Cyber Security Pre-sales Architect

Where the Application Consultant is not the domain expert they will liaise with and be supported by SMEs within other parts of the business. It is expected the Application Consultant will leverage these resources providing a "one-stop-shop" SME experience to the commercial and client teams on a pursuit. Key skills include being collaborative in nature, organized with conducting the flow of knowledge between teams and able to assimilate technical concepts quickly in order to assess and architect the SOW during the sales process. Project Management / coordination experience a key advantage in additional to the required technical skillset.

The Application Consultant is a deeply technical and customer facing coordinating resource for Rockwell Automation technology, products, services, and solutions within their area(s) of expertise, capable of articulating capability, defining scope and benefits of portfolio to customers. They deliver, lead, and manage commercial offer, presales support, and is a trusted advisor to the sales organization and channel. They are responsible for technical support in pre-sales activities and support bid offer activities for a specific range of products, services & solutions within a defined geography.
- Develop accurate **SOWs (Statements of Work) and labor estimates**:

- Draft **BOMs (Bills of Material)**:

- Defend MTO/CTO standard / scalable **Industrial Control** **System Architectures**:

- Explain and **adapt technical concepts and solutions** in front of customers.
- Assess value of solution and understand desired outcomes.

And will have proficiencies in two (2) or three (3) of the following domains:

- ** IT/OT Cybersecurity**:

- ** Infrastructure Managed Services**:

- ** OT ICS Network Design**:

- ** Virtualization**

Cybersecurity:

- OT (Operational Technology) Cybersecurity with Industrial Control Systems
- Rick Assessments and solutions - ISA/IEC 62443-2-4, 62443-3-2
- Secure remote access design
- DMZ/IDMZ (Industrial Demilitarized Zone) - "Zones and Conduits"
- Network Segmentation (IT/OT) & Architecture Design
- OT MSP (Managed Service Provider) - ISO 27000 Series
- Anomaly detection & Vulnerability management
- Threat Detection, tuning, hygiene reports
- NIST Cybersecurity Framework
- Active Directory, Mail Server, Web server IIS/Apache, Terminal Services, Anti-Virus/Endpoint Protection, URL Filtering, Application Whitelisting, Whitelisting USB / Malware, EDR
- Internal/External infrastructure penetration testing
- Remote service penetration (cloud-based)
- Wireless networks
- APT (Advanced Persistent Threat Activity)
- GRC (Governance, Risk, Compliance)
- Hardening Servers and Clients (OT Servers, HMI Clients, ICS)
- ISO27001, ISO31000, ISO22317, ISO22301
- NIST, IEC 62443, NERC

Managed Services:

- Industrial Datacenter / Virtualization Infrastructure Management
- OT Network Infrastructure Management
- Threat Detection Managed Services
- OT SOC/NOC/CyberSOC, SOAR architecture, operations, and management
- Firewall Management
- Endpoint Security Management
- OS Patching, Application Patching
- IPAM
- Secure Remote Access Management
- Active Directory / RBAC Account Management

Networking:

- Industrial Network Assessment / Design / Deploy - CPwE (Converged Plantwide Ethernet)
- Partner offerings, including Cisco, VMware, Claroty, Panduit, etc

Virtualization:

- Virtualization & Hyper-Converged Design / Implement - Industrial Data Center
- Software defined storage, VMware vSAN
- Stretched Cluster design
- Backup and DR (Data Recovery)
- Legacy operating systems (Windows 2000, Windows XP)