Do you have a passion for security? Are you interested in improving the security of systems in a complex operating environment? At Rockwell Automation, the leading industrial automation company, the vulnerability analyst is responsible for identifying vulnerabilities in Rockwell systems using vulnerability scanning tools, interpreting the results, and developing remediation guidance for stakeholders. They will research, identify, assess, and prioritize vendor and third-party security advisories and then assist system owners in completing patching and mitigation activities. In addition, the vulnerability analyst also performs a key role in identifying areas to improve security posture resulting from security incidents. The vulnerability analyst works within the Risk & Compliance function, which is responsible for protecting Rockwell's security globally across a mix of cloud, on-premise, and manufacturing networks.
Key Responsibilities :
Keep up to date on the latest vulnerabilities that may affect Rockwell systems
Conduct triage of vulnerabilities based on criticality
Contribute to vulnerability management process development
Develop and conduct remediation activities with internal stakeholders in response to detected vulnerabilities
Develop, research, and maintain proficiency in tools, techniques, and trends related to vulnerability analysis
Identify root cause of cybersecurity incidents
Develop base statistical methods to display cybersecurity risk
Hunt for new vulnerabilities
Perform security penetration tests on networks, web-based applications, and computer systems
Create and deliver findings and/or reports to application owners and management
Consult application owners on best practices for remediation
We're looking for someone with :
Experience with web application penetration testing
Basic knowledge of Software Development Lifecycle
A strong understanding of Windows and Linux based systems
An understanding of common networking protocols, such as HTTP, DNS, TLS
An understanding of common exploitation vectors
Outstanding communication, organization, and problem-solving skills
Ability to effectively communicate vulnerabilities and technical concepts to all levels
Strong organizational, multi-tasking, and time management skills
Excellent writing skills
Strong negotiating skills
Curiosity and a strong desire to learn
Basic Qualifications :
Legal authorization to work in the US is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening.
Preferred Qualifications :
Typically requires 3 years of professional experience in Information Security
Bachelor's degree in Computer Science, IT, Information Security
Familiarity with cloud environments such as Azure, AWS
Familiarity with virtualization technologies such as VMWare, Docker, and KVM
Knowledge of a programming or scripting language, preferably Python
Continuous improvement mentality, desire to automate tasks when applicable
Security certifications such as Security+, GWAPT, OSCP
Experience and training in the use of vulnerability tools such as Nexpose, Burp, Metasploit
Windows Server administration experience
Linux/Unix server administration experience
Network debugging skills
***For a candidate with the right experience, this position could be worked remotely from any US location***
We are an Equal Opportunity Employer including disability and veterans.
If you are an individual with a disability and you need assistance or a reasonable accommodation during the application process, please contact our services team at +1 (844) 404-7427.
Internal Number: R21-5188
About Rockwell Automation
When you choose Rockwell Automation, you join countless talented employees who have helped us establish our leadership position in the automation industry over the past century.
You join a diverse, inclusive and global community with a passion for innovation. A place where you can partner with great minds and inspiring people. And a corporation backed by the financial strength that drives growth – and career opportunities.
As much as we focus on our customers, we know our employees are key to our success and future. Helping you develop a rewarding career is a top priority. Because when you succeed, we succeed.