Software Security Engineer

Career Area:

Business Technologies, Digital and Data

Job Description:

Your Work Shapes the World at Caterpillar Inc.

When you join Caterpillar, you're joining a global team who cares not just about the work we do – but also about each other. We are the makers, problem solvers, and future world builders who are creating stronger, more sustainable communities. We don't just talk about progress and innovation here – we make it happen, with our customers, where we work and live. Together, we are building a better world, so we can all enjoy living in it.

Caterpillar Inc. seeks a Software Security Engineer at its facility located at 5205 N. O'Connor Blvd, Irving, TX 75039. Responsibilities include:

1. Contributing to secure by design, secure development practices, security testing, and DevSecOps of software systems and/or applications.
2. Facilitating security efforts between the Cybersecurity Organization and development teams creating services on the data platform.
3. Helping development teams identify security gaps in their applications and services and assisting in solutions to close those gaps and ensure compliance with enterprise security requirements.
4. Reviewing and assessing architectural artifacts (e.g., architecture diagrams) for compliance with security policy and identifying risks and potential areas of improvement.
5. Collaborating with peer Cybersecurity professionals in assessing IT solutions for security posture.
6. Acting as a liaison between Caterpillar Cybersecurity organization and the rest of Caterpillar to communicate, embed, and demonstrate compliance with Cybersecurity requirements.
7. Serving as the technical point of contact for application teams related to automation, CI/CD, and Application Security Operations.
8. Understanding and communicating business risk alongside security risk.
9. Identifying existing processes and security gaps, and guiding improvements to streamline development processes to secure applications at every stage of software development through DevSecOps.
10. Maintaining high standards of software quality within the team by establishing good practices and habits.
11. Guiding the team in developing structured application/interface code, new program documentation, operations documentation, and user guides.
12. Maintaining current knowledge on existing security procedures, directives, and technology controls including application testing, threat modeling, attack and penetration testing, data classification, and data handling.
13. Participating in industry working groups and providing insights to product development teams on leading architecture, design, and security practices.
14. Understanding security requirements and risk tolerance baselines.
15. Keeping development teams accountable to metrics measuring risk.

Minimum Requirements:

This position requires a Bachelor’s degree, or foreign equivalent, in Computer Science, Computer Information Systems, Software Engineering, or a related field and two (2) years of experience as a Software Developer, IT Engineer, or related occupation in the software development field. Additionally, the applicant must have employment experience with:

1. Cloud Security best practices such as Cloud Security Alliance’s CCM – Cloud Controls Matrix;
2. Security experience with MS Azure and AWS;
3. Relevant industry standards such as ISO 27001, 27002, NIST CSF, ISA 62443, and SOC Reporting;
4. Experience with information security processes and principles such as enterprise security architecture, threat model development, vulnerability assessment, risk analysis, defense in depth, SDLC, and Web services security.

Telecommuting: 40% Telecommuting Allowed.

Applicants who are interested in this position should apply via , search (Software Security Engineer / Reference #R0000277791LI-DNI).

Posting Dates:

October 8, 2024 - February 4, 2025

Any offer of employment is conditioned upon the successful completion of a drug screen.

EEO/AA Employer. All qualified individuals - including minorities, females, veterans, and individuals with disabilities - are encouraged to apply.

Not ready to apply? Join our Talent Community .