Join Caterpillar as a senior cybersecurity analyst on the Caterpillar Cybersecurity Vulnerability Management Team.
SAST/SCA Program Leader Advocate “Shift Left” and DevSecOps transformation.
Provide operational support for static application security testing (SAST), software composition analysis (SCA), secrets scanning.
Deliver technical support in the integration of security tools in CI/CD pipelines and S-SDLC.
Educate and provide support to web application teams, owners, developers on application security, SAST/DAST tools and vulnerability management.
Work with VM team leadership and peers to drive efficiency into vulnerability management processes in ServiceNow and application security services.
Maintain knowledge on existing security procedures and directives related to application security and vulnerability management.

Bachelor’s degree in Cybersecurity, Security Engineering/Architecture, Computer Science, or related experience.
Cybersecurity, Penetration Testing, and/or Vulnerability Management hands on experience.
Experience with SAST/SCA/Secret Scanning tools
GitHub Advanced Security, CodeQL, Dependabot, Checkmarx, etc.
Good knowledge of OWASP Guidelines and industry vulnerability scoring standards for application security.
Good Knowledge of software development processes, integration of security assessments in Software development life cycle (SDLC) process, secure coding is required.
One or more professional information security certification from an accredited institution (CISSP, CCSP, CSSLP, CISM, GISCP, GWAPT, GWEB etc.)
Experience developing and testing apps in .NET or Java and other leading modern programming languages and technologies.
Experience with newer development frameworks
Experience with cloud security: Amazon AWS, Windows Azure
Excellent critical thinking, problem-solving, as well as written/verbal communication skills

Senior Cybersecurity DevSecOps Analyst

Key skills