Senior Product Security Engineer - Software

Rockwell Automation•Mayfield Heights, OH

4d•Hybrid

About The Position

Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world for the better. We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you we would love to have you join us! Job Description Position Summary: The Product Security Engineers work to ensure that the data, systems, and applications used in our products are secure. Product Security Engineers design and implement security controls and features within our applications. They work to ensure that weaknesses are remediated through high quality development practices. The Product Security Engineers work in all phases of the secure software development life cycle.

Requirements

Bachelor's Degree or equivalent years of relevant work experience.
Legal authorization to work in the U.S. We will not sponsor individuals for employment visas, now or in the future, for this job opening.

Nice To Haves

Typically requires 5+ years of professional development experience
Familiarity with common security libraries, security controls, and common security flaws (OWASP, CWE, CVE)
Collaborate with engineering and conduct regular security assessments such as broader technical reviews and deeper code reviews
Experience with software development in one or more languages (C#, Java, C/C++, PHP)
Familiarization with CI/CD and DevOps practices (DSOMM)
Experience with SAST, DAST, SCA and container security practices and tools (such as SonarQube, Blackduck, JFrog XRay, SALT, PrismaCloud, etc)
An understanding of network and web related protocols (such as TCP/IP, UDP, HTTP, HTTPS, protocols)
Experience working with developers
Experience identifying security issues through code review
Database design/data modeling experience and performance tuning
Experience with version control systems such as Github, Mercurial, Subversion, etc
Technical skills within the following: .NET Core, React, Docker, Kubernetes, Go, SQL, HTML, CSS, JavaScript
Experience writing or reviewing software tests, particularly abuse cases or negative test cases
Experience with cloud computing
Desired Certifications – Sec+, SSCP, GSEC, CASE, CEH, CSSLP, CISSP
Experience in a manufacturing environment is a bonus

Responsibilities

Work on all aspects of the secure software development lifecycle including design, database schema, business logic, user interface, performance, and quality
Work with security and product teams to develop secure products and features and strengthen the security of existing solutions
Collaborate with engineering and conduct regular security assessments such as broader technical reviews and deeper code reviews
Track and remediates security weaknesses
Assesses and evaluates current and new security measures to improve security
Identify, define, and document system security requirements and recommend solutions
Maintain up to date knowledge with current industry security practices and recommendations

Benefits

Health Insurance including Medical, Dental and Vision
401k
Paid Time off
Parental and Caregiver Leave
Flexible Work Schedule where you will work with your manager to enjoy a work schedule that can be flexible with your personal life.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume