Posted:
9/9/2024, 5:12:57 AM
Location(s):
Texas, United States ⋅ Nashville-Davidson, Tennessee, United States ⋅ Irving, Texas, United States ⋅ East Peoria, Illinois, United States ⋅ Illinois, United States ⋅ Tennessee, United States
Experience Level(s):
Senior
Field(s):
IT & Security
Career Area:
Business Technologies, Digital and DataJob Description:
Your Work Shapes the World at Caterpillar Inc.
When you join Caterpillar, you're joining a global team who cares not just about the work we do – but also about each other. We are the makers, problem solvers, and future world builders who are creating stronger, more sustainable communities. We don't just talk about progress and innovation here – we make it happen, with our customers, where we work and live. Together, we are building a better world, so we can all enjoy living in it.
Cybersecurity Incident Response Readiness & Reporting Team Lead
Role Definition:
The Cybersecurity Incident Response Readiness & Reporting Team Lead will support both the cybersecurity organization and the larger Caterpillar organization. The lead will maintain, update and improve Incident Response (IR) Playbooks. Based on those Playbooks, they will conduct regular Cybersecurity IR tabletop exercises for teams throughout the enterprise. The team lead will develop scenarios designed to evaluate IR capabilities and preparedness. The tabletop exercises will identify strengths and opportunities for improvement in incident response efforts.
Responsibilities:
Leading tabletop exercises to enable teams across the enterprise to proactively plan for cyber events.
Maintaining playbooks outlining response plans for various cyber events.
Manage vendor relationships including budgeting and engagement.
Coordinate audit and control efforts.
Lead Request for Information (RFI) process for CSIRT including gathering intelligence and reporting on potential impact.
Lead reporting of CSIRT operations and incident response efforts.
Degree Requirement:
Accredited, four-year Information Technology degree or a closely related technical degree; communications or learning and development degree; or equivalent experience.
Skill Descriptors:
Communicating Complex Concepts: Knowledge of effective presentation tools and techniques to ensure clear understanding; ability to use summarization and simplification techniques to explain complex technical concepts in simple, clear language appropriate to the audience.
Level Extensive Experience:
Uses subtle cues to determine the language and experience level of an individual or group.
Introduces technical terminology to listeners in the context of the product or service.
Uses effective analogies to help an audience understand a novel feature of a product or service.
Explains important details as they relate to the basic value of the product or service.
Approaches communication challenges from various angles to find the one that works.
Proceeds to next level of information when audience is ready.
Consulting: Knowledge of techniques, roles, and responsibilities in providing technical or business guidance to clients, both internal and external; ability to apply consulting knowledge appropriately.
Level Working Knowledge:
Explains the requirements, deliverables, costs, and criticalities of the assignment.
Participates in developing consulting opportunities or assignments.
Uses formal and informal means to keep client informed on progress and issues.
Carries out the agreed-upon consulting assignment in a professional manner.
Documents client's objectives and project scope.
Information Security Management: Knowledge of the processes, tools and techniques of information security management; ability to deploy and monitor information security systems, while detecting, controlling and preventing violations of IT security.
Level Working Knowledge:
Follows procedures for the handling of computer security incidents and vulnerabilities.
Participates in monitoring, back-up, recovery and archival activities.
Assists in dealing with key issues and requirements for appropriately securing information.
Analyzes data security and integrity considerations relevant to one's own function.
Implements published information security management practices and guidelines.
Cybersecurity Standards and Policies: Knowledge of developing cybersecurity policies, standards and procedures; ability to develop and communicate policies, standards and procedures that guide interactions with customers.
Level Working Knowledge:
Follows efficient and effective auditing and compliance reporting.
Provides feedback for improvement of procedures and policies.
Assists in the development and implementation of specific cybersecurity policies and procedures.
Participates in the development of organizational cybersecurity policies and standards.
Generates status reports for senior management to ensure the implementation of cybersecurity standards and policies
Cybersecurity Risk Management: Knowledge of tools, techniques, approaches and processes of cybersecurity risk management; ability to ensure organizational network operation and minimize negative effect by cybersecurity risks.
Level Working Knowledge:
Responds to cyber security incidents following established security protocols.
Applies the methods and processes used in tracking and prioritizing vulnerabilities in organizational cyber environment.
Assesses the value of organizational assets.
Analyzes and documents cyber security threats specific to your organization.
Produces and interprets common cyber risk assessment and management reports.
Information Technology (IT) Security Policies: Knowledge of IT security policies, standards, and procedures; ability to utilize a variety of administrative skill sets and technical knowledge to ensure cyber security compliance.
Level Working Knowledge:
Performs information gathering and research on key elements of IT security policies.
Assists senior colleagues in identifying and analyzing critical issues in IT security policies.
Executes IT security policies and standards within a specific region in organization.
Conducts performance reviews on implementation of IT security policies.
Generates status reports for senior management to ensure the implementation of IT security policies.
What You Have:
Strong writing, communication, and presentation skills; ability to deliver messages to technical and non-technical audiences.
Excellent organizing, time management, and priority setting skills.
Public speaking or presentation experience. Ability to command attention in a room.
Previous training experience preferred.
Must have the ability to engage with Executive leadership.
Strong relationship management skills.
Conflict resolution skills.
Initiative-taker that can manage uncertainty and drive to goals with little leadership involvement.
Additional Info:
The primary locations for this position are: East Peoria, IL, Nashville TN, or Dallas, TX
This position may require up to 25% travel
Sponsorship is NOT available.
Relocation is available for qualified candidates.
About Caterpillar -
Caterpillar Inc. is the world’s leading manufacturer of construction and mining equipment, off-highway diesel and natural gas engines, industrial gas turbines and diesel-electric locomotives. For nearly 100 years, we’ve been helping customers build a better, more sustainable world and are committed and contributing to a reduced-carbon future. Our innovative products and services, backed by our global dealer network, provide exceptional value that helps customers succeed.
Relocation is available for this position.Visa Sponsorship is not available for this position. This employer is not currently hiring foreign national applicants that require or will require sponsorship tied to a specific employer, such as, H, L, TN, F, J, E, O. As a global company, Caterpillar offers many job opportunities outside of the U.S which can be found through our employment website at www.caterpillar.com/careers.Posting Dates:
September 9, 2024 - September 20, 2024Any offer of employment is conditioned upon the successful completion of a drug screen.
EEO/AA Employer. All qualified individuals - Including minorities, females, veterans and individuals with disabilities - are encouraged to apply.
Not ready to apply? Join our Talent Community.
Website: https://caterpillar.com/
Headquarter Location: Peoria Heights, Illinois, United States
Employee Count: 10001+
Year Founded: 1925
IPO Status: Public
Last Funding Type: Grant
Industries: Construction ⋅ Machinery Manufacturing ⋅ Manufacturing ⋅ Mechanical Engineering