.

• Knowledge in cloud security (Azure, AWS, MS Office 365).

• Knowledge of Linux operating system.

• One or more widely recognized certifications from renowned institutions such as GIAC/SANS, ISC/CISSP or Microsoft.

• Detailed knowledge of Endpoint Detection and Response tools (e.g., Crowdstrike Falcon, Carbon Black, FireEye HX or Windows Defender ATP).

• Knowledge of scripting in Python or Powershell.

• Understanding of ITIL process, such as Incidents, Change & Problem management.

• Experience in working in a global, process-driven organization.

Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.