Cybersecurity Analyst in Rockwell Automation

Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile.

With more than 25,000 employees who make the world better every day, we know we have something special. Behind our customers – amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility – our people are energized problem solvers that take pride in how the work we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work.

And if that’s you we would love to have you join us!

We are looking for a cybersecurity analyst in the OT Cyber Security area. Working collaboratively in a SOC (Security Operations Center) (L1-L2) to detect and respond to information security incidents and vulnerabilities, maintaining and following procedures for security events alerting and security vulnerabilities reports, and participating in security investigations and mitigations.

• Computer Science and Engineering (Bachelor’s Degree), Telecommunications Engineering (Bachelor’s Degree) or Sys Admin and Networking.
• Technical knowledge of networking, routing, and switching.
• Technical knowledge of operating systems (Windows, Linux, Mac).
• Ability to quickly comprehend the functions and capabilities of new technologies.
• Strong customer service and decision-making skills.
• Ability to perform analysis of log files from a variety of sources, to include individual host logs, network traffic logs, firewall logs, or intrusion prevention logs.
• Experience with packet analysis (Wireshark) and Malware analysis.
• Be able to work in a global environment, with virtual teams and customer site.
• Willing and able to travel nationally and internationally 30%.

• Certifications such as, CCNA, Security +, MCITP/MCSE and ITIL Foundations Certifications .
• Experience with monitoring, analyzing and understanding log sources for threat hunting.
• Experience with SIEM and/or IDS/IPS technologies and advanced knowledge of detection rules/signatures creation.
• Experience with AV, EDR, Orchestration security platforms or similar.
• Experience in at least one programming language such as Python, Javascript, etc.
• Knowledge of common system exploits, network attacks, phishing techniques and malware.

Applications are open until January 30.

· Full-time.

· Hybrid work mode.

· Willing to work rotating shifts and weekends.

· Excellent written and communications skills.

· English & Spanish spoken and written.