Career Area:
Technology, Digital and DataJob Description:
Your Work Shapes the World at Caterpillar Inc.
When you join Caterpillar, you're joining a global team who cares not just about the work we do – but also about each other. We are the makers, problem solvers, and future world builders who are creating stronger, more sustainable communities. We don't just talk about progress and innovation here – we make it happen, with our customers, where we work and live. Together, we are building a better world, so we can all enjoy living in it.
Cybersecurity Specialist – Threat & Vulnerability Management
Role Definition:
Join Caterpillar as a Cybersecurity Specialist on the Caterpillar Cybersecurity Threat & Vulnerability Management Team. This role will be focused on leading DevSecOps transition, web application security testing and security tool integrations within SDLC.
What You Will Do:
Team Leader of the Threat & Vulnerability Management – Vulnerability Management Applications (VMA) Team
Lead “Shift Left” and DevSecOps transformation.
Provide oversight of VMA daily operations and support for dynamic application security testing (DAST), static application security testing (SAST)
Deliver technical support in the integration of security tools in CI/CD pipelines and S-SDLC
Educate and provide support to web application teams, owners, developers on application security, SAST/DAST tools and vulnerability management.
Work with VM team leadership and peers to drive efficiency into vulnerability management processes in ServiceNow and application security services.
Maintain knowledge on existing security procedures and directives related to application security and vulnerability management.
What You Have:
Bachelor’s degree in Cybersecurity, Security Engineering/Architecture, Computer Science, or a related field
5+ years of Cybersecurity, Penetration Testing, and/or Vulnerability Management
Experience with SAST tools - GitHub, Check Marx
Experience with DAST tools – Rapid 7, Acunetix, Burp
Good Knowledge of OWASP Guidelines for application security
Good Knowledge of software development processes, integration of security assessments in Software development life cycle (SDLC) process, secure coding is required.
Top Candidates Will Have:
One or more professional information security certification from an accredited institution (CISSP, CCSP, CSSLP, CISM, GISCP, GWAPT, GWEB etc.)
Experience developing and testing apps in .NET or Java and other leading modern programming languages and technologies.
Experience with newer development frameworks
Experience with cloud security: Amazon AWS, Windows Azure
Excellent critical thinking, problem-solving, as well as written/verbal communication skills
Skills Descriptors:
Communicating Complex Concepts: Knowledge of effective presentation tools and techniques to ensure clear understanding; ability to use summarization and simplification techniques to explain complex technical concepts in simple, plain language appropriate to the audience.
Consulting: Knowledge of techniques, roles, and responsibilities in providing technical or business guidance to clients, both internal and external; ability to apply consulting knowledge appropriately.
Cybersecurity Standards and Policies: Knowledge of developing cybersecurity policies, standards, and procedures; ability to develop and communicate policies, standards and procedures that guide interactions with customers.
Cybersecurity Risk Management: Knowledge of tools, techniques, approaches, and processes of cybersecurity risk management; ability to ensure organizational network operation and minimize negative effect by cybersecurity risks.
Information Security Management: Knowledge of the processes, tools, and techniques of information security management; ability to deploy and monitor information security systems, while detecting, controlling, and preventing violations of IT security.
Information Technology (IT) Security Policies: Knowledge of IT security policies, standards, and procedures; ability to utilize a variety of administrative skill sets and technical knowledge to ensure cyber security compliance.
Additional Info:
The primary locations for this position are: East Peoria, IL, Nashville TN, or Dallas, TX or San Diego, CA
5 days onsite is MANDATORY.
Sponsorship is NOT available.
Relocation is available.
About Caterpillar -
Caterpillar Inc. is the world’s leading manufacturer of construction and mining equipment, off-highway diesel and natural gas engines, industrial gas turbines and diesel-electric locomotives. For nearly 100 years, we’ve been helping customers build a better, more sustainable world and are committed and contributing to a reduced-carbon future. Our innovative products and services, backed by our global dealer network, provide exceptional value that helps customers succeed.
Summary Pay Range:
$126,000.00 - $189,000.00Compensation and benefits offered may vary depending on multiple individualized factors, job level, market location, job-related knowledge, skills, individual performance and experience. Please note that salary is only one component of total compensation at Caterpillar.
Benefits:
Subject to plan eligibility, terms, and guidelines. This is a summary list of benefits.
Medical, dental, and vision benefits*
Paid time off plan (Vacation, Holidays, Volunteer, etc.)*
401(k) savings plans*
Health Savings Account (HSA)*
Flexible Spending Accounts (FSAs)*
Health Lifestyle Programs*
Employee Assistance Program*
Voluntary Benefits and Employee Discounts*
Career Development*
Incentive bonus*
Disability benefits
Life Insurance
Parental leave
Adoption benefits
Tuition Reimbursement
* These benefits also apply to part-time employees
Posting Dates:
July 25, 2025 - August 2, 2025Any offer of employment is conditioned upon the successful completion of a drug screen.
Caterpillar is an Equal Opportunity Employer, Including Veterans and Individuals with Disabilities. Qualified applicants of any age are encouraged to apply.
Not ready to apply? Join our Talent Community.