Honeywell INC.
Overview
Join a cutting-edge aerospace product security team shaping the future of secure flight systems and defense technologies. We’re seeking an experienced security-engineering-minded software developer to help maintain and reinvent internal tools that support cybersecurity workflows, risk assessments, and technical collaboration. The role emphasizes crafting intuitive, robust solutions that empower engineers and cybersecurity analysts across product lifecycles—balancing usability, availability, compliance, and performance. You’ll work directly with cybersecurity SMEs, systems engineers, and risk managers to design toolsets that reduce friction, elevate transparency, and accelerate decision-making in product security and compliance processes. Honeywell is seeking a seasoned
PKI and Key Management Services (KMS) expert
to advance the security foundation of our aerospace technologies. As a Senior Advanced Individual Contributor, you will architect, implement, and govern robust cryptographic infrastructure across product platforms, engineering environments, and global tooling solutions. This role is deeply hands-on and ideal for an expert passionate about securing mission-critical systems in high-assurance domains. You will collaborate with cybersecurity architects, systems engineers, and tooling teams to ensure secure software releases, identity management, and digital trust across complex ecosystems. Responsibilities
Design, implement, and maintain PKI and KMS solutions to support Honeywell Aerospace's internal tooling, product development, and secure engineering operations Define certificate lifecycle management policies, root CA/ICA hierarchy strategy, and revocation protocols for production and test environments Integrate cryptographic functions into DevSecOps pipelines and software release processes to ensure code signing, secure configuration management, and secure boot Support encryption, authentication, and identity validation across internal tools, CI/CD platforms, and engineering workflows Lead technical investigations and audits related to certificate compromise, key misuse, or unauthorized access Partner with risk, compliance, and cybersecurity teams to meet NIST, DO178-C security addenda, and other aerospace‑relevant standards Evaluate emerging crypto technologies and recommend modernization strategies for legacy tooling Provide mentoring and guidance to junior engineers across cybersecurity and engineering functions Requirements
6 years in cybersecurity and cryptographic services with direct PKI/KMS domain expertise Expertise in maintaining and providing code signing capabilities Deep understanding of X.509, certificate authorities, OCSP, key rotation, HSM integration, and secure key storage Hands-on experience with tooling integration: e.g., Smartcards, TPMs, encrypted containers, and automation platforms Proven success designing secure architectures in regulated environments (e.g., aerospace, defense, critical infrastructure) Expertise in secure software lifecycle practices and DevSecOps environments Experience with Java/Groovy, Linux OS, and Ansible Experience in assisting stakeholders with adoption and integration of PKI capabilities into product Must be a US citizen due to contractual requirements We value
Bachelor's degree or equivalent experience Passion for working with development teams to make more secure, harder to defeat products Strong interpersonal skills with the ability to facilitate diverse groups, negotiate priorities, and resolve conflicts among project stakeholders Hands-on experience with Black Duck Hub, secure Jira workflows, and release signing automation Background in internal tooling development and secure engineering enablement Experience deploying HSMs and KMS solutions in cloud, hybrid, and on-prem environments Contributions to PKI governance models and enterprise crypto policies Familiarity with regulatory requirements and cryptographic compliance standards (FIPS 140-2, NIST 800-series, DO178-C security addenda) Certifications in security and privacy (e.g., Certified Encryption Specialist, GIAC Cryptography and Crypto Foundations) Understanding of Agile software development practices About Us
Honeywell helps organizations solve the world's most complex challenges in automation, the future of aviation and energy transition. We provide actionable solutions and innovation through our Aerospace Technologies, Building Automation, Energy and Sustainability Solutions, and Industrial Automation segments—powered by Honeywell Forge software—that help make the world smarter, safer, and more sustainable. Application information
The application period for the job is estimated to be 40 days from the posting date; this may be shortened or extended depending on business needs and candidate availability. Must be a US citizen due to contractual requirements.
