Career Area:

Job Description:

Your Work Shapes the World at Caterpillar Inc.

When you join Caterpillar, you're joining a global team who cares not just about the work we do – but also about each other.  We are the makers, problem solvers, and future world builders who are creating stronger, more sustainable communities. We don't just talk about progress and innovation here – we make it happen, with our customers, where we work and live. Together, we are building a better world, so we can all enjoy living in it.

Caterpillar Inc. is the world’s leading manufacturer of construction and mining equipment, off-highway diesel and natural gas engines, industrial gas turbines, and diesel-electric locomotives.

For nearly 100 years, we’ve been helping customers build a better, more sustainable world and are committed to contributing to a reduced-carbon future. Our innovative products and services, backed by our global dealer network, provide exceptional value that helps customers succeed.

Position Title: Senior IT Analyst, Technical Infrastructure/Cybersecurity Advisor

Job Description:

• This position will be accountable for contributing to the identification, analysis, and resolution of needs and problems in a discipline for which the incumbent is beginning to build a reputation as a subject matter expert in Cybersecurity.
  
  This position performs complex analysis work, identifies and resolves problems.
• Although this position may be the transition from individual contributor to team leadership, the major focus of the job is on technical delivery.
• Incumbents may work more directly with different Business units, suppliers, internal customers and/or other teams. This requires the ability to communicate technical information in a concise and accurate manner.
• This position is a non-supervisory role that reports directly to the AP regional Cybersecurity manager.

Job Description Summary:

• Provide consultation on information security objectives and compliance with relevant security standards, policies, and procedures.  
• Serve as trusted advisor to effectively communicate complex security risks in a manner that is easily understood and actionable. Enable the business to leverage enterprise-wide security solutions. 
• Advise on processes and methodologies required when evaluating purchased product, new internal solutions, or outsourcing IT systems by various of security tools and processes, such as Software Asset management (SAM) process, Secure configuration baseline (SCB) and Third-Party Risk Assessment (TPRA), etc.
• Test and evaluate information security controls and techniques to ensure they are efficiently and effectively implemented.  Conduct Information Security Compliance Assessments according to the process and issue quality reports on time.  
• Help with the risk owners through the remediation process by following the cybersecurity risk treatment plan (RTP) process.
• Support Computer Security Incident Response Team (CSIRT) when necessary. 
• Communicate in a timely fashion to update the CSIRT team.  Coordinate incident response needs within area of responsibility in the event of an enterprise CSIRT incident or investigation.
• Support the Caterpillar’s Information Security Awareness program. Ensure Information Security Awareness material is included in orientation for new staff, or third-party professionals, where applicable by law.  
• Identify the need for customized awareness or phishing result messages specific to business areas. 
• Develop and present messages in alignment with Information Security directives.
• Travel may be required based on business need.

​ 

Required Qualifications:

• Bachelor’s or equivalent degree in Computer Science, Information Security, or IT Infrastructure
• Good understanding of the information security knowledge in at least 1-2 security domains, such as:

　　　‐Law & Regulation

　　　‐Information security management

　　　‐Communication security

　　　‐Cryptography and Encryption

　　　‐Access Control management

　　　‐Software Development Life Cycle Management

　　　‐Business Continuity and Disaster Recovery

• Obtain one of the following certifications within eighteen months and maintain in good standing: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Controls (CRISC). CISSP preferred.   

Additional Information:

Caterpillar is not currently hiring individuals for this position who now or in the future require sponsorship for employment visa status; however, as a global company, Caterpillar offers many job opportunities outside of the U.S. which can be found through our employment website at www.caterpillar.com/careers

Caterpillar is an Equal Opportunity Employer (EEO)

EEO/AA Employer. All qualified individuals - including minorities, females, veterans and individuals with disabilities - are encouraged to apply.

Posting Dates:

Caterpillar is an Equal Opportunity Employer.  Qualified applicants of any age are encouraged to apply

Not ready to apply? Join our Talent Community.