Cummins Inc. Digital Accelerator Cybersecurity Leader in Columbus, Indiana
Digital Accelerator Cybersecurity Leader
Cummins is a place big enough to coach and develop a global workforce and create the world’s leading clean, engine technology. We’re also small enough for you to find your fit and personal passion with a team of dependable, innovative thinkers who are developing their careers within a diverse, inclusive, empowering environment.
Learn more about this role and how you can begin Working Right .
Cummins' Digital Accelerator functions as our own tech startup, with strategic access to Fortune 150 resources and talents. Steering the innovation of new experiences for customers, Digital Accelerator is boldly transforming Cummins into a modern and agile technology company. Through the conception, build and launch of inspiring digital solutions, the unique hub of vision and creativity leverages open architecture, connectivity, big data, advanced analytics, internet-of-things, edge computing and more, to drive the company forward on its journey towards smart technologies.
This is an exciting opportunity in Columbus, Indiana for a Digital Accelerator Cybersecurity Leader.
Your impact will happen in these and other ways:
Reporting to the Enterprise Security Engineering Director you will be part of a team of Cybersecurity professionals Implementing security requirements into the cloud.
A cybersecurity advisor to managers and leaders who are responsible for making decisions about solutions that address business goals and risks. Provides consultation on the aspects of threats, vulnerabilities, and compliance for solutions deployed within the environment. Manages, provides leadership and guidance to less experienced cybersecurity leaders. Prioritizes and assigns the tasks to be completed by a group of cybersecurity leaders.
Possesses the knowledge required to follow and adhere to compliance frameworks and other security requirements and standards that enable the organization to reduce risks and meet regulatory and statutory compliance.
Identifies systemic security issues based on the analysis of vulnerability and configuration data.
Implements security measures to resolve vulnerabilities, mitigate risks and recommend security changes to system or system components as needed.
Participates as a stakeholder in cross-functional teams to develop technology solutions.
Collaborates with functional teams and/or stakeholders to identify and/or develop appropriate solution designs, proper implementation and any required mitigation strategies.
Performs reviews and identifies security and other weaknesses in solutions that may introduce risks to the enterprise and business goal achievement.
Provides cybersecurity recommendations to leadership based on existing, emerging and new cybersecurity threats and vulnerabilities, which introduce risk to the achievement of business goals and objectives.
Employs best practices when implementing security controls within a system including software engineering methodologies; system and security engineering principles; secure design, secure architecture, and secure coding techniques.
Informs and provides governance regarding system security controls that ensure and provide for the confidentiality, integrity, availability, authentication, and non-repudiation of system resources and the data they process and store.
Coaches and develops less experienced team members.
Skills and Experience Required:
Cybersecurity Risk Management - Identifies and assesses the potential impact of Cybersecurity risks against established Cybersecurity industry frameworks, regulations and organizational policies to develop and implement risk mitigation strategies in alignment with business objectives.
Systems Requirements Planning - Develops a detailed set of use cases and requirements through documenting and deriving capabilities that are needed to operate, manage, administer and deploy enterprise cybersecurity capabilities and tools.
Systems Analysis - Designs information systems solutions using solution design documents and the security review tool to help the organization operate more securely, efficiently and effectively.
Strategic Planning and Policy - Advocates for changes in policy through collaboration and the identification of gaps identified by the use of cybersecurity technologies that protect Cummins' data and business information systems.
Business Analysis Planning - Identifies the activities needed to conduct business analysis considering the five business aspects, level of detail, and approach for eliciting requirements to plan for resources and techniques to document the business needs and solution characteristics.
Business insight - Applying knowledge of business and the marketplace to advance the organization’s goals.
Manages complexity - Making sense of complex, high quantity, and sometimes contradictory information to effectively solve problems.
Balances stakeholders - Anticipating and balancing the needs of multiple stakeholders.
Collaborates - Building partnerships and working collaboratively with others to meet shared objectives.
Builds effective teams - Building strong-identity teams that apply their diverse skills and perspectives to achieve common goals.
Drives engagement - Creating a climate where people are motivated to do their best to help the organization achieve its objectives.
Instills trust - Gaining the confidence and trust of others through honesty, integrity, and authenticity.
Education, Licenses, Certifications
College, university, or equivalent degree in Information Technology, Business or a related subject, or relevant experience required.
Certified Information Systems Security Professional (CISSP) or similar certification preferred.
5-7 years of cybersecurity work experience is required. 2 years of experience with Cloud technology and concepts preferred.
Applies knowledge of Amazon Web Services (AWS), Google Cloud, Microsoft Azure and other public cloud and private cloud platforms, and their capabilities and security features to assist deploying cloud based technologies and solutions.
Possess proficiency and knowledge of coding (Lambda, JSON, etc..) and DevOps techniques that enable the adoption, stand-up and employment of cloud service infrastructure and platforms.
Develops relationships with security vendors and external security experts; brings knowledge of current issues and risks to information security and privacy meetings.
Collects and analyzes data on existing processes and protection controls that are or need to be applied in public cloud, private cloud, and hybrid (on premise and cloud) solutions.
Trouble-shoots complex technical and business issues with existing security and privacy protection protocols.
Develops collaborative peer relationships that enable and strengthen team processes and dynamics.
Identifies the potential for internal and external threats and evaluates mitigation strategies and controls that can be implemented to reduce risk from malware attacks/propagation, targeted attacks, unauthorized access, data modification, degradation of services and other threat scenarios.
Identifies risk associated with potential loss of data and assesses the impact of mitigation strategies and controls on the business process and cost.
Performs reoccurring security and privacy assessments of business processes and IT solutions to identify and recommend changes that improves Cummins security posture and adherence with compliance and privacy frameworks.
Contributes and collaborates with architects and solution implementers to ensure security controls are embedded to protect the Cummins Global enterprise.
Review and recommend changes to new and existing information security policies that influence how Cummins develops and implements different solutions and processes.
Analyzes existing processes, standards, policies and/or equipment and makes process improvement recommendations to leaders ensuring compliance with laws, rules, and regulations while managing global business risk impact.
Compensation and Benefit
Base salary rate commensurate with experience. Additional benefits vary between locations and include options such as our 401(k) Retirement Savings Plan, Cash Balance Pension Plan, Medical/Dental/Life Insurance, Health Savings Account, Domestic Partners Coverage and a full complement of personal and professional benefits.
Cummins and E-verify
At Cummins, we are an equal opportunity and affirmative action employer dedicated to diversity in the workplace. Our policy is to provide equal employment opportunities to all qualified persons without regard to race, gender, color, disability, national origin, age, religion, union affiliation, sexual orientation, veteran status, citizenship, gender identity and/or expression, or other status protected by law. Cummins validates right to work using E-Verify. Cummins will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new employee’s Form I-9 to confirm work authorization.
Ready to think beyond your desk? Apply for this opportunity to start your career with Cummins today.careers.cummins.com
Not ready to apply but want to learn more? Join our Talent Community to get the inside track on great jobs and confidentially connect to our recruiting team:ttp://connect.find.ly/cummins
Job SYSTEMS/INFORMATION TECHNOLOGY
Primary Location United States-Indiana-Columbus-US, IN, Columbus, Goody's Building
Job Type Experienced - Exempt / Office
Recruitment Job Type Exempt - Experienced
Job Posting May 3, 2019, 8:24:17 AM
Unposting Date Ongoing
Req ID: 190001ME