Identity & Access Management Intern – Information Security
Westfield Health
Cyber SecurityPython
Senior Product Security Engineer
Rockwell Automation
full-time
Posted on:
Location Type: Hybrid
Location: Mayfield Heights • Ohio, Wisconsin • 🇺🇸 United States
Visit company websiteJob Level
Senior
Tech Stack
Cyber SecurityPython
About the role
- Contribute to the refinement and rollout of security frameworks and policies.
- Participate in organization wide cybersecurity activities, including risk assessments, roadmap development, and stakeholder engagement.
- Partner with technical security thought leaders (e.g., benchmarking, conferences), to evolve the SDL strategy and direction.
- Represent the central security office function with external certifying bodies.
- Participate in security architecture and design review meetings.
- Review product architectures for security design gaps and vulnerabilities and consult with product teams to mitigate cyber risk.
- Develop and maintain solutions to automate security governance processes and workflows.
- Collaborate with DevSecOps and architecture teams to integrate automation into existing platforms and CI/CD pipelines.
- Maintain knowledge of security threats and vulnerabilities for OT environment.
- Provide product security related mentoring and security expertise.
- Participate in standards and research opportunities outside of RA.
Requirements
- Bachelor's Degree
- Legal authorization to work in the US or Canada is required.
- Typically requires 5+ years of experience in relevant product security areas.
- Degree in Computer Engineering, Computer Science, Electrical Engineering, or similar discipline.
- Experience in Operational Technology cybersecurity
- Experience in one of security domains: Secure SW Engineering, HW Security, Embedded Security, and other related fields.
- Experience developing software, automated tests and tools in high-level languages like Python, with or without AI Augmentation.
- Good understanding in disciplines such as Trusted platform module, Secure Boot, different cryptography technologies, web application security, network security, operating system internals and hardening.
- Advanced knowledge in at least two or three of these areas.
- Experience working with development teams to review design, construct threat models and secure coding practices.
- Understanding of security by design principles and architecture level security concepts
- Experience with CI/CD environments, SAST and DAST tools
- Experience of industrial protocols, especially Common Industrial Protocol (CIP)
- Industrial cybersecurity and/or information technology certifications such as 62443 CyberSecurity specialist, (ISC)² CISSP, or SANS GICSP - or you are ready to obtain it shortly.
- Ability to travel, including internationally, up to 20% of time.
Benefits
- Health Insurance including Medical, Dental and Vision
- 401k
- Paid Time off
- Parental and Caregiver Leave
- Flexible Work Schedule where you will work with your manager to enjoy a work schedule that can be flexible with your personal life.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
PythonSecure Software EngineeringHardware SecurityEmbedded SecurityThreat ModelingSecure Coding PracticesCI/CDSASTDASTCryptography
Soft skills
CollaborationMentoringStakeholder EngagementCommunicationRisk Assessment
Certifications
62443 CyberSecurity Specialist(ISC)² CISSPSANS GICSP
