Honeywell Aerospace & Defense is seeking an experienced IT Senior Manager – Security, Controls & Cyber to lead cybersecurity governance, regulatory compliance, and IT control frameworks across mission-critical and highly regulated environments.

This role will oversee security architecture, IT general controls (ITGC), compliance adherence, and cyber risk management across A&D digital platforms, ERP systems, manufacturing technologies (OT), and cloud environments. The position plays a key role in ensuring compliance with DoD, ITAR, export control, and federal cybersecurity mandates while enabling secure digital transformation.

The ideal candidate will combine deep enterprise cybersecurity expertise with experience operating in regulated aerospace, defense, or government environments.

YOU MUST HAVE

• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related field.

• 10 + years of IT or cybersecurity experience.

• 5 or more years in cybersecurity leadership or controls management.

• Strong knowledge of:

• NIST frameworks

• CMMC

• ITAR/EAR compliance

• ITGC/SOX controls

• Experience securing ERP systems (SAP preferred).

• Experience operating within Aerospace, Defense, or government-regulated industries.

• Ability to obtain and maintain U.S. security clearance (if required).

WE VALUE

• CISSP, CISM, CRISC, or similar certification.
• Experience with classified environments and classified parity models.
• Familiarity with secure cloud architectures in FedRAMP or Gov Cloud environments.
• Experience securing large-scale ERP transformations (e.g., SAP S/4HANA).
• Knowledge of AI/ML security risks within defense environments.

#AERO26

Key Responsibilities

• Cybersecurity Governance & Risk Management

• Lead cybersecurity strategy and governance across A&D IT systems.

• Oversee implementation of frameworks including:

• NIST 800-53 / 800-171

• CMMC requirements

• ISO 27001

• Conduct enterprise cyber risk assessments and mitigation planning.

• Ensure secure design and operational resilience across enterprise systems.

Compliance & Regulatory Controls

• Ensure compliance with:

• ITAR / EAR export control regulations

• DFARS cyber clauses

• SOX IT General Controls

• Government contract security requirements

• Partner with Legal, Compliance, and Government Security teams.

• Lead internal and external audit readiness activities.

• Manage control documentation, evidence collection, and remediation tracking.

Security Architecture & Engineering

• Oversee secure architecture standards across:

• ERP platforms (e.g., SAP S/4HANA, ECC)

• Cloud platforms (AWS, Azure)

• Manufacturing/Operational Technology (OT)

• Identity & Access Management (IAM)

• Lead vulnerability management and penetration testing programs.

• Ensure zero-trust architecture principles are implemented where appropriate.

• Drive Dev Sec Ops adoption across application development teams.

Operational Technology (OT) & Manufacturing Security

• Partner with Manufacturing IT to secure plant systems and shop-floor technologies.
• Support segmentation of IT/OT networks.
• Implement monitoring and anomaly detection for critical operational systems.

Leadership & Organizational Development

• Lead a team of cybersecurity engineers and controls analysts.
• Establish KPIs for cyber risk reduction and control effectiveness.
• Drive cross-functional alignment between IT, Engineering, Supply Chain, and Program Management.
• Present cyber posture updates to executive leadership.