Rockwell Automation

Senior Product Security Engineer

Rockwell Automation

full-time

Posted on:

Location Type: Hybrid

Location: MilwaukeeMassachusettsWisconsinUnited States

Visit company website

Explore more

AI Apply
Apply

Salary

💰 $168,960 - $253,440 per year

Job Level

Senior

Tech Stack

Cyber SecurityLinux

About the role

  • The Product Security Engineer secures embedded products, firmware, and industrial components across the full product lifecycle.
  • Your role combines firmware security, secure architecture, reverse engineering, and secure development lifecycle practices.
  • You will report to the Product Security Leader/Officer (PSL) and partner with engineering teams through the engineering Vee to mature security controls in high-visibility industrial products.
  • You will assess vulnerabilities, analyze SBOM and CVE data, model threats, score risk, and support secure-by-design decisions.
  • You will help create and refine security controls such as secure boot, trusted hardware, cryptographic protections, and secure update mechanisms.
  • You will assist teams during design reviews, testing, debugging, and remediation activities.
  • You will evaluate diagnostics, logs, test results, and firmware images to identify weaknesses or anomalies.
  • You will have lifecycle responsibility for threat model components which will be used by Security Champions for Models.
  • You will lead evaluations of Threat model Dispositions.
  • You will help ensure products meet secure software development framework (SSDF) DevSecOps processes.

Requirements

  • Bachelor's degree in Computer Engineering, Computer Science, Electrical Engineering, or a related field
  • Legal authorization to work in the U.S.
  • Typically requires 8+ years of experience in embedded systems, firmware development, cybersecurity, or product security
  • Proficiency in C/C++, embedded operating systems, microcontrollers, Linux, Infrastructure as Code and device drivers
  • Experience using debugging, tracing, or reverse engineering tools
  • Experience performing vulnerability analysis or threat modeling
  • Experience with industrial or real-time embedded systems
  • Experience with IEC 62443, NIST 800-53, NIST 800-82, or Common Criteria
  • Security certifications such as CISSP, CSSLP, OSCP, GPEN, GREM, or IEC 62443
  • Travel, including internationally, up to 25% of time.
Benefits
  • Health, Medical, Dental, Vision, Life & Disability Insurance
  • 401k
  • Paid Time off
  • Parental and Caregiver Leave
  • Flexible Work Schedule
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
C/C++embedded operating systemsmicrocontrollersLinuxInfrastructure as Codedevice driversvulnerability analysisthreat modelingsecure development lifecyclesecure software development framework
Soft Skills
communicationcollaborationleadershipproblem-solvinganalytical thinking
Certifications
CISSPCSSLPOSCPGPENGREMIEC 62443