Cummins US & Canada

Job Information

Cummins Inc. Cybersecurity- Vendor Security Sr. Analyst in Columbus, Indiana

Cybersecurity- Vendor Security Sr. Analyst


We are looking for a talented Cybersecurity - Vendor Security Sr. Analyst to join our team specializing in Systems/Information Technology for our Corporate Segment in Columbus, IN / your remote home office. The Vendor Security Sr. Analyst is an important member of the Third-Party Cyber Risk Management team responsible for understanding and managing information security risk associated with external parties that Cummins relies upon and/or shares data with. This individual will also be a change agent who will support the design, evolution and continuous improvement of third-party risk assessment processes including the development and maintenance of procedures, automation, and metrics to be used in the assessment of third parties.

In this role, you will make an impact in the following ways:

  • Lead the support of the organization's cybersecurity framework, including policy, standards, and baselines.

  • Understand and apply appropriate handling of risk and compliance from internal and external perspectives to assure that existing and new technology solutions meet the organization's cybersecurity risk requirements.

  • Understand and apply Cummins cybersecurity policies and industry data privacy principles.

  • Lead cybersecurity risk identification utilizing identified Cummins risk management frameworks while providing guidance to the team to evaluate severity and mitigation plans.

  • Coach and develop less experienced team members.

  • Understand and apply frameworks and standards (e.g. NIST, ISO, ITIL, Cobit) in a manner specific to Cummins processes and controls.

  • Provide cybersecurity technical expertise for technology solutions.

  • Collaborate with stakeholders on requests for new and changing technology solutions, acting as a trusted business partner and advisor.


To be successful in this role you will need the following:

  • 2- or 4-year College, university, or equivalent degree in Cybersecurity, IT, or a related subject or equivalent industry experience required.

  • Intermediate level of relevant work experience required; 3-5 years of relevant experience required.

  • Must be with familiar with common security frameworks such as SOC-2, ISO 27001/2, or PCI and can guide business stake holders and lead outside parties through the assessment process. procedures, automation, and metrics to be used in the assessment of third parties.

Compensation and Benefits

Base salary rate commensurate with experience. Additional benefits vary between locations and include options such as our 401(k) Retirement Savings Plan, Cash Balance Pension Plan, Medical/Dental/Life Insurance, Health Savings Account, Domestic Partners Coverage and a full complement of personal and professional benefits.

Cummins and E-verify

At Cummins, we are an equal opportunity and affirmative action employer dedicated to diversity in the workplace. Our policy is to provide equal employment opportunities to all qualified persons without regard to race, gender, color, disability, national origin, age, religion, union affiliation, sexual orientation, veteran status, citizenship, gender identity and/or expression, or other status protected by law. Cummins validates right to work using E-Verify. Cummins will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new employee’s Form I-9 to confirm work authorization.


Primary Location United States-Indiana-Columbus-US, IN, Columbus, 301 Irwin Building

Job Type Experienced - Exempt / Office

Recruitment Job Type Exempt - Experienced

Job Posting Jul 18, 2021, 2:57:01 PM

Unposting Date Ongoing

Req ID: 210003QS