External Compliance Analyst (FedRAMP)

The future is what you make it. When you join Honeywell, you become a member of our global team of thinkers, innovators, dreamers and doers who make the things that make the future. That means changing the way we fly, fueling jets in an eco-friendly way, keeping buildings smart and safe and even making it possible to breathe on Mars. Working at Honeywell isn’t just about developing cool things. That’s why all of our employees enjoy access to dynamic career opportunities across different fields and industries. Are you ready to help us make the future?Honeywell Global Security (HGS) is focused on integrating security into all aspects of our business to protect the people, processes, and assets by which Honeywell achieves its greater mission. Join a team that is focused on identifying and protecting the information, processes, formulas, techniques, methods, and know-how critical to Honeywell’s competitive capability. You will collaborate with a wide variety of functions and disciplines across the entire portfolio of Honeywell’s products and services to identify what allows Honeywell to operate better and faster than the competition and ensure that competitive differentiation remains within the company. You will work with cutting edge information security applications, systems, and best practices enabling Honeywell to achieve world-class results.

• Contract Support – Collect and interpret customer and cloud services contracts to support due diligence. Act as a cloud subject matter expert to advise internal clients, including internal leaders and Law and Contracts personnel concerning regulatory and contractual cloud compliance requirements and potential risks. Facilitate risk-based decisions with teams and subject matter professionals based on deep knowledge of contractual and regulatory cloud requirements. Support contract teams in terms and conditions negotiations, assuring alignment with existing IT and Security controls or identifying gaps requiring remediation.
• Audit and Inquiry Support - Provide timely responses regarding IT and Security cloud controls for external agency or customer audits and inquiries or internal audit and assessments, enabling the business to retain existing contracts and revenue. Create, use, and maintain standard cloud knowledge assets when providing regulator/customer/audit responses to assure consistent and accurate replies. Build cross-functional relationships and complete all regulator/customer cloud responses in partnership with Enterprise Services and other IT and functional teams.
• Deliverable Support - Create required IT/Security customer cloud deliverables, including contractually required deliverables. Act as lead or subject matter professional on projects to align IT/Security processes with cloud regulatory and contractual requirements. Support government cloud activities, including FedRAMP certification.

• US Citizenship due to contractual requirements
• 8+ years of progressive education and/or business experience, supporting government and commercial cloud environments, providing consultation on cloud regulatory requirements and creating compliance deliverables, including audit, compliance, risk, security or project management experience.
• 2+ years of FedRAMP and cloud infrastructure experience

• AWS/Azure associate level certification, CISSP, CISA, CISM, CRISC, GICSP, GCFE, PMP, CSM, ITIL, ISO 27001 Lead Implementer certification a plus.
• An active security clearance
• Exceptional verbal and written communication skills are paramount. Nuances in language or meaning can cause significant financial or legal penalties. Ability to fluently communicate in with leaders, customer and regulators.
• Exceptional planning and organization skills. Ability to start and persist with specific courses of action while exhibiting high motivation, sense of urgency, and ownership.
• Strong analytical, persuasion and negotiation skills.
• Strong problem-solving skills.
• Global mindset and experience working with multiple regions and time zones required. Time zone flexibility to communicate with application, process and service owners, IT/Security leaders and external customers and regulators.
• Demonstrated strong interpersonal skills, including the ability to effectively listen and communicate with others to resolve conflicts in a professional manner.
• Aptitude/willingness to learn, customize, and develop new processes, methodologies, and technologies.
• Strong leadership skills but can take direction & participate on teams. Comfortable interacting with and presenting to senior management.