Cyber Risk Manager

Career Area:Business Technologies, Digital and DataJob Description:Your Work Shapes the World at Caterpillar Inc.When you join Caterpillar, you're joining a global team who cares not just about the work we do – but also about each other. We are the makers, problem solvers, and future world builders who are creating stronger, more sustainable communities. We don't just talk about progress and innovation here – we make it happen, with our customers, where we work and live. Together, we are building a better world, so we can all enjoy living in it.Cyber Risk ManagerYour Impact Shapes the World at Caterpillar Inc.When you join Caterpillar, you're joining a global team who cares not just about the work we do – but also about each other. We are the makers, problem solvers and future world builders who are creating stronger, more sustainable communities. We don't just talk about progress and innovation here – we make it happen, with our customers, where we work and live. Together, we are building a better world, so we can all enjoy living in it.It's More Than a Job, It's a Career (https://www.youtube.com/watch?v=Wf0PVJdUOWo)The Cyber Risk Manager is responsible for leading a diverse team to drive the advancement of the cyber risk management program. The chosen candidate will guide the end-to-end cybersecurity risk assessment processes and lead efforts to assess enterprise cybersecurity risk and effectively communicate to stakeholders.What You Will Do:

Manage development, implementation and enforcement of organization-wide security initiatives and control standards, policies, and procedures.

Effectively lead and motivate a team of resources to perform to their highest potential by serving as a strong leader and role model.

Support, develop, and execute the Cybersecurity risk management strategy and road map.

Establish appropriate goals and objectives for the team in alignment to the Cybersecurity strategy and in support of overall organization goals.

Effectively balance cyber hygiene, day-to-day operations, incremental improvement, and future-focused projects in a manner which reduces risk and facilitates enterprise efforts to achieve expanded offerings, services growth, and sustainability.

Develop, execute, and maintain the risk acknowledgement process.

Develop processes that align with overall Cyber Risk Management strategy.

Ensure risk data integrity and quality control.

Guide the team in providing exceptional customer experience.

What You Have:Planning: Tactical, Strategic:

Knowledge of effective planning techniques and ability to contribute to operational (short term), tactical (1-2 years) and strategic (3-5 years) planning in support of the overall business plan.

Experience in the complexities of working in a large global organization.

Talent Management:

Knowledge of the critical competencies required to achieve intended results; ability to generate consistent approaches for hiring, selection, retaining and leveraging talent across the organization.

Previous leadership experience required.

Risk Management:

Knowledge of processes, tools, and techniques for assessing and controlling an organization's exposure to risks of various kinds; ability to apply knowledge of risk management appropriately to diverse situations.

Understanding of relevant laws, regulations, frameworks, and other governance requirements as they relate to cybersecurity and associated controls.

Strong understanding of the cybersecurity policies and standards

Cybersecurity:

Strong knowledge of information security frameworks, such as ISO 27001, NIST CSF & 800 series, COBIT, PCI-DSS or FAIR

CISSP, CISM, CRISC or other security related certification or ability and willingness to obtain within one year.

Significant experience developing, evaluating, or implementing cybersecurity, information technology, or risk assessment activities.

Information Technology (IT) Security Policies:

Knowledge of IT security policies, standards, and procedures; ability to utilize a variety of administrative skill sets and technical knowledge to ensure cyber security compliance.

Knowledge of and experience with GRC tools and processes

Top Candidates will also have:

OpenFAIR Foundation certification

Practical expertise with risk analysis methodologies and frameworks

Experience with ServiceNow IRM

Excellent collaboration and relationship-building skills

Excellent written and verbal communication skills with ability to explain complex issues to non-technical users.

Process-oriented and strong organizational skills.

Strong analytical and critical thinking skills

Ability to confidently present to senior leadership

Proficient in Microsoft O365 products

Additional Info :

The primary location for this position is Peoria, IL, Irving, TX or Nashville, TN. You must be willing to work ONSITE 3 DAYS A WEEK.

SPONSORSHIP IS NOT AVAILABLE.

Relocation is available to those who qualify.

What You Will Get:

Our goal at Caterpillar is for you to have a rewarding career. Our teams are critical to the success of our customers who build a better world.

Here you earn more than just a salary because we value your performance. We offer a total rewards package that provides benefits on day one (medical, dental, vision, RX, and 401K) along with the potential of an annual bonus. Additional benefits include paid vacation days and paid holidays.

All qualified individuals - Including minorities, females, veterans, and individuals with disabilities - are encouraged to apply.

About Caterpillar -Caterpillar Inc. is the world’s leading manufacturer of construction and mining equipment, off-highway diesel and natural gas engines, industrial gas turbines and diesel-electric locomotives. For nearly 100 years, we’ve been helping customers build a better, more sustainable world and are committed and contributing to a reduced-carbon future. Our innovative products and services, backed by our global dealer network, provide exceptional value that helps customers succeed.Final details:Please frequently check the email associated with your application, including the junk/spam folder, as this is the primary correspondence method. If you wish to know the status of your application – please use the candidate log-in on our career website as it will reflect any updates to your status.Posting Dates:April 16, 2024 - April 25, 2024Any offer of employment is conditioned upon the successful completion of a drug screen.EEO/AA Employer. All qualified individuals - Including minorities, females, veterans and individuals with disabilities - are encouraged to apply.Not ready to apply? Join our Talent Community (http://flows.beamery.com/caterpillarinc/talcom) .