Honeywell
Advanced Cyber Sec Archt/Engr
Job Description
**Advanced Cyber Security Engineer (Pentesting)**
We are seeking an Advanced Cyber Security Engineer with 5+ years of hands-on offensive security experience to execute vulnerability assessments and penetration testing across web applications, APIs, cloud environments, infrastructure, and GenAI/LLM-enabled systems. You will work closely with engineering teams to identify exploitable weaknesses, validate risk, and drive remediation through practical guidance and re-testing.
**Key Responsibilities**
+ Plan and execute manual and automated penetration tests for web applications (OWASP Top 10, SANS 25), including authentication, authorization, business logic, session management, and SSO testing (SAML 2.0, OAuth 2.0, OpenID Connect).
+ Perform API security testing (REST/GraphQL/gRPC) including schema abuse, authz bypass, injection, mass assignment, rate-limit bypass, and broken object-level authorization (BOLA).
+ Conduct cloud security assessments across AWS...
We are seeking an Advanced Cyber Security Engineer with 5+ years of hands-on offensive security experience to execute vulnerability assessments and penetration testing across web applications, APIs, cloud environments, infrastructure, and GenAI/LLM-enabled systems. You will work closely with engineering teams to identify exploitable weaknesses, validate risk, and drive remediation through practical guidance and re-testing.
**Key Responsibilities**
+ Plan and execute manual and automated penetration tests for web applications (OWASP Top 10, SANS 25), including authentication, authorization, business logic, session management, and SSO testing (SAML 2.0, OAuth 2.0, OpenID Connect).
+ Perform API security testing (REST/GraphQL/gRPC) including schema abuse, authz bypass, injection, mass assignment, rate-limit bypass, and broken object-level authorization (BOLA).
+ Conduct cloud security assessments across AWS...