Product Security Lead
Mayfield Heights, Ohio, United States of America
Full Time
3 hours ago
Visa Sponsor
Key skills
CloudCyber SecurityCommunicationPenetration TestingCloud Security
About this role
Role Overview
- Be a security thought leader within Rockwell Automation through educating internal personnel and influencing proper security development techniques and tools.
- Provide guidance to senior levels of management regarding product security risk and exposure.
- Drive the process for managing vulnerabilities and their resolution.
- Provide periodic metrics demonstrating our vulnerability posture.
- Drive the proper application of security principles and techniques with product groups.
- Research current security trends in Industrial Control Systems, software, embedded systems, hardware design, cloud-to-edge, and application security and collaborate with security experts to ensure proper security requirements are put in place.
- Participate and provide critical analysis in security exception reviews and then advocate/review those exceptions with senior management.
- Interact with Digital Trust on security initiatives that the product groups need to participate in.
- Represents the business unit for customer presentations and meetings with regards to security.
- Position requires an understanding of security in the IT and automation markets, competitive offerings, and customer needs to provide direction and implementation in Rockwell Automation control system products and services.
Requirements
- Bachelor's degree in relevant field
- Legal authorization to work in the US is required
- Typically requires 8+ years of related experience
- Bachelor's degree in Security, Electrical Engineering, Computer Engineering, Computer Science or equivalent
- 5+ years of application and/or software/firmware development experience in a professional setting
- 2+ years of experience in demonstrating Security Development Lifecycle concepts (i.e., secure code reviews, threat modeling, and penetration testing)
- Written and verbal skills in English
- Basic knowledge of industrial control systems
- Demonstrated knowledge in the application of both software/embedded software engineering and security principles, theories, concepts, and techniques
- Demonstrated knowledge in the application of both cloud-based software security principles
- Demonstrated knowledge of hardware engineering security principles, theories, concepts, and techniques
- Understanding and experience implementing security standards such as the NIST Cybersecurity Framework and/or IEC 62443
- Security certification(s) such as CISSP, CEH, Applicable GIAC Certifications, OSCP, CySec Specialist (TÜV Rheinland), or an advanced degree in cybersecurity
- Knowledge of communication protocols Ethernet and/or Common Industrial Protocol (CIP), and modern microprocessor architectures
- Advanced coursework and/or training related to secure software engineering, application security, cloud security, embedded systems, and/or securing operating systems.
Tech Stack
- Cloud
- Cyber Security
Benefits
- Health Insurance including Medical, Dental and Vision
- 401k
- Paid Time off
- Parental and Caregiver Leave
- Flexible Work Schedule where you will work with your manager to enjoy a work schedule that can be flexible with your personal life.