VM Analyst

Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you we would love to have you join us!

Job Description

Want to work with innovators, visionaries, and community-minded people who challenge the status quo? We do too.

We believe that anything that can be made can be made better, and we are focused on finding the right people to help us achieve the big important tasks ahead.

Is that person you?

We are seeking a VM Analyst to join our growing team in North America. The Cyber Business Analyst will report to the manager of the Attack Surface Reduction team.

The vulnerability analyst identifies vulnerabilities in systems using vulnerability scanning tools, interpreting the results, and developing remediation guidance for team members. You will research, identify, assess, and prioritize vendor and third-party security advisories and then advise system owners in completing patching and mitigation activities. Also, the vulnerability analyst also performs an important role in identifying areas to improve security posture resulting from security incidents. The vulnerability analyst works within the CISO organization, which protects Rockwell Automation's security globally across a mix of cloud and on-premise networks.

Main Responsibilities:

• Keep up to date on the latest vulnerabilities that may affect Rockwell Automation systems
• Conduct triage of vulnerabilities based on criticality
• Contribute to vulnerability management process development
• Conduct remediation activities with company partners in response to detected vulnerabilities
• Develop, research, and maintain proficiency in tools, techniques, and trends related to vulnerability analysis
• Identify root cause of cybersecurity incidents
• Develop base statistical methods to display cybersecurity risk
• Hunt for new vulnerabilities
• Perform security penetration tests on networks, web-based applications, and computer systems
• Create findings and reports to application owners and management
• Consult application owners on best practices for remediation
• Demonstrated commitment to valuing diversity and contributing to an inclusive working and learning environment

Basic Qualifications:

• Basic knowledge of Software Development Lifecycle
• An understanding of Windows and Linux based systems
• An understanding of common networking protocols, such as HTTP, DNS, TLS
• An understanding of common exploitation vectors
• Describe vulnerabilities and technical concepts to all levels
• Familiar with vulnerability scanners such as Qualys or Rapid7

Preferred Qualifications:

• Understanding of packaging and deployment tools such as SCCM and Intune
• Experience with scripting, either Python, Powershell or another language
• Certification

Competencies:

• What are the 4-6 behavioral competencies necessary for the role? Visit the Competency library.

Benefits:

• The ability to collaborate with, learn from colleagues in a highly complex, global organisation.
• We provide a working environment with a creative company, paired with a great compensation package, great benefits, and a supportive atmosphere where you can sharpen with new challenges and development opportunities.
• Hybrid work-from-home and at a determined Rockwell Automation facility.
• Corporate Social Responsibility opportunities,
• Support from our 24/7 employee assistance program.
• Reporting will to Technical Lead.

Primary work location: Noida/Pune/Bangalore, India.

At Rockwell Automation we are dedicated to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right person for this or other roles.

#LI-PS2

#LI-Hybrid

Rockwell Automation’s hybrid policy aligns that employees are expected to work at a Rockwell location at least Mondays, Tuesdays, and Thursdays unless they have a business obligation out of the office.