Cyber Security Automation Architect

Date: Aug 23, 2024

Location:

Milwaukee, WI, US, 53204-2941

Req ID: 31057

Onsite or Remote: Hybrid Position

Komatsu is an indispensable partner to the construction, mining, forestry, forklift, and industrial machinery markets, maximizing value for customers through innovative solutions. With a diverse line of products supported by our advanced IoT technologies, regional distribution channels, and a global service network, we tap into the power of data and technology to enhance safety and productivity while optimizing performance. Komatsu supports a myriad of markets, including housing, infrastructure, water, pipeline, minerals, automobile, aerospace, electronics and medical, through its many brands and subsidiaries, including TimberPro, Joy, P&H, Montabert, Modular Mining Systems, Hensley Industries, NTC, and Gigaphoton.

Job Overview

The Automation Center of Excellence is responsible for Researching and Developing new advanced autonomous and situational awareness technologies for Komatsu Mining Equipment (Mining Shovels, Mining Wheel Loaders, Mining Drills, etc.) This position is located at our newly built headquarters in Milwaukee, WI. The Cyber Security Automation Architect will be responsible for developing the vision, methodology, implementation, & testing security measures for the new Smart Machine autonomy platform & legacy automation products - ensuring the highest industry standards are embedded throughout, providing our customer a safe, reliable, & robust solution.

Key Job Responsibilities

• Plan, investigate, and build reliable, powerful, and flexible security architecture.

• Perform penetration tests, vulnerability testing, including risk analysis, and security assessments, on the complete infrastructure.

• Investigate the latest security standards, recent security systems, and renewed authentication protocols and make recommendations.

• Ensure that all firewalls, VPNs, routers, servers, and IDS scanning technologies are reviewed and approved before installation.

• The position will have a split focus between new product research, design, as well as development of testing for product validation. The position will involve collaboration in a small team environment with a high level of individual autonomy and freedom to pursue creative design ideas.

• Our team uses an Agile Style of Product Development, so high quality candidates will be experienced self-starters that are capable of turning functional concepts into technical designs with a strong focus on end user experiences.

• A strong desire to continue expanding one’s knowledge base is important due to the fact that our team integrates advanced and emerging technologies. The role will be most successful with an individual who truly enjoys working on technology that they may not be familiar with but is willing to dive in and figure things out.

Qualifications/Requirements

Required Skills

• Minimum 5 years of in-depth knowledge of security protocols, cryptography, and security operations.

• Minimum 5 years of proven experience integrating security into DevOps processes.

• Rapid7 IVM (vulnerability management)

• SOAR (Security automation tool)

• Proficiency in scripting and programming languages (e.g., Python, Bash).

• Hands-on experience with automation/configuration management tools.

• Experience securing cloud environments (e.g. Azure).

• Conducting vulnerability assessments and penetration testing.

• Proficiency in Infrastructure as Code tools.

• Experience with CI/CD pipelines and integrating security checks.

• Risk management and knowledge of compliance standards (e.g., SOC2, ISO27001).

• Designing secure systems and enforcing security policies.

• Developing and implementing incident response plans.

• Strong communication and collaboration skills.

• Strong verbal and written communication skills.

• Creative, high energy, self-motivated and self-starter.

• Able to travel annually up to 10%.

Preferred Skills

• Experience with automated security testing tools (e.g., SonarQube, OWASP ZAP).

• InsightAppSec

• Knowledge of cloud-native security tools and services.

• Ability to conduct threat modeling exercises.

• Strong analytical and problem-solving skills.

• Incident response and forensic analysis experience.

• Continuous learning and adaptability to new security trends.

• High level of self-motivation and leadership skills.

• Willingness to learn or try something new!

Additional Information

Komatsu is an Equal Opportunity Workplace and an Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.