Engineering, Cybersecurity, Systems Engineer

Position: 0.0
Job Purpose

Information Security is embedded in everything we do at Progress Rail, from the core IT systems used by thousands of Progress Rail employees and business partners deployed on premise or within a cloud provider to the products and machinery that we sell to our customers. Cybersecurity has evolved to be a key consideration in nearly every aspect of our business, and we are seeking the right talent to join the Progress Rail organization to provide strong information security leadership.

Supports the security of Progress Rail's information technology, operational technology, and locomotive systems, networks, and data.

Company Description

Progress Rail stands at the intersection of legacy and innovation-driving the future of rail with a pioneering spirit. Since its founding in 1983, the company has grown to become one of the world's largest and most trusted providers of railroad products, services, and technologies. Today, Progress Rail delivers a comprehensive portfolio of cost-effective solutions to railway customers around the globe. From the rails themselves to the EMD locomotives that ride them, the company's products are in operation across more than 100 countries-powering progress and connecting communities.

In 2006, Progress Rail joined Caterpillar Inc., further strengthening its ability to lead the rail industry with cutting-edge technology, unmatched expertise, and a commitment to excellence. At Progress Rail, the team is not just building the future of rail-they are making history every day.

Education / Training

* Bachelor's degree or equivalent professional experience in Information Security, Information Technology, Engineering, or a related field.

Key Job Elements

* Design, implement, and support cybersecurity controls for Operational Technology (OT) environments across manufacturing, factory, connected products, and industrial control system (ICS) settings, including PLCs, HMIs, SCADA, and supporting infrastructure.

* Partner with factory operations, engineering, IT, and EHS teams to securely integrate OT systems with enterprise IT networks while maintaining availability, safety, and reliability requirements.

* Conduct risk assessments and vulnerability analysis for OT systems and connected products, identify security gaps, compensating controls, and remediation strategies appropriate for industrial environments.

* Support incident response activities involving OT assets, including investigation, containment, root cause analysis, and lessons learned activities in coordination with enterprise CSIRT teams.

* Define and maintain OT security architectures, standards, and technical requirements aligned to corporate cybersecurity policies and industry frameworks (e.g., IEC 62443, NIST).

* Evaluate OT security tools, technologies, and monitoring capabilities (e.g., passive network monitoring, asset discovery, segmentation solutions) and provide recommendations based on risk and operational impact.

* Support secure system integration efforts, including factory expansions, modernization initiatives, and new equipment deployments, ensuring cybersecurity requirements are incorporated early in design phases.

* Develop and maintain documentation related to OT cybersecurity controls, architectures, risk assessments, and procedures with a high degree of operational discipline.

* Provide consultation and technical guidance to manufacturing sites on OT cybersecurity best practices, risk management, and compliance expectations.

* Participate in continuous improvement activities to mature OT cybersecurity governance, standards, and monitoring capabilities across the enterprise.

Qualifications and Experience

* Extensive experience operating in industrial, manufacturing, or OT environments, supporting cybersecurity for ICS, factory systems, or plant networks within a large enterprise.

* Strong working knowledge of OT architectures, including PLCs, SCADA, DCS, HMIs, industrial networks, and common manufacturing protocols (e.g., Ethernet/IP, Modbus, Profinet).

* Demonstrated experience performing cybersecurity risk assessments, vulnerability analysis, and security design for OT systems while balancing…