Principal Program Manager, Cybersecurity

About The Position

Requirements

• Planning: Tactical, Strategic: Knowledge of effective planning techniques and ability to contribute to operational (short term), tactical (1-2 years) and strategic (3-5 years) planning in support of the overall business plan.
• Project Administration: Knowledge of project administration best practices and ability to use organizational strategies, practices and tools for administering projects.
• Decision Making and Critical Thinking: Knowledge of the decision-making process and associated tools and techniques; ability to accurately analyze situations and reach productive decisions based on informed judgment.
• Data Gathering and Reporting: Knowledge of tools, techniques and processes for gathering and reporting data; ability to practice them in a particular department or division of a company.
• Implementation: Knowledge of how to run applications for organizations; ability to implement application software within an organization and help end-users perform specific tasks (ex: accounting or graphic design).

Nice To Haves

• Experience in Cybersecurity, IT Security, Embedded controls or a related field.
• Professional information security certification, SANS GICSP, CISSP, CSPP, etc.
• Knowledge and understanding of cybersecurity policies, standards, and procedures such as ISA/IEC 62443, ISO 27001, and NIST CSF etc.
• Knowledge of tools, techniques, approaches, and processes of cybersecurity risk management.

Responsibilities

• Leads global regulatory assessments for cybersecurity
• Develops compliance requirements
• Collaborates with teams delivering security services for Product Link (Caterpillar telematics device), including risk assessments and architecture consulting
• Ensuring compliance with global regulations and industry standards like IEC 62443, NIST CSF, and ISO 27001
• Leads complex global security programs within portfolios and projects
• Leading technical teams to evaluate risks and propose innovative and effective security solutions for Product Link to proactively counter threats and maintain a secure environment
• Providing leadership with strong organizational and people skills, alongside the ability to persuade, influence, lead, motivate others, to meet regulatory requirements
• Collaborating with and building partnerships among technology and business leaders to garner support for cybersecurity and risk management initiatives
• Translating regulatory language to functional/technical requirements
• Contributing to the strategic direction of security engineering and risk management initiatives
• Developing business cases to obtain approval for implementing new systems and technologies
• Coordinating and maintaining audit actions focusing on the analytical and technical aspects of security
• Leading technical teams in sophisticated technology planning, critical reviewing, and initiative-taking problem-solving
• Maintain current industry expert knowledge on modern ICS (Industrial Control Systems) and Cloud security procedures, directives, tools, attack methodologies, directives, secure configuration baselines, and technology controls

Benefits

• Medical, dental, and vision benefits
• Paid time off plan (Vacation, Holidays, Volunteer, etc.)
• 401(k) savings plans
• Health Savings Account (HSA)
• Flexible Spending Accounts (FSAs)
• Health Lifestyle Programs
• Employee Assistance Program
• Voluntary Benefits and Employee Discounts
• Career Development
• Incentive bonus
• Disability benefits
• Life Insurance
• Parental leave
• Adoption benefits
• Tuition Reimbursement
• These benefits also apply to part-time employees