Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world for the better. We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you we would love to have you join us! Job Description Company Overview: Rockwell Automation, the world's largest company dedicated to industrial automation, makes its customers more productive and the world more sustainable. Throughout the world, our flagship Allen-Bradley® and Rockwell Software® product brands are recognized for innovation and excellence. When you choose Rockwell Automation, you join countless talented employees who have helped us establish our leadership position in the automation industry over the past century. You join a diverse, inclusive, and global community with a passion for innovation. A place where you can partner with great minds and inspiring people. And a corporation backed by the financial strength that drives growth – and career opportunities. As much as we focus on our customers, we know our employees are key to our success and future. Helping you develop a rewarding career is a top priority. Because when you succeed, we succeed. Role Summary: Are you interested in shaping a highly effective agile organization? Are you excited about the opportunity to influence and lead other skilled technical contributors? Are you passionate about fostering vital connections and developing a team who will help to make our company, partners, and customers more productive and profitable? If your answer is yes to any of these questions, this is your opportunity to join an innovative and dynamic team. As a member of the Rockwell Automation IT organization, you will join our transformation journey as we seek to improve and push boundaries. Rockwell Automation’s Cyber Defense team is seeking an experienced Senior Incident Response Engineer to join our team. Reporting to the Manager, IT Security, in this role you will: Prevent, detect, triage, respond, and recover from cybersecurity incidents across the organization Perform root cause analysis (RCA) and incident after-action reviews (AAR) Implement and monitor security measures for the protection of corporate and production infrastructure Utilize multiple data sources for identification of tactics, techniques, and patterns of attack Contribute to planning, design, implementation, and updating or tuning of use cases in SIEM (Splunk) Maintain and employ an understanding of advanced threats, response, and mitigation strategies Lead response and investigation efforts into advanced/targeted attacks Contribute to creation and maintenance of incident response playbooks Collaborate across teams to build and maintain creative solutions to security problems Effectively work on multiple objectives simultaneously Actively pursue personal continuous learning, development of skills and knowledge in job-related technical and professional areas Participate in global Computer Security Incident Response Team (CSIRT) 24/7 On-Call rotation Basic Qualifications: Bachelor's degree or equivalent experience Legal authorization to work in the US is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening. Preferred Qualifications: Typically requires a minimum of 5+ years of demonstrated experience in cybersecurity incident response. Bachelor’s degree in Computer Science, Management Information Systems, Engineering, Mathematics or other related field or equivalent experience One or more of the following certification designations is a plus: Certified Information Systems Security Professional – CISSP Security+, GCIA, GCIH Other Technical Certifications considered Knowledge of features, tools, and processes used for maintaining a secure environment: Networking and Networking security architecture concepts TCP/IP communications knowledge of how common protocols and applications work at the network level, including DNS, HTTP, and SMB Knowledge of Firewalls, Proxy/Content Filtering, Windows, Linux, SIEM, EDR, AV, NetFlow, O365, Authentication technologies, SIEM Firsthand incident response experience with major cloud providers (AWS, Azure, Google Cloud) Experience with one or more scripting languages (PowerShell, Python, Bash, etc.) Experience with git-based code repositories Knowledge of computer forensics, security vulnerabilities and attacker tools, techniques, and procedures (TTPs) Familiar with Cyber Kill Chain and MITRE ATTCK frameworks and implementation ESSENTIAL FUNCTIONS: Leadership/Change: Act as a mentor to other members of the Computer Security Incident Response Team (CSIRT) and provide feedback to advance their skills Maintain a sense of urgency in driving assignments to completion Maintain a presence of calm during uncertainty, conflict, and stress Collaborate across teams gaining the cooperation of others to complete goals Demonstrate complex problem-solving skills with the keen ability to rapidly define problems, collect data, establish facts, and draw conclusions Maintain confidentiality of information and compartmented team activities Explain technical concepts to non-technical people Strong customer interaction skills, written and verbal communication Ability to work with global team members in a collaborative and respectful manner We are an Equal Opportunity Employer including disability and veterans. If you are an individual with a disability and you need assistance or a reasonable accommodation during the application process, please contact our services team at +1 (844) 404-7247. Rockwell Automation, Inc. (NYSE: ROK) es líder mundial en automatización industrial y transformación digital. Conectamos la imaginación de las personas con el potencial de la tecnología para ampliar lo que es humanamente posible, lo que hace al mundo más productivo y sostenible. Con sede en Milwaukee, Wisconsin, Rockwell Automation emplea a aproximadamente 23.000 personas capaces de resolver problemas dedicados a nuestros clientes en más de 100 países. Para obtener más información sobre cómo estamos acercando The Connected Enterprise a la vida a las empresas industriales, visita www.rockwellautomation.com.