Global Job Title: Lead Cyber Sec Archt/Engr
1. Tag Lines
• Driving\n Infinite Possibilities Within A Diversified, Global Organization
2. Essential Functions of the Job
• Drive the establishment and maintenance of cyber security risk management\n framework and mechanism and the adoption of regulatory standards and\n requirements in APAC countries.
• Coordinate with global teams including Data Privacy and HGS central teams\n to drive the data protection activities, incl. security technical assessments\n as a local main POC.
• Provide technical consultation, guidance, and assistance to management,\n business unit contacts and internal customers to ensure the protection of\n Honeywell by integrating controls, processes, and procedures into all\n services and products used by the enterprise.
• Drive data protection-relevant certification/qualification assessment, as\n ad hoc response to external parties and authority filing preparation if\n needed from cyber security perspective.
• Partner with HGS central teams and relevant stakeholders and drive\n necessary incident handling and reporting necessary.
3.\n Impact Statements
• You are pivotal in safeguarding Honeywell's\n information assets from ever-evolving cyber threats, providing a strong\n foundation for business continuity and growth.
• With the increasing frequency and sophistication\n of cyberattacks, you play a crucial role in ensuring the Honeywell's security\n posture is resilient and up-to-date, and are responsible for designing\n security controls, identifying potential risk and delivering mitigation\n suggestions that helps to reduce the risk of cyber threats and ensure\n compliance with China regulation requirements.
• As a key player in the Honeywell Global Security\n team, you are responsible for balancing security measures with business\n needs, ensuring a comprehensive security strategy that is aligned with the\n organization's goals and objectives, and enabling the organization to operate\n with cyber security confidence and trust.
4. Job\n Activities
• 70% Drive local data protection relevant activities, incl. design\n the data protection security technical assessment workplan, conduct the\n assessment, authority filing preparation, and support HGS GRC Data Privacy\n team to design and drive the China PIA support model, etc.
• 15% Review architecture of China technical\n solutions, deliver technical guidance to ensure build in China specific\n external regulation requirements in design phase.
• 5% Drive APAC regulation required other\n assessments related to cyber security and data protection.
• 5% Drive data protection relevant certification/qualification\n assessment and ad hoc response to external parties.
• 5% Deliver regular reports to leadership on potential security\n risk, project progress, security posture and other metrics related to China region cyber security.
5. You Must Have
• Bachelor's degree with a minimum of 10+ years experience in a security field.
• At least one of the following certifications is required: CISSP, CCSP, CISA, CISM, CRISC and CDPSE.
• Familiarity with APAC regulation requirements related to cyber security and data protection.
• Strong communication skills with leaders and key stakeholders, in both Mandarin and English.
• Effective partnership building skills with the key stakeholders.
• Global mindset and experience working with multiple regions and time zones required. Time zone compatibility/flexibility to communicate with application, process and service owners, IT/Security leaders and external customers, etc.
6. We Value
• Masters or Doctorate degree in an engineering, technical or security program.
• Advanced architecture experience with large scale, global implementations.
• Exceptional planning and organization skills. Ability to start and persist with specific courses of action while exhibiting high motivation, sense of urgency, and ownership.
• Strong analytical, persuasion and negotiation skills.
• Strong problem-solving skills.
• Demonstrated strong interpersonal skills, including the ability to effectively listen and communicate with others to resolve conflicts in a professional manner.
• Aptitude/willingness to learn, customize, and develop new processes, methodologies, and technologies.
• Strong leadership skills but can take direction & participate on teams. Comfortable interacting with and presenting to senior management.