AppSec Jobs
← Back to all jobs

Honeywell

Cyber Security Engineer II - Product Security

Phoenix, AZWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Honeywell

Honeywell International Inc. is a multinational conglomerate based in Minneapolis, specializing in automation, aerospace, building technologies, and performance materials. The company has a rich history dating back to 1885, starting with innovations in thermostats and heating controls. It was formed through the merger of several companies, including the Butz Thermo-Electric Regulator Co. and Honeywell Heating Specialty Co., which laid the foundation for its growth in various sectors. Today, Honeywell offers a wide range of high-tech solutions. It is a leading provider of automation and control technologies, including industrial controls and building systems. In aerospace, Honeywell manufactures avionics for aircraft and spacecraft, supporting significant missions like those to the moon. The company also produces performance materials, scanning and logistics solutions, and security systems. With over 35,000 patents, Honeywell operates globally, serving diverse markets such as aerospace, petroleum, manufacturing, and distribution.

Industry

electrical/electronic manufacturing

Employees

NaN

29,074 engineers

Revenue

$NaNK

Website

Visit →

Security at Honeywell

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • Honeywell's AppSec philosophy centers on minimizing customer risk associated with security vulnerabilities through automated integration into the development lifecycle.
  • Their mission is to 'minimize customers' risk associated with security vulnerabilities.' Security is not treated as a separate gate but is 'automatically built into our software development lifecycle,' with Product Security Leaders integrated directly into the release process.
  • They utilize a risk-based approach where vulnerabilities are 'scored via the CVSS' and emphasize a commitment to 'quickly evaluate and address' security concerns.

Security Team

The AppSec function at Honeywell is primarily managed by the Product Security Incident Response Team (PSIRT), which 'manages the receipt, investigation, internal coordination, remediation and disclosure' of vulnerabilities. Key public-facing leaders include Chase Carpenter (Chief Security Officer) and Matthew Bohne (Chief Product Security Officer). The team's goal is to 'minimize customers' risk' through vulnerability management. Specific team size estimates and active job postings for dedicated AppSec roles were not publicly available as of March 2026.

Key Initiatives

Honeywell practices 'Shift Left' by ensuring 'security reviews are automatically built into our software development lifecycle' and integrating Product Security Leaders into the release process to work with developers. Their vulnerability management process includes a coordinated disclosure program where they 'encourage coordinated disclosure' via email (PSIRT@honeywell.com). Upon intake, they 'commit the appropriate resources to analyze, validate, and address the issue.' There is no public evidence of a formal 'Security Champions' program or specific new initiatives launched within the last six months.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.