Enterprise Cybersecurity Architect

Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers – amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility – our people are energized problem solvers that take pride in how the work we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you we would love to have you join us!

Job Description

Position Overview:

Rockwell Automation is looking for an Enterprise Security Architect, responsible for designing, operating and optimizing the Cybersecurity Architecture and Engineering strategy within the Office of the CISO. You will support the vision for cybersecurity, collaborating with peers and leaders to establish and help develop the 3-to-5-year plan to support the business. You will develop and evaluate cybersecurity capabilities to support enterprise IT, operational technology (OT), internet of things (IoT), and external customer enablement. You will manage the IT/IoT/OT convergence within the global enterprise network, maintaining controls and technology to provide an acceptable level of risk for the transforming business. Furthermore, you will design and manage the security architecture review board standards, methods, and spans multiple disciplines and domains including network and security architecture, applications security, endpoint security, cloud security, OT security, and IoT security. You should be recognized as leader and the architect of architects, engaging business partners, and promoting defined business architecture standards while applying cybersecurity principals and standards to maintain acceptable risk.

You will work with a array of technologies in software, IoT, cloud, and embedded systems. Join us in the Office of CISO as we deliver safe, secure and resilient technologies to protect our global community and the critical services and goods they provide.

You will report to the Chief Information Security Officer.

Your Responsibilities:

• Partner with the business and digital teams to understand their strategic goals, technology needs, challenges, and latest trends
• Align technology resources with our short- and long-term goals
• Serve on the Office of the CISO leadership team and align Cybersecurity goals with the Senior Leadership Team’s business and technology goals.
• Lead developing and publishing information security policies, standards, and operating procedures, to govern a minimum set of requirements and security controls
• Ensure all technology and cybersecurity practices follow regulatory standards.
• Define enterprise-level cybersecurity measures and reference architecture patterns, and manage traceability between business strategy and cybersecurity
• Manage Integrated Supply Chain Industrial Control Systems (ICS) and Operational Technology (OT) site assessments to identify business critical systems and develop risk mitigation measures.
• Conduct comprehensive OT security program analysis and provide expert recommendations that result in the development of an integrated OT/IoT security plan and roadmap.
• Identify what technologies can be used to improve our products and services
• Set the strategic direction for cybersecurity technology and oversee the Cybersecurity Technology Roadmap partnering with business segment technology teams and partners
• Make decisions, ensuring safety and soundness, resiliency and scalability in the architecting and engineering of product solutions, and managing all technical delivery from proof of concept to global deployment
• Support the technical guidance for designing security capabilities in a cloud and traditional technology environments.
• Work with the Enterprise Architecture team to design and implement enterprise security capabilities into solution architecture
• Be a primary escalation point for enterprise security architecture decisions that span multiple business divisions.
• Coach cybersecurity analysts, being a mentor to team members.
• Maintain a consumer-focused outlook and aid in the delivery of projects
• Develop relationships and work with business counterparts, and other Business and Technology teams in defining the Cybersecurity program and solutions strategy, and the future roadmap for new capabilities
• Partner with Product Security on all security-related strategic planning for the IoT device ecosystem. Responsibilities include scheduling, planning, and participating in strategic planning workshops, tracking progress against strategic plans, and creating leadership communications.
• Support a secure by design approach using frameworks and methodologies relative to secure software and product development in close partnership with Product Security & Safety
• Design complex security systems, integration of those systems into myriad operational products, hosting environments.
• Research latest technology solutions reducing costs, increasing efficiencies, providing more capabilities, and increasing security.
• Partner with team members, executives and senior management on technical decisions, program status, technical issues, and risk.
• Keep up to date with latest cyber security developments and latest threat landscape. Engage with Cyber Security academia, R&D and Vendors.

The Essentials – You Will Have:

• Bachelor’s Degree or equivalent years of relevant work experience
• Legal authorization to work in the US is required – we will not sponsor individuals for employment visas, not now or in the future, for this job opening

The Preferred – You Might Also Have:

• Typically requires 8+ years of relevant leadership experience within Information Security, in a regulated business, with ability to manage conflict, provide leadership, organize, and make decisions.
• Bachelor’s or master’s degree in information security, Business, Risk Management, Finance, Statistics or other related field.
• Experience and proficient in infrastructure and digital technologies including enterprise networking, server and database platforms, middleware technologies, email/messaging, cloud-based technologies (I.e. SaaS, PaaS, IaaS)
• Experience in implementing Cybersecurity capabilities including Network Security, NAC, VPN, Cloud Access, EPP/EDR, WAF, SIEM/SOAR, TLS, PKI, BC/DR, DPL, Threat Intel, Risk Management, Digital Forensics, and eDiscovery.
• Experience designing and implementing Identity and Access Management systems including IGA, PAM, SSO, MFA, and directory services using industry standards (i.e. OAuth, OpenID Connect, SAML, SCIM, FIDO, etc.)
• Experience / familiarity with frameworks, publications, and certifications including NIST CSF, NIST SP 800-37 (RMF), NIST SP 800-53, NIST SP 800-100, NIST SP 800-171, CMMC, SOC2, ISO 27001, and IEC 62443
• Professional Certifications in CISSP, CISM, CRISC, PMP.

What We Offer:

• Health Insurance including Medical, Dental and Vision
• 401k
• Paid Time off
• Parental and Caregiver Leave
• Flexible Work Schedule where you will work with your manager to enjoy a work schedule that can be flexible with your personal life.
• To learn more about our benefits package, please visit atwww.raquickfind.com.

We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.

#LI-MG4

#LI-Hybrid

We are an Equal Opportunity Employer including disability and veterans.

If you are an individual with a disability and you need assistance or a reasonable accommodation during the application process, please contact our services team at +1 (844) 404-7247.

Rockwell Automation’s hybrid policy aligns that employees are expected to work at a Rockwell location at least Mondays, Tuesdays, and Thursdays unless they have a business obligation out of the office.