Consultant - OT Cybersecurity

Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you we would love to have you join us!

Job Description

Job Summary:

• Deliver and execute the assigned project / work package on time with good quality, cost effectiveness and customer satisfaction.
• Ensure technical deliverables matches project / work package requirements. Save engineering cost for GEBS team through application and technical expertise.
• Ensure site activities are completed as desired by customer and in specified time frame.

You will report to the Execution Manager.

Your Responsibilities:

• Conduct risk assessments for OT systems (e.g., SCADA, PLCs, and DCS).
• Develop and implement OT-specific GRC frameworks.
• Ensure compliance with standards like IEC 62443, NIST CSF, and ISO 27001.
• Creating Business Continuity, Incident Response, Disaster Recovery plans and procedures.
• Collaborate with cybersecurity teams to align OT and IT governance.
• Advise on regulatory requirements (NERC CIP, GDPR, local safety laws).
• Support audits and incident response planning for OT environments.
• Deliver training and awareness programmes for OT personnel.
• Understand routing and segmentation concepts like VLANs.
• Technical knowledge of firewalls, IDS and similar.
• Technical knowledge of OT technologies, networking, and protocols.
• Have a good understanding of an OT environment (common OT areas, personnel involved, OT constraints).
• Being able to "explore" the customer main systems under consideration.
• Understand basic OT flows: client-server, user operativity, user permissions.
• Basic knowledge about different OT vendors (Siemens, ABB, Schnieder, Mitsubishi.
• Understand a network diagram being able to identify the different assets and understand, on a high level, how are they connected.
• Identify network equipment being able to identify a switch, wireless Access Points, routers, net diodes, and firewalls.
• Identify and trace physically connected assets and documenting them in a network topology.
• Extract switches configuration and capture traffic.
• Understand general system configurations like O.S group policy, VMs, update mechanism.
• Being able to identify potential vulnerabilities and threats.
• Being able to identify current installed countermeasures/controls including, monitoring, end points security solutions, hardening measures (antivirus/EDR, GPO).
• Need to create ICS security monitoring and remediation policies using industry-standard reference architecture mapping such as the IEC62443.

The Essentials - You Will Have:

• Bachelor's degree in electrical engineering, Industrial Engineering, Computer Science or Information Technology or related technology-driven degree.
• 8+ years of experience in Manufacturing Control Systems, Network Engineering, and Industrial Security Controls.
• Security certifications such as IEC 62443, CISSP, GISP, CSSK, or CISM is required.
• 8+ years of hands-on experience creating ICS security monitoring and remediation policies using industry-standard reference architecture mapping such as the IEC62443.
• Previous experience working as part of a large, multi-disciplinary global team completing full project life-cycle implementations.
• Travel Requirements. Flexibility for travel 20% - 30% is required and can include both domestic and international trips.
• Legal authorization to work in the country of residence is required.
• Recognized Security certifications such as IEC 62443, CISSP, GISP, CSSK, or CISM is required.

The Preferred - You Might Also Have:

• Master's Degree in Cybersecurity.
• Configuring IT/OT network infrastructure equipment (Cisco Switches, Virtual Server Environments, Cisco ASA).
• Experience with AV, EDR or NAC.
• Experience with monitoring, analyzing, and understanding log sources for threat hunting.
• Knowledge of common system exploits, network attacks, phishing techniques, and malware.

Our benefits package includes …

• Comprehensive mindfulness programmes with a premium membership to Calm.
• Volunteer Paid Time off available after 6 months of employment for eligible employees.
• Company volunteer and donation matching programme – Your volunteer hours or personal cash donations to an eligible charity can be matched with a charitable donation.
• Employee Assistance Program.
• Personalised wellbeing programmes through our OnTrack programme.
• On-demand digital course library for professional development.

... and other local benefits!

At Rockwell Automation we are dedicated to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right person for this or other roles.

#LI-Hybrid

#LI-RS1

Rockwell Automation’s hybrid policy aligns that employees are expected to work at a Rockwell location at least Mondays, Tuesdays, and Thursdays unless they have a business obligation out of the office.