Senior OT Cybersecurity Consultant

Rockwell Automation is a global technology leader focused on helping the world's manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility -our people are energized problem solvers that take pride in how thework we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that's you we would love to have you join us!

Job Description

About Kalypso | Rockwell Automation

Kalypso - a Rockwell Automation Business, guides clients through operational transformation using digital solutions, cybersecurity, networks, and cuttingedge automation. We help define strategies, implement solutions, and achieve measurable results across complex IT/OT environments.

As an OT Cybersecurity Consulting Project Delivery Lead, you will shape our consulting strategy and services, then lead teams to deliver them at scale. You'll translate OT security needs into executable roadmaps, drive GRC governance and risk reduction, operationalize OT SOCs, and tie solution delivery of OT cybersecurity and infrastructure projects back to strategic outcomes and value. You will also be responsible for mentoring teams and partnering across sales, multiple Rockwell delivery business units and our partners to provide a seamless, highfunctioning gotomarket and delivery engine. You will report to the Digital Consulting, Senior Manager and have a remote schedule working out Wisconsin.

1) Delivery Leadership Across Cyber Consulting Capabilities

Governance, Risk & Compliance (Program & Policy)

• Lead maturity assessments and roadmaps aligned to NIST CSF, NIST SP 80082, and ISA/IEC 62443; define sitetoenterprise governance (charters, roles/RACI, KPIs/OKRs, ROSI, operating cadence).
• Establish policies, standards & procedures, incident response playbooks, business continuity, and compliance strategies (e.g., NIS2), tuned for OT realities (prioritizing safety & availability).

Asset & Vulnerability Management

• Direct asset inventory/visibility, vulnerability & patch management, hardening/allowlisting, backup & restoration, and segmentation aligned to CPwE zones & conduits and iDMZ patterns.
• Develop and maintain collection planning for OT environments, ensuring telemetry, logging, and monitoring requirements are defined and prioritized to support detection, response, and compliance objectives.
• Guide secure remote access, identity for OT/AD, and zerotrust patterns for control systems; oversee deployment of leading NDR/NIDS/EDR and logging/telemetry for plants and edge.
• Ensure solutions integrate with process safety and production constraints (turnarounds, batch windows, critical alarms), protecting availability and safety first-then integrity and confidentiality.

SOC Detection/Response

• Operationalize threatinformed defense for OT using MITRE ATT&CK for ICS-map use cases, detections, and playbooks; design OTSOC operating models and integrate with SIEM/SOAR/MDR.
• Lead tabletop exercises and purpleteam drills across plants and enterprise SOC; translate intel into prioritized, riskbased actions.

Technical Enablement & Delivery Infrastructure

• Consult on selection and integration planning for OT security platforms (e.g., NDR/NIDS/EDR, SIEM/SOAR, GRC), ensuring alignment with telemetry, logging, and monitoring requirements across plants and enterprise SOCs.
• Develop operating models and use cases for OT SOCs, secure remote access, and identity management; support clients in mapping detections, playbooks, and response workflows to business risk and operational constraints in on-prem, hybrid and cloud environments.
• Guide clients in interpreting endpoint, network, and cloud telemetry to inform detection, response, and compliance strategies across OT environments.
• Support use case development and automation planning through scripting and orchestration techniques (e.g., Python, PowerShell, Bash).
• Advise on integration of APIs, log sources, and telemetry pipelines with security platforms (e.g., EDR, NDR, DLP, CASB, MDM, vulnerability management) to enhance visibility and operational resilience.

2) CrossFunctional Collaboration & Teaming

• Partner with Global Cyber Security Consulting Platform leader, Sales and Delivery teams to shape pursuits, qualify opportunities, set win strategy, and support executive conversations; cocreate account plans and reference architectures.
• Orchestrate across capability teams and business units (e.g., Networks & Security, Digital/MOM/PLEX, Managed Services/SOC, Intelligent Devices, Software & Control) to bring a single, highfunctioning team to customers. Blend consulting, implementation, and managed services.
• Enable the field: practitioner enablement (method, templates, case studies), deal coaching, and delivery QA reviews; contribute to communities of practice.

3) Strategy, Offers & Services (Define * Build * Execute)

• Codefine Rockwell Automation's Cybersecurity consulting strategy for OT/ICS with Digital, Lifecycle Services, and Regional Sales leadership; align to industry frameworks (e.g., NIST CSF, ISA/IEC 62443) and the Secure, Digital Operations strategy.
• Build the services portfolio: service definitions, value propositions, pricing guardrails, delivery playbooks, role profiles, and QA standards for offers such as OT risk & maturity assessments, SOC/monitoring operating models, vulnerability/patch programs, network segmentation/iDMZ, incident response/tabletops, secure remote access, and zerotrust for OT.
• Operationalize delivery at scale: estimators/BoM templates, SOW libraries, accelerators, KPI packs, and value realization methods; tune for verticals (Life Sciences, CPG, Process, Energy Auto & Tire and Defense).
• Continuously improve offers and enablement using field lessons, new regulations (e.g., NIS2), and partner/tooling updates.

4) Client Delivery, Value & Reporting

• Own scope, schedule, budget, and quality for multisite programs; chair governance and executive readouts; measure value via MTTD/MTTR, control coverage, risk reduction, and business resilience KPIs.

5) People Leadership

• Coach and grow Consultants/Analysts/Engineers; set expectations for consulting excellence, client stewardship, and craft mastery; model inclusive teaming and knowledge sharing.

6) Business Support

• Shape proposals and SOWs; develop case studies and references; identify expansion plays at existing accounts and handoffs to implementation/managed services.

• Bachelor's Degree or equivalent years of experience
• Legal authorization to work in the U.S. We will not sponsor individuals for employment visas, now or in the future, for this job opening.
• Willingness to travel domestically or internationally (20-80%)

• Bachelor's Degree in Cybersecurity, Information Systems, Engineering, or related field.
• 5+ years of experience in OT cybersecurity, industrial security, or critical infrastructure protection.
• Hands-on experience with OT security frameworks such as NIST CSF, IEC 62443, or NERC CIP.
• Familiarity with risk assessments, compliance audits, security control evaluation, and GRC practices in industrial environments.
• Experience developing security policies, procedures, and incident response plans tailored for OT environments.
• Strong understanding of threat intelligence and adversary tactics related to ICS and OT.
• Experience with security technologies such as firewalls, intrusion detection systems (IDS), endpoint protection, and network segmentation for OT networks.
• Previous consulting experience or a background working in industrial sectors such as manufacturing, energy, or critical infrastructure.
• Strong communication skills, with the ability to explain complex cybersecurity concepts to both technical and non-technical audiences.
• Certifications such as IEC 62443 Expert, GICSP, CISSP, CISM, or equivalent are a plus.
• Experience gathering business requirements and translating them to the technical team.
• Superior analytical and problem-solving skills, preferably demonstrated in previous internship or work experience.
• Effective organization and time management skills, with ability to work under pressure and adhere to project deadlines.

• Health Insurance including Medical, Dental and Vision
• 401k
• Paid Time off
• Parental and Caregiver Leave
• Flexible Work Schedule where you will work with your manager to enjoy a work schedule that can be flexible with your personal life.
• To learn more about our benefits package, please visit at www.raquickfind.com.

At Rockwell Automation we are dedicated to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right person for this or other roles.

This position is part of a job family. Experience will be the determining factor for position level and compensation.

We are an Equal Opportunity Employer including disability and veterans.

If you are an individual with a disability and you need assistance or a reasonable accommodation during the application process, please contact our services team at +1 (844) 404-7247.