Honeywell is a Fortune 100 diversified technology and manufacturing leader, serving customers worldwide with aerospace products and services; control technologies for buildings, homes, and industry; turbochargers; and performance materials. Based in Morris Township, N.J., Honeywell’s shares are traded on the New York, London, and Chicago Stock Exchanges. For more news and information on Honeywell, please visit http://www.honeywellnow.com/ .
Honeywell Aerospace is a $12B+ SBG (Strategic Business Group) with 40,000 employees worldwide. Honeywell Aerospace is a leading global provider of integrated avionics, propulsion engines, aircraft and engine systems and full-service solutions for our customers. The business is organized into three strategic business units to serve the needs of aerospace manufacturers and end users in three key industry segments:
Air Transport & Regional
Business & General Aviation
Defense & Space
With operations at nearly 100 worldwide manufacturing and service sites, Honeywell Aerospace strives to enhance customer value by making flight safer, more reliable and more cost-effective. Our vision is to transform the world with Aerospace technology and innovative people.
Honeywell Technology Solutions Inc., (HTSI) is a wholly owned subsidiary of Honeywell headquartered in Columbia, MD, with approximately 5,000 employees at over 155 locations around the world. We are a recognized leader in delivering engineering, information, logistics and professional services to clients in the space, defense, logistics and information technology markets.
Position is contingent upon award of contract.
Interested candidates must currently hold a TS/SCI with Full Scope Poly in order to be considered.
The Information Systems Security Engineer (ISSE) is expected to perform and review technical security assessments within computing environments to identify vulnerabilities, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies; validate and verify system security requirements definitions and analysis and establish system security designs; develop, implements, and/or integrate IA and security systems and system components including networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements; build IA into systems deployed to operational environments. They will assist architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of security policy and enterprise solutions; support building security architectures; enforce the design and implementation of trusted relations among external systems and architectures; assess and mitigate system security threats/risks throughout the program life cycle; contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. The ISSE will review certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content; apply system security engineering expertise in one or more of the following to system security design process, engineering life cycle, information domain, cross domain solutions, commercial off-the-shelf and government off-the-shelf cryptography, identification, authentication and authorization, system integration, risk management, intrusion detection, contingency planning, incident handling, configuration control, change management, auditing, certification and accreditation process, principles of IA (confidentiality, integrity, non-repudiation, availability, and access control), and security testing. The ISSE will support security authorization activities in compliance with NSA/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Information Assurance Certification and Accreditation Process (DIACAP) process, the NIST Risk Management Framework (RMF) process, and prescribed NSA/CSS business processes for security engineering.
The ISSE must possess an understanding of the computer system internals, operating systems and layered products, specialized and vendor software, and demonstrates an aptitude and willingness to keep technical skills current by learning new languages, operating systems, hardware, tools, and technology. They will be expected to lead the installation and set-up of support software, such as network or database products; verify the proper installation and integrity of software products.
The responsibilities of the ISSE include but are not limited to respond to and resolve problems related to the specialized area; generates/updates project documents; performs support software product evaluation. As a team leader they will plan and organize projects, directs multiple projects through the different phases, and manages project resources.
Performs all other duties as assigned.
Information Systems Security Analyst 3:
BA/BS in related field or Computer Network Engineering Certification, and 5 years of progressive, related experience. In lieu of formal education, 13 years of progressive, related experience. Specific contract requirements regarding education and experience will prevail.
Information Systems Security Analyst 4:
BA/BS in related field or Computer Network Engineering Certification, and 8 years of progressive related experience, or In lieu of formal education, 16 years of progressive, related experience. DoD 8570 compliance with IASAE Level 2 is required CISSP Certification is required. Four (4) years of ISSE experience may be substituted for a bachelor’s degree. CISSP Certification is required.
As an Equal Opportunity Employer, we are committed to a diverse workforce
: Information Technology
: United States
: Bachelor's Degree
: Yes, 25 % of the Time
University Relations Requisition
Honeywell is a Fortune 100 company that invents and manufactures technologies to address some of the world’s toughest challenges...