Cybers Security Data Engineer, Contract Capabilities
Mayfield Heights, OH
Full-time, Contract
Hybrid
Entry, Mid Level
Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. As an OT Cybersecurity Data Engineer, you will manage the design, implementation, and testing of the SIEM system, ensuring monitoring and reporting of security threats within industrial infrastructure.
Develop SIEM and SOAR solutions tailored for OT environments, considering the unique challenges and protocols involved.
Integrate multiple OT data sources (e.g., IDS, EDR, control system logs, network traffic from industrial protocols) into the SIEM platform.
Maintain custom parsers, normalizers, and correlation rules to effectively analyze OT-specific logs and events within the SIEM.
Collaborate with OT operations and engineering teams to understand their systems, data sources, and security monitoring requirements.
Configure and improve the SIEM platform for performance, scalability, and stability in an OT context.
Maintain OT-focused dashboards and reports within the SIEM to provide applicable insights into security posture and potential threats.
Tune and improve SIEM rules and alerts to minimize false positives and ensure high-fidelity detection of OT security incidents.
Maintain documentation for the OT SIEM architecture, data sources, rules, and operational procedures.
Collaborate with IT security teams to ensure seamless integration and correlation of security events across both IT and OT environments.
Stay up-to-date on the latest OT cybersecurity threats, vulnerabilities, and SIEM capabilities relevant to industrial control systems.
Recommend new SIEM features, integrations, and related security technologies for enhancing OT security monitoring.
Provide training and support to security analysts and other stakeholders on the use of the OT SIEM.
Qualification
Required
Bachelor's degree
Legal authorization to work in the U.S. We will not sponsor individuals for employment visas, now or in the future, for this job opening.
Preferred
Demonstrated experience working with SIEM platforms (e.g., Sumo Logic, Palo Alto Cortex XSOAR) and a strong understanding of their architecture, configuration, and rule development.
Understanding of OT protocols (e.g., Modbus, DNP3, IEC 61850), industrial control systems (e.g., PLC, SCADA, DCS), and their logging mechanisms.
2+ years of experience in parsing and normalizing complex log formats, including those specific to OT devices and applications.
Specific experience integrating OT data sources with enterprise SIEM platforms.
Knowledge of security frameworks and standards relevant to OT (e.g., NIST SP 800-82, IEC 62443).
Experience with scripting languages (e.g., Python, PowerShell) for SIEM automation and data manipulation.
Relevant certifications such as GICSP, GRID, CISSP, or SIEM-specific certifications.
Familiarity with threat intelligence platforms and their integration with SIEM for OT threat detection.
Benefits
Health Insurance including Medical, Dental and Vision
401k
Paid Time off
Parental and Caregiver Leave
Flexible Work Schedule
Rockwell Automation specializes in industrial automation and information, makes its customers more productive.
Glassdoor
4.0
Founded in 1903
Milwaukee, Wisconsin, USA
10001+ employees
http://www.rockwellautomation.com
Rockwell Automation specializes in industrial automation and information, makes its customers more productive.
