Lead Cyber Security Analyst
Honeywell International Inc
Bangalore, IND
29d ago

Deliver business value through Right and Fast partnership

Honeywell Global Security (HGS) believes in integrating security into all aspects of our business to protect the people, processes, and assets by which Honeywell achieves its greater mission.

Advancements in technology, contractual and regulatory requirements, emerging threats, and Honeywell's growth worldwide continue to challenge all of us to ensure everything we do in business is done securely.

The Security Operations Center (SOC) is searching for an operations engineer with extensive experience in security applications and systems maintenance from an automation or a Dev-

Ops background. Candidate must be highly motivated with the ability to self-start, prioritize, and multi-task within a team and coordinate work actions.

Candidate will be part of a global team that handles enterprise IT security Infrastructure & applications-related solutions with the intent to streamline monitoring, alerting and incident response efforts.

YOU MUST HAVE

  • Bachelor’s degree in a computer related field such as Computer Science, Computer Information Systems, Electronics or in lieu of degree, directly related experience
  • WE VALUE

  • Experience in building sandbox / test lab environments
  • Experience with log management and / or SIEM technologies such as Splunk, ArcSight, and LogLogic
  • Proficient in IT security tools used in Security Operations Center (SOC) including but not limited to SIEMS, Security incident management tools like Swimlane, Encase, Last Line, Endpoint Security Tools like McAfee, EDR tools like Crowdstrike Falcon
  • Strong development and coding skills on Python, Perl, Java or C++ or any shell scripting to assist custom development for cross platform integration, workflow creations, Internal portal management, automations and customization of off the shelf tools with vendor APIs
  • Experience with databases and SQL
  • Employ Dev-Ops / infra process automations to reduce manual efforts and improve customer experience
  • Code management and administration of home grown tools
  • Experience doing POCs / POVs of off the shelf tools, taking part in technology assessment, deployment, integration & maintenance.
  • Reviewing technology designs and develop security controls and solutions

  • Participate in the selection of security solutions, or enhancements to existing security solutions, to improve overall enterprise security
  • Cross team collaboration for projects relating to the Security platforms including and not limited MNAs and divestitures
  • Strong research background and an analytical approach
  • Define and document standard methodologies from a security perspective
  • Performing other Enterprise Security & Support tasks as required and assigned.
  • Understanding / Knowledge of global frameworks and standards like NIST, FIPS, GDPR, DFARS etc
  • Possesses a solid understanding of the TCP / IP protocol suite, security architecture, and remote access security techniques / products.
  • Ensure the confidentiality, availability, and integrity of SOC data sources
  • Ability to react quickly, decisively, and deliberately in high stress situations
  • Strong verbal / written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, and interact with customers
  • Ability to work with enterprise IT to ensure compliance in terms of OS patching requirements, Server patching and build template management
  • Technical certifications considered an asset are : CISSP,GCIH, GCIA, GCFA, GPEN, GCFE, CCNA, CCNP
  • Key Skills : Python, Perl, Java, SIEM, ticketing tools, JIRA and related Dev-Ops experience
  • WE VALUE

  • Experience years in building sandbox / test lab environments
  • Experience with log management and / or SIEM technologies such as Splunk, ArcSight, and LogLogic
  • Proficient in IT security tools used in Security Operations Center (SOC) including but not limited to SIEMS, Security incident management tools like Swimlane, Encase, Last Line, Endpoint Security Tools like McAfee, EDR tools like Crowdstrike Falcon
  • Strong development and coding skills on Python, Perl, Java or C++ or any shell scripting to assist custom development for cross platform integration, workflow creations, Internal portal management, automations and customization of off the shelf tools with vendor APIs
  • Experience with databases and SQL
  • Experience doing POCs / POVs of off the shelf tools, taking part in technology assessment, deployment, integration & maintenance.
  • Reviewing technology designs and develop security controls and solutions

  • Participate in the selection of security solutions, or enhancements to existing security solutions, to improve overall enterprise security
  • Cross team collaboration for projects relating to the Security platforms including and not limited MNAs and divestitures
  • Define and document standard methodologies from a security perspective
  • Performing other Enterprise Security & Support tasks as required and assigned.
  • Understanding / Knowledge of global frameworks and standards like NIST, FIPS, GDPR, DFARS etc
  • Code management and administration of home grown tools
  • Strong research background and an analytical approach
  • Experience performing security reviews / vulnerability risk assessments of network environments using both manual procedures and automated analysis tools.
  • Possesses a solid understanding of the TCP / IP protocol suite, security architecture, and remote access security techniques / products.
  • Ensure the confidentiality, availability, and integrity of SOC data sources
  • Ability to react quickly, decisively, and deliberately in high stress situations
  • Strong verbal / written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, and interact with customers
  • Ability to work with enterprise IT to ensure compliance in terms of OS patching requirements, Server patching and build template management
  • Technical certifications considered an asset are : CISSP,GCIH, GCIA, GCFA, GPEN, GCFE, CCNA, CCNP

    INCLUDES

  • Continued Professional Development
  • Continued Professional Development
  • Continued Professional Development
  • Apply
    Apply
    My Email
    By clicking on "Continue", you agree that neuvoo collects and processes your personal data, which you have provided in this form, to create a neuvoo account and subscribe you to our email alerts, in accordance with our Privacy Policy . You may withdraw your consent at any time, by following these steps .
    Continue
    Application form