Trust Operations
Welcome to Rockwell Automation's Trust Operations Site
Rockwell Automation's commitment to data privacy and security is embedded into every part of our business. Clients, partners, and Rockwell employees can use this resource to learn about our general security posture and request access to our security documentation for specific product and services groups.
Rockwell Automation believes confidentiality, integrity, availability, and safety are all important aspects of cybersecurity.
Cybersecurity is embedded throughout our organization by aligning all business operations to an industry standard security governance framework. Regular framework alignment review allows us to monitor, measure, and adjust in order to keep up to date with environmental or regulatory change as necessary.
The Rockwell Automation Global Cybersecurity Organization is led by the Chief Information Security Officer (CISO). Rockwell has a large, modern, global team of subject matter experts and analysts covering:
- Global Enterprise Cybersecurity
- Governance, Risk & Compliance
- Security Architecture & Engineering
- Identity & Access Management
- Enterprise Resiliency
- Security Operations & Cyber Defense
- Third Party Information Security Services
The Rockwell Automation internal security program is informed by many external standards, regional regulations, and best practices. These include but are not limited to:
• NIST - National Institute of Standards & Technology
• SSDF - Secure Software Development Framework
• OWASP - Open Web Application Security Project
• CRA - Cyber Resilience Act
• NIS2 - Network and Information Security Directive
• GDPR - General Data Protection Regulation
Please Note:
The information presented on this Trust Center is provided for general informational purposes only and represents high‑level summaries of the Company’s internal policies, standards, and guidelines. These summaries are not intended to be exhaustive and do not replace or supersede the official policy documentation approved and maintained by the Company.
In the event of any inconsistency, discrepancy, or conflict between the content published on this website and the applicable internal policy documents, the internal policy documentation shall govern and be considered the authoritative source.
Nothing on this website should be construed as creating any rights, obligations, or commitments beyond those expressly set forth in the Company’s official policy documentation. The Company reserves the right to modify its policies at any time without notice, and published summaries may not reflect the most current versions.
