Third Party Security & Safety Compliance Engineer

Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you we would love to have you join us!

Job Description

As the Third-Party Security & Safety Compliance Engineer, You will be responsible for conducting supplier security and safety risk assessments & audits with closed loop actions, support 3rd party product qualification around software & firmware, Issue to resolution process and supplier development initiatives for lowering cybersecurity & safety risk and improving the quality. The ideal candidate will be highly collaborative, partnering with multi-discipline teams to establish and drive awareness of secure supply chain requirements across the enterprise and supplier/partners. Excellent interpersonal skills are a must to build effective working relationships with both internal and external stakeholders as you lead the evolution supply chain security & safety risk program maturity. You will work hybrid from Milwaukee, WI. You will report to the Manager of Security & Compliance.

Your Responsibilities:

• Responsible for evaluation, qualification, and selection of suppliers and partners per Rockwell secure & safe development practices
• Conducts audit and assessment with close-loop actions of suppliers and identifies continuous improvement and supplier development plans where needed to ensure supplier meets secure & safe development lifecycle requirements
• Review supplier's design controls for mature secure software development lifecycle processes including but not limited to verification, validation, risk management, software configuration management and deployment including reviews and approvals
• Partnering with BU, SME's & OPSS & to support in TARA (Threat Analysis & Security & Safety Risk Assessment) , Design for Security & qualification of 3rd party components
• Partnering with multi-discipline teams to establish and drive awareness of supply chain security requirements across the enterprise and supplier/partners
• Leads and facilitates failure investigations; ensuring mitigations and corrective actions are implemented in a timely manner
• Works with strategic partners/suppliers and internal stake holders to ensure global awareness and compliance to procedures and specifications
• Ensures effective transfer of suppliers from development to production activities
• Support post market activities related to purchased product software anomalies - Complaint Handling, RCFAs and CAPAs
• Ability to provide training to other team members to ensure consistency and compliance to processes and procedures.
• Demonstrates collaborative partnerships with peers, leaders, and stakeholders.
• Able to navigate a complex matrix organization to influence partners to deliver product/process improvements
• Balances priorities and communicates well to team, stakeholders, and management.
• Maintains accountability for high quality performance throughout the product development lifecycle
• Presents and communicates quality readout to stakeholders & leaders as required
• Ability to develop and execute supplier training programs, ensuring compliance across the organization

The Essentials - You Will Have:

• Bachelor's degree or equivalent professional work experience
• Legal Authorization to work in the US is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening.
• The ability to travel 20% of the time.

The Preferred - You Might Also Have:

• Bachelor or Master of Science with specialization of Computer Science or equivalent in engineering sciences or industrial engineering or cybersecurity
• 5+ years of professional experience in engineering and/or secure & safe development lifecycle (e.g. requirements management, software architecture, software design, testing, verification, validation, security)
• Experience conducting secure & safe development lifecycle audits based on standards (Eg.: ISO 9001, IEC 62443, ASPICE, CMMI, IEC 61508 etc.,)

#LI-AA1

#LI-hybrid

What We Offer:

• Health Insurance including Medical, Dental and Vision
• 401k
• Paid Time off
• Parental and Caregiver Leave
• Flexible Work Schedule where you will work with your manager to enjoy a work schedule that can be flexible with your personal life.
• To learn more about our benefits package, please visit at www.raquickfind.com.

At Rockwell Automation we are dedicated to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right person for this or other roles.

This position is part of a job family. Experience will be the determining factor for position level and compensation.

We are an Equal Opportunity Employer including disability and veterans. 

If you are an individual with a disability and you need assistance or a reasonable accommodation during the application process, please contact our services team at +1 (844) 404-7247.

Rockwell Automation’s hybrid policy aligns that employees are expected to work at a Rockwell location at least Mondays, Tuesdays, and Thursdays unless they have a business obligation out of the office.