Rockwell Automation is a global technology leader focused on helping the world's manufacturers be more productive, sustainable, and agile. With more than 28,000 employees, we are committed to making a positive impact worldwide. Our team is composed of energized problem solvers dedicated to improving lives through innovative solutions. We welcome all makers, forward thinkers, and problem solvers seeking a place to do their best work. If that sounds like you, we would love to have you join us! Job Description As an OT Cybersecurity Detection Engineer, you will be responsible for designing, implementing, and managing detection strategies and tools to respond to cyber threats targeting critical OT/ICS environments. You will collaborate with internal and external cybersecurity teams to ensure the security and resilience of our industrial infrastructure. A strong understanding of OT protocols, industrial control systems, OT threat intelligence, and cybersecurity best practices is essential. Experience in detection engineering and vulnerability management is required. You will work on the engineering integration of Verve and create market-differentiating IP into our SMR and vulnerability management services. You will utilize threat intelligence and collaborate with Security & Compliance teams to develop IP, such as OT detection rules and vulnerability management processes. Reporting to the Global Engineering Manager, your responsibilities will include: Developing detection rules, correlation searches, and alerting mechanisms within our SIEM and other security monitoring tools tailored for OT environments. Analyzing OT network traffic, system logs, and security events to identify suspicious activity and potential security incidents. Maintaining knowledge of OT protocols (e.g., Modbus, DNP3, IEC 61850), industrial control systems (e.g., PLC, SCADA, DCS), and their security implications. Collaborating with OT operations and engineering teams to understand their processes and vulnerabilities. Tuning detection rules to minimize false positives and ensure high-fidelity alerts. Documenting detection strategies, rules, and incident response procedures specific to OT. Participating in incident response activities related to OT cybersecurity incidents. Contributing to the development of OT security policies, standards, and procedures. Staying current on OT cybersecurity threats, vulnerabilities, and mitigation techniques. Recommending new security tools relevant to OT detection capabilities. Collaborating with IT security teams to ensure a cohesive security posture across IT and OT environments. Developing and delivering training on OT-specific detection techniques. Required Qualifications: Bachelor's degree in engineering or equivalent experience. Preferred Qualifications: 2+ years of experience with OT protocols, architectures, and control systems. 2+ years of experience with SIEM/SOAR platforms and custom rule development. 2+ years analyzing network traffic with tools like Wireshark and understanding OT network protocols. Knowledge of cybersecurity frameworks relevant to OT (e.g., NIST SP 800-82, IEC 62443). Familiarity with threat intelligence sources and their application to OT. What We Offer Comprehensive benefits including mindfulness programs, volunteer paid time off, charitable donation matching, Employee Assistance Program, personalized wellbeing programs, and access to professional development resources. #LI-PT2 #LI-remote #J-18808-Ljbffr