#J-18808-Ljbffr
Join a cutting-edge aerospace product security team shaping the future of secure flight systems and defense technologies. We’re seeking an experienced security-engineering-minded software developer to help maintain and reinvent internal tools that support cybersecurity workflows, risk assessments, and technical collaboration. The role emphasizes crafting intuitive, robust solutions that empower engineers and cybersecurity analysts across product lifecycles—balancing usability, availability, compliance, and performance. You’ll work directly with cybersecurity SMEs, systems engineers, and risk managers to design toolsets that reduce friction, elevate transparency, and accelerate decision-making in product security and compliance processes. Honeywell is seeking a seasoned
PKI and Key Management Services (KMS) expert
to advance the security foundation of our aerospace technologies. As a Senior Advanced Individual Contributor, you will architect, implement, and govern robust cryptographic infrastructure across product platforms, engineering environments, and global tooling solutions. This role is deeply hands-on and ideal for an expert passionate about securing mission-critical systems in high-assurance domains. You will collaborate with cybersecurity architects, systems engineers, and tooling teams to ensure secure software releases, identity management, and digital trust across complex ecosystems. Responsibilities
Design, implement, and maintain PKI and KMS solutions to support Honeywell Aerospace's internal tooling, product development, and secure engineering operations Define certificate lifecycle management policies, root CA/ICA hierarchy strategy, and revocation protocols for production and test environments Integrate cryptographic functions into DevSecOps pipelines and software release processes to ensure code signing, secure configuration management, and secure boot Support encryption, authentication, and identity validation across internal tools, CI/CD platforms, and engineering workflows Lead technical investigations and audits related to certificate compromise, key misuse, or unauthorized access Partner with risk, compliance, and cybersecurity teams to meet NIST, DO178-C security addenda, and other aerospace‑relevant standards Evaluate emerging crypto technologies and recommend modernization strategies for legacy tooling Provide mentoring and guidance to junior engineers across cybersecurity and engineering functions Requirements
6 years in cybersecurity and cryptographic services with direct PKI/KMS domain expertise Expertise in maintaining and providing code signing capabilities Deep understanding of X.509, certificate authorities, OCSP, key rotation, HSM integration, and secure key storage Hands-on experience with tooling integration: e.g., Smartcards, TPMs, encrypted containers, and automation platforms Proven success designing secure architectures in regulated environments (e.g., aerospace, defense, critical infrastructure) Expertise in secure software lifecycle practices and DevSecOps environments Experience with Java/Groovy, Linux OS, and Ansible Experience in assisting stakeholders with adoption and integration of PKI capabilities into product Must be a US citizen due to contractual requirements We value
Bachelor's degree or equivalent experience Passion for working with development teams to make more secure, harder to defeat products Strong interpersonal skills with the ability to facilitate diverse groups, negotiate priorities, and resolve conflicts among project stakeholders Hands-on experience with Black Duck Hub, secure Jira workflows, and release signing automation Background in internal tooling development and secure engineering enablement Experience deploying HSMs and KMS solutions in cloud, hybrid, and on-prem environments Contributions to PKI governance models and enterprise crypto policies Familiarity with regulatory requirements and cryptographic compliance standards (FIPS 140-2, NIST 800-series, DO178-C security addenda) Certifications in security and privacy (e.g., Certified Encryption Specialist, GIAC Cryptography and Crypto Foundations) Understanding of Agile software development practices About Us
Honeywell helps organizations solve the world's most complex challenges in automation, the future of aviation and energy transition. We provide actionable solutions and innovation through our Aerospace Technologies, Building Automation, Energy and Sustainability Solutions, and Industrial Automation segments—powered by Honeywell Forge software—that help make the world smarter, safer, and more sustainable. Application information
The application period for the job is estimated to be 40 days from the posting date; this may be shortened or extended depending on business needs and candidate availability. Must be a US citizen due to contractual requirements.
#J-18808-Ljbffr