DevSecOps Architect
Job DescriptionAt Rockwell Automation, we bring together the imaginations of people with the potential of technology to expand what is humanly possible, making the world more intelligent, more connected, and more productive. Our mission is to improve the quality of life by making the world more productive and sustainable.We are committed to enabling the next generation of smart manufacturing. With the right strategy, talented people, and our substantial financial strength, we are dedicated to deliver value to our customers. We are living our larger purpose as a company. Whatever happens in the world around us, who we are and how we help our customers and our people never waivers. When you join us, you gain 23,500 global colleagues in more than 100 countries. We come from all walks of life but share a single purpose:
to help industrial companies and their people be more productive and sustainable.Our technologies are used globally to deliver critical services, such as power and water, and to enable critical manufacturing. In this role, you will work with a high-performing team of like-minded individuals passionate about ensuring that our products are delivered with the highest levels of security and safety. You will have the opportunity to work with a diverse array of technologies in software, IoT, cloud, and embedded systems. Join us in the Office of Product Safety and Security (OPSS) as we deliver safe, secure, and resilient technologies to protect our global community and the critical services and goods they provide.The DevSecOps Architect is part of the Rockwell Automation Office of Product Safety and Security (OPSS). In this role you will be working with a dedicated team to lead the organization in establishing a world class security development ecosystem. The ideal candidate will be highly collaborative, partnering with multi-discipline teams to establish and drive security processes and practices throughout the enterprise. As you identify threats and opportunities, you will define appropriate risk reduction and shape mitigation strategies. You'll work cross-functionally to implement the security controls and strategies you define.
Essential Functions:
Partner with leadership and engineering practitioners to develop a comprehensive, agile, and innovative DevSecOps program that supports all phases of the software development lifecycle, identify, and effectively manages risk, and establish a user-friendly cybersecurity culture. Lead the Rockwell Automation Open-Source Committee to expand and evolve defined policies, processes, and practices for package evaluation.Collaborate with the extended OPSS team to ensure the appropriate security requirements are embedded in the correct phases of development.Contribute to security automation projects, such as open-source licensing, static analysis, vulnerability management, and other build pipeline security tasks.Monitor and assess the effectiveness of security controls and identify opportunities for continuous improvement.Design enterprise processes and best practices.Research and explore new avenues to overcome obstacles by utilizing the latest technologies and cybersecurity standards.Excellent written and verbal communication skills to translate security objectives to cross-functional stakeholders.Basic
Qualifications:
Bachelor's degree in technical discipline. Legal authorization to work in the US is required. We will not sponsor individuals for employment visas, now or in the future, for this job openingPreferred
Qualifications:
Typically requires a minimum of 12 years of experience in product development.Typically requires a minimum of 2 years of experience in security practices.Understanding of DevOps processes, CI/CD pipelines, and related tools (Gitlab, Jenkins, Harness, Coverity, Linting, Unit Testing, etc.)Experience with DevSecOps tools to automate the integration of security at every phase of the software development lifecycle, from initial design through integration, testing, deployment, and product delivery. Examples of tools include Azure DevOps, Jenkins, GitHub, Black Duck, Burp Suite, VDOO, Venafi, and Nessus.Experience with threat modeling and/or security reviews.Experience with cybersecurity and product development standards / practices, such as IEC 62443, CMMI, NIST SSDF, BSIMM Security certifications (e.g., CISSP, CSSLP) from qualified organizations such as (ISC)2. This position is part of a job family. Experience will be the determining factor.#LI-MG1 #LI-REMOTEWe are an Equal Opportunity Employer including disability and veterans. If you are an individual with a disability and you need assistance or a reasonable accommodation during the application process, please contact our services team at +1 (844) 404-7247.
Salary Range:
$150K -- $200K
Minimum Qualification
Systems Architecture & Engineering, DevOps & Site ReliabilityEstimated Salary: $20 to $28 per hour based on qualifications.
to help industrial companies and their people be more productive and sustainable.Our technologies are used globally to deliver critical services, such as power and water, and to enable critical manufacturing. In this role, you will work with a high-performing team of like-minded individuals passionate about ensuring that our products are delivered with the highest levels of security and safety. You will have the opportunity to work with a diverse array of technologies in software, IoT, cloud, and embedded systems. Join us in the Office of Product Safety and Security (OPSS) as we deliver safe, secure, and resilient technologies to protect our global community and the critical services and goods they provide.The DevSecOps Architect is part of the Rockwell Automation Office of Product Safety and Security (OPSS). In this role you will be working with a dedicated team to lead the organization in establishing a world class security development ecosystem. The ideal candidate will be highly collaborative, partnering with multi-discipline teams to establish and drive security processes and practices throughout the enterprise. As you identify threats and opportunities, you will define appropriate risk reduction and shape mitigation strategies. You'll work cross-functionally to implement the security controls and strategies you define.
Essential Functions:
Partner with leadership and engineering practitioners to develop a comprehensive, agile, and innovative DevSecOps program that supports all phases of the software development lifecycle, identify, and effectively manages risk, and establish a user-friendly cybersecurity culture. Lead the Rockwell Automation Open-Source Committee to expand and evolve defined policies, processes, and practices for package evaluation.Collaborate with the extended OPSS team to ensure the appropriate security requirements are embedded in the correct phases of development.Contribute to security automation projects, such as open-source licensing, static analysis, vulnerability management, and other build pipeline security tasks.Monitor and assess the effectiveness of security controls and identify opportunities for continuous improvement.Design enterprise processes and best practices.Research and explore new avenues to overcome obstacles by utilizing the latest technologies and cybersecurity standards.Excellent written and verbal communication skills to translate security objectives to cross-functional stakeholders.Basic
Qualifications:
Bachelor's degree in technical discipline. Legal authorization to work in the US is required. We will not sponsor individuals for employment visas, now or in the future, for this job openingPreferred
Qualifications:
Typically requires a minimum of 12 years of experience in product development.Typically requires a minimum of 2 years of experience in security practices.Understanding of DevOps processes, CI/CD pipelines, and related tools (Gitlab, Jenkins, Harness, Coverity, Linting, Unit Testing, etc.)Experience with DevSecOps tools to automate the integration of security at every phase of the software development lifecycle, from initial design through integration, testing, deployment, and product delivery. Examples of tools include Azure DevOps, Jenkins, GitHub, Black Duck, Burp Suite, VDOO, Venafi, and Nessus.Experience with threat modeling and/or security reviews.Experience with cybersecurity and product development standards / practices, such as IEC 62443, CMMI, NIST SSDF, BSIMM Security certifications (e.g., CISSP, CSSLP) from qualified organizations such as (ISC)2. This position is part of a job family. Experience will be the determining factor.#LI-MG1 #LI-REMOTEWe are an Equal Opportunity Employer including disability and veterans. If you are an individual with a disability and you need assistance or a reasonable accommodation during the application process, please contact our services team at +1 (844) 404-7247.
Salary Range:
$150K -- $200K
Minimum Qualification
Systems Architecture & Engineering, DevOps & Site ReliabilityEstimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
