CNH Industrial

Cybersecurity Architect

Location US-IL-Burr Ridge | US-PA-New Holland | US
ID
2021-16822
Category
Engineering
Position Type
Full-time

Overview

CNH Industrial is a global leader in industrial goods. We provide farmers with cutting-edge technologies to help them feed a growing world population and we assist in building and rebuilding cities and infrastructures, all with future-proof powertrain solutions. With our Case IH, New Holland Agriculture, Case and New Holland Construction, and FPT Industrial brands, and comprehensive solutions for financing and aftermarket services, we’re driven to meet the needs of our customers.

 

The need for a comprehensive cybersecurity management system is a rapidly growing for the off-highway machinery industry. CNH Industrial is looking for expert support in building our cybersecurity management system and executing the security threat analysis and risk assessment (TARA) reviews on our machines. We are currently seeking an experienced Cybersecurity Architect to join our team.

Responsibilities

Threat Analysis Risk Assessment

  • Perform Threat Analysis Risk Assessments (TARA) on vehicle electronic designs with the vehicle engineers for new machine platform programs
  • Recommend vehicle electronics technical solutions for areas of high risk
  • Become proficient on using the CNH TARA template
  • Register and track issues to closure using CNH issue tracking databases
  • Recommend improvements to the CNH TARA process based on industry trends, standards (ISO 21434), and regulations (WP.29 Cybersecurity Management System)

 

Penetration Testing Coordination

  • Create specification to define target CNH needs for external penetration tests
  • Coordinate quoting of external penetration tests
  • Coordinate availability of hardware & software to support penetration tests
  • Schedule penetration tests
  • Schedule penetration test reviews
  • Review risks of issues found in penetration tests using TARAs
  • Register and track issues to closure using CNH issue tracking databases
  • Prepare executive summaries of penetration test results for review meetings

 

Cybersecurity Management System Support

  • Support the creation of the full CNH cybersecurity management system
  • Become proficient in the process steps required by the CNH cybersecurity management system
  • Train others in executing the steps required by the CNH cybersecurity management system
  • Recommend improvements to the CNH cybersecurity process based on industry trends, standards, and regulations
  • Write process instruction specifications to define how to perform various task in the CNH cybersecurity management system
  • Liaison with the ICT IOT cybersecurity team
  • Liaison with the Cybersecurity Governance team

Qualifications

The qualified candidate will have:

  • Bachelor's degree in Computer Science or Engineering
  • 3+ years demonstratable experience with a risk evaluation/mitigation method
  • 3+ years demonstratable experience with mobile machinery embedded controller system architectures and machine communications (CAN)
  • 3+ years demonstratable experience using an issue tracking database to track issues (e.g. Polarion)
  • Willing to consider remote candidates

The ideal candidate will have these preferred qualifications:

  • Demonstrated ability to manage multiple concurrent projects, prioritize work and escalate issues appropriately
  • Effective communication and presentation skills to peers, stakeholders, and senior-level leadership
  • Ability to adapt to new technologies and learn quickly
  • 2+ years experience performing Threat Analysis Risk Assessments (TARAs) per SAE 3061 or ISO 21434
  • Experience with UN ECE WP.29 CSMS & SUMS regulation
  • 5+ years experience with SAE J1939 machine CAN network communications standard
  • 3+ years experience with wireless communications standards (802.11-WPA2, cellular, Bluetooth)
  • 3+ years experience with Common Vulnerability Scoring System (CVSS)
  • 5+ years experience developing electronic machine control systems
  • 5+ years experience developing electronic machine architectures
  • 1+ years experience with cloud back end security knowledge
  • 2+ years experience with mobile machine diagnostics methods
  • 5+ years experience with farm and construction machinery experience

EEO

CNH Industrial is an equal opportunity employer. This company considers candidates regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. Applicants can learn more about their rights by viewing the federal "EEO is the Law" poster and its supplement here

 

CNH Industrial participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. You can view additional information here.

 

If you need reasonable accommodation with the application process, please call 1-800-889-4422 option 1 and then option 5, or contact us at narecruitingmailbox@cnhind.com.

 

Read about our company’s commitment to pay transparency by clicking this link: pay transparency notice.

 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.