Caterpillar Inc.

IT Risk & Compliance Professional

Caterpillar Inc.

full-time

Posted on:

Location Type: Office

Location: East Peoria • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $110,520 - $165,840 per year

Job Level

Mid-LevelSenior

Tech Stack

Cyber SecurityServiceNowSQLTableau

About the role

  • Provide guidance and train teams on ownership, implementation, and execution of Enterprise IT Controls.
  • Communicate, implement, and manage organizational change of IT control changes and ownership.
  • Coordinate and lead training of Process Owners, Execution Owners, and Execution teams on IT Controls requirements.
  • Develop strong relationships with Process Owners and Execution Owners.
  • Overall key contact for IT controls and governance compliance.
  • Provide enterprise governance and consultation on IT controls policies, processes, deadlines, and testing.
  • Ensure IT Control self-attestation participants understand results and make recommendations based upon implications.
  • Provide guidance to execution teams to help ensure control issues are remediated timely.
  • Challenge stakeholders on root causes of risk and effectiveness of remediation activities.
  • Coordinate the scheduling, monitoring, and management of internal self-attestations collaborating with Process Owners, Execution Owners and Execution teams.
  • Train impacted Process Owners, Execution Owners and Execution Team Members on how to complete self-attestations.
  • Lead risk assessment reviews of processes to ensure compliance, proactively manage risk, and contribute to the annual risk management process.
  • Escalate non-compliance to controls or deadlines to IT Management.
  • Engage with Process Owners to understand compliance for their process(es) and make process improvement recommendations.
  • Lead teams in continuous improvement activities within the IT Control framework.
  • Execute User Acceptance Testing (UAT) for changes/enhancements to the ServiceNow IRM module for the self-attestation process.
  • Identify and document reporting requirements to ensure relevant risk and compliance reporting to IT management.

Requirements

  • A bachelor’s degree or progressively complex experience in Information Services and related areas (Cyber, Digital, Accounting, Engineering, Finance & Financial Products, Human Resources, Legal, Logistics, Manufacturing & Supply Chain, Marketing & Product Support, Purchasing & Procurement, etc.)
  • A proficient level of understanding and experience from more than one IT business operation including application development and support, and infrastructure implementation and support.
  • Experience with processes, tools, and techniques for assessing and controlling an organization's exposure to IT risks
  • Ability to understand multiple perspectives, evaluate effectiveness and efficiency of processes, communicate appropriately, and make recommendations with a strategic enterprise perspective.
  • Preference for an auditing, compliance, cybersecurity, or risk management background and/or experience in managing risk through identification, assessment, and mitigation.
  • Prior experience(s) with identity and access management, role-based access control (RBAC), proactive risk identification, continuous control monitoring, and process maturity analysis.
  • Hands-on experience with Governance, Risk, and Compliance (GRC) platforms, specifically ServiceNow Integrated Risk Management (IRM) and/or AuditBoard.
  • Proven ability to configure, manage, and optimize workflows within GRC tools to support risk assessments, control monitoring, audit management, and compliance reporting.
  • Familiarity with integrating GRC tools into enterprise environments and leveraging automation for continuous control monitoring.
  • Hands-on experience with data analysis and visualization tools/platforms (Snowflake, SQL, Power BI, Tableau, Microsoft Excel, etc.) & techniques.
  • Industry and professional certification(s) (e.g., CRISC, CISA, CISM, CISSP, CIA, CPA, etc.) or be willing to obtain one within one year of starting.
Benefits
  • Medical, dental, and vision benefits*
  • Paid time off plan (Vacation, Holidays, Volunteer, etc.)*
  • 401(k) savings plans*
  • Health Savings Account (HSA)*
  • Flexible Spending Accounts (FSAs)*
  • Health Lifestyle Programs*
  • Employee Assistance Program*
  • Voluntary Benefits and Employee Discounts*
  • Career Development*
  • Incentive bonus*
  • Disability benefits
  • Life Insurance
  • Parental leave
  • Adoption benefits
  • Tuition Reimbursement

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
IT controlsrisk assessmentself-attestationUser Acceptance Testing (UAT)data analysisprocess improvementcontinuous control monitoringrole-based access control (RBAC)Governance, Risk, and Compliance (GRC)workflow optimization
Soft skills
communicationrelationship buildingstrategic thinkingproblem solvingcollaborationtrainingchange managementstakeholder engagementevaluationrecommendation making
Certifications
CRISCCISACISMCISSPCIACPA