Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you we would love to have you join us!

Job Description

We are looking for a Cybersecurity Analyst in the OT Cyber Security area.

You will report to the Global SOC Manager, Managed Services.

You will work hybrid in Madrid or Barcelona, Spain.

Your Responsibilities:

• Monitor and analyze security alerts in OT environments using SIEM, OT security tools, and EDR/AV platforms.
• Respond to security incidents (IR) - conducting investigations, correlating events, identifying attack vectors, and implementing mitigation actions.
• Maintain and improve SOC procedures related to alert handling, vulnerability reporting, and escalation processes.
• Perform log analysis and fine‑tuning detections by enhancing SIEM rules, tuning alerts, and supporting the development of detection logic.
• Collaborate with OT/ICS teams on asset identification, vulnerability assessment, architecture reviews (ICS/SCADA, Purdue model), and recommending security improvements.

The Essentials - You Will Have:

• Bachelor's Degree: Computer Science / Engineering / Telecommunications / SysAdmin / Networking / another similar relevant degree
• 2 or more years of experience as a SOC operation or analyst
• Experience with SIEM, log analysis, alert tuning, and understanding detection logic
• Hands‑on familiarity with OT security tooling such as Claroty, Nozomi, or similar platforms
• Knowledge of EDR, AV, and orchestration platforms and how they support monitoring workflows
• Experience with networking, routing, switching, and common OT/ICS protocols (Requirement).
• Understanding of OT environments, ICS and SCADA architectures, Purdue model, and asset identification
• Working knowledge of operating systems (Windows, Linux, Mac) and their security‑relevant components
• Knowledge of common threat vectors, attacker techniques, vulnerabilities, and security best practices
• Fluency in written and spoken English and Spanish

The Preferred - You Might Also Have:

• Security certifications such as CEH, CISSP, CCNA, Sans Institute, Security +, MCITP/MCSE and ITIL Foundations Certifications
• Cybersecurity Master's Degree
• Experience with basic scripting (Python, PowerShell) to support automations or internal improvements

What We Offer:

Our benefits package includes …

• Volunteer Paid Time off available after 6 months of employment for eligible employees
• Company volunteer and donation matching program – Your volunteer hours or personal cash donations to an eligible charity can be matched with a charitable donation
• On-demand digital course library for professional development
• Comprehensive mindfulness programs with a premium membership to Calm
• Employee Assistance Program
• Personalized wellbeing programs through our OnTrack program

... and other local benefits!

At Rockwell Automation we are dedicated to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right person for this or other roles.

#LI-Hybrid

#LI-IK1

Rockwell Automation’s hybrid policy aligns that employees are expected to work at a Rockwell location at least Mondays, Tuesdays, and Thursdays unless they have a business obligation out of the office.