Caterpillar
Cat Digital uses digital technologies to help Caterpillar Inc. customers build a better, more sustainable world.
Chicago, IL
Hybrid

SECURITY ENGINEER, CAT DIGITAL

Sorry, this job was removed at 3:14 p.m. (CST) on Monday, June 28, 2021
Find out who's hiring in Chicago.
See all Cybersecurity + IT jobs in Chicago
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

JOB DESCRIPTION:

Join the Application Integration team of Cat Digital and build software solutions that integration common services across our application portfolio and other enterprise systems used by Caterpillar customers and dealers. The integration of applications with various Digital Platform capabilities that are built on the latest technologies by adopting industry’s best architecture patterns, security best practices etc. are critical for application’s success and its adoption.

 

JOB DUTIES:

As a Senior Security Engineer, you will contribute to Secure by design, secured development practices, Security testing and devsecops of software systems and/or applications. The security engineer is responsible for facilitating security efforts between the Cybersecurity Organization and the development teams creating services on the data platform.  Security Engineers will help development teams identify security gaps in their applications and services and assist in coming up with solutions to close those gaps and make services compliant to enterprise security requirements.

  • Review and assessment of architectural artifacts (e.g. architecture diagrams) for compliance to security policy and identification of risks and potential areas of improvement
  • Collaborate with peer Cybersecurity professional in the assessment of IT solution for security posture
  • Liaison between Caterpillar Cybersecurity organization and the rest of Caterpillar to communicate, embed, and demonstrate compliance to Cybersecurity requirements
  • Technical point of contact for application teams related to automation, CI/CD, and Application Security Operations.
  • Understand and communicate business risk with security risk.
  • Understand and identify the existing processes and security gaps. 
  • Guide to improve and streamline the development process to secure the application in every stage of software development by implementing devSecOps
  • Competent to perform all assignments without close supervision; normally assigned the more complex aspects of systems work.
  • Works directly on complex application/technical problem identification and resolution,
  • Drives application development focused around delivering of security needs features
  • Maintains high standards of software quality within the team by establishing good practices and habits
  • Guide the team to develop a structured application/interface code, new program documentation, operations documentation, and user guides in a casual, flexible environment
  • Maintain current knowledge on existing security procedures, directives and technology controls including application testing, threat modeling, attack and penetration testing, data classification and data handling
  • Participate in industry working groups and provide insights to product development teams on leading architecture, design, and security practices
  • Understand security requirements and risk tolerance baselines
  • Keep development teams accountable to metrics measuring risk

 

Basic qualifications:

  • Position requires a four-year degree from an accredited college or university.
  • 5 years or more of software development experience or at least 3 years of experience with master’s degree in computer science or related field.
  • 3+ years in information security
  • 3 years or more of developing using languages such as Java, Scala, Python, or Node.JS
  • Cloud Security best practices (e.g. Cloud Security Alliance’ CCM – Cloud Controls Matrix)
  • Security expertise and hands-on experience with MS Azure and AWS (4+ years of experience)
  • Experience with relevant industry standards, such as: ISO 27001, 27002, NIST CSF, ISA 62443 and SOC Reporting
  • Experience with a wide variety of information security processes and principles, such as:
    • Enterprise security architecture
    • Threat model development
    • Vulnerability assessment
    • Risk analysis
    • Defense in depth
    • SDLC and product development processes
    • Identity and access management
    • Business process design
    • Web services security

 

Top candidates will also have:

  • Strong understanding and experience with information security technologies
  • Ability to coordinate multiple teams in accomplishing process review and improvement
  • Ability to work under pressure and within time constraints
  • Passion for technology and an eagerness to contribute to a team-oriented environment
  • Demonstrated leadership on small to medium-scale projects impacting strategic priorities
  • Bachelor’s degree in Computer science or Electrical engineering or related field is required
  • Professional information security certification (CISSP, CCSP, CSSLP, GISCP, GWAPT, GWEB etc.)

 

 

 

 

Visa sponsorship available for eligible applicants.

 

EEO/AA Employer.  All qualified individuals - Including minorities, females, veterans and individuals with disabilities - are encouraged to apply.

 

Not ready to apply? Submit your information to our Talent Network here.

See More
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.

What are Caterpillar Perks + Benefits

Culture
Volunteer in local community
Caterpillar Inc. participates in local volunteer activities such as the Chase Corporate Challenge
Partners with nonprofits
Open door policy
OKR operational model
Team based strategic planning
Open office floor plan
Flexible work schedule
Remote work program
Diversity
Documented equal pay policy
Dedicated diversity and inclusion staff
Mandated unconscious bias training
Diversity employee resource groups
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Pet insurance
Wellness programs
Mental health benefits
Financial & Retirement
401(K)
401(K) matching
Company equity
Performance bonus
Charitable contribution matching
Child Care & Parental Leave Benefits
Generous parental leave
Family medical leave
Adoption Assistance
Vacation & Time Off Benefits
Generous PTO
Paid volunteer time
Paid holidays
Paid sick days
Office Perks
Recreational clubs
Onsite gym
Professional Development Benefits
Job training & conferences
Tuition reimbursement
Lunch and learns
Promote from within
Continuing education available during work hours
Online course subscriptions available
Customized development tracks
Paid industry certifications

More Jobs at Caterpillar

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about CaterpillarFind similar jobs like this