Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you we would love to have you join us!

Job Description

As a Senior Product Security Engineer, you will lead Digital & Platform Technologies (DPT) Team products in meeting Rockwell Security Development Lifecycle (SDL) requirements. This includes providing guidance of individual teams, and developing tools and documentation related to security requirements compliance. You will report to the Product Security Leader and work onsite in Prague, Czechia.

Your Responsibilities:

Guide implementation of security policies across the DPT portfolio.Guide and review product implementation of security controls, threat modeling and security activities such as fuzz testing, SAST, etc.Manage vulnerability assessment process for the DPT team.Perform security reviews of product architectures and implementations. Provide expertise and guidance to teams on security-related issues.Contribute to the development and improvement of Rockwell security procedures.

The Essentials - You Will Have:

Bachelor's degree in Computer Engineering, Computer Science, Cyber Security, or Electrical Engineering with a Computer Science emphasis.Familiarity with software security verification and validation techniques such as threat modeling, web application vulnerability scanning, or penetration testing.5+ years of experience with the application of Secure Development Lifecycle in product development.Experience using different programming techniques and scripting languages, particularly Python, including co-op/internship experience5+ years of experience with Source Code Review

The Preferred - You Might Also Have:

Familiarity with security standards and regulations like: IEC 62443, NIST Cybersecurity Framework, EU Cyber Resilience Act, US SSDF.Experience with threat modeling software productsExperience with embedded software development and testing.Experience programming in object-oriented languages like C++, including co-op/internship experience.Experience working in a Continuous Integration/DevOps environment.Experience using software security testing tools such as Burp Suite, Peach Fuzzer, including any co-op/internship experience.

What We Offer:

Comprehensive mindfulness programs with a premium membership to CalmVolunteer Paid Time off available after 6 months of employment for eligible employeesCompany volunteer and donation matching program – Your volunteer hours or personal cash donations to an eligible charity can be matched with a charitable donation.Employee Assistance ProgramPersonalized wellbeing programs through our OnTrack programOn-demand digital course library for professional development

At Rockwell Automation we are dedicated to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right person for this or other roles.

#LI-Hybrid

#LI-YSM

Rockwell Automation’s hybrid policy aligns that employees are expected to work at a Rockwell location at least Mondays, Tuesdays, and Thursdays unless they have a business obligation out of the office.