Senior Software Security Engineer

Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers—amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility—our people are energized problem solvers who take pride in how the work we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you, we would love to have you join us!

You will work with a high-performing team of like-minded individuals passionate about ensuring that our products are delivered with the highest levels of quality and security. Join our Software Development team to learn how we deliver safe, secure, and resilient technologies to protect our global community and the critical services and goods they provide.

Reporting to the Engineering Team Lead.

1. Software Development work: Design, implement, and test new security features. Coach team members on security requirements and standards, review product artifacts for security compliance.
2. Monitor Security Vulnerabilities collaborator: Collaborate with the Product Security Engineer to assess and resolve security anomalies.
3. Support to maintain the Design for Security (DfS) Checklist: Gather compliance evidence and support reviews with Product Security Engineers and Leaders.
4. Penetration Testing support: Coordinate penetration tests and evaluate findings with Security Engineers.
5. Liaison Responsibilities: Facilitate communication between development teams and security entities.
6. Software Bill of Materials (SBOM) support: Assist in producing and approving SBOMs and creating Software Attribution Lists.
7. Threat-Modeling participation: Engage in threat modeling activities, identify threats, address gaps, and coach team members.
8. Compliance Work support: Guide compliance activities such as CIS Benchmarks, SSDF, and CRA.

• Bachelor's degree in engineering or equivalent work experience.
• 5 years of software development experience; additional skills in application security are a plus.
• Fluent in English for global communication.

• 2+ years experience in Python, PowerShell, TypeScript, Kotlin, Go, Angular, Node.js.
• Experience with REST APIs, GitHub Actions, Dagger.io.
• Experience in threat modeling, security effects assessment, ICS/OT threats, security compliance, vulnerability assessment, supplier security risk assessments, DevSecOps, cloud security, and security tools such as SonarQube, Black Duck, Wiz.io, etc.
• Certified Ethical Hacker (CEH) or similar certification.

Our benefits include mindfulness programs, volunteer time off, donation matching, Employee Assistance Program, wellbeing programs, digital courses, and more.