Ford Motor Company Ford Pro Software Cybersecurity Assurance Engineer in Boston, Massachusetts
Ford Pro is a new global business within Ford committed to commercial customer productivity. Ford Pro delivers a work-ready suite of vehicles, accessories, and services for virtually every vocation, backed by technology, and engineered for uptime. A true one-stop shop, offering a full portfolio of electrified and internal combustion vehicles designed to integrate seamlessly with the Ford Pro ecosystem, helping customers' businesses thrive today and into the new era of electrification.
Are you a Security MacGyver at heart?
Are you passionate about solving technical and business problems while serving customers? The Ford Pro Cyber Security team is seeking a fun, driven and innovative individual to serve as a Software Assurance Engineer. Our group as the Business Information Security team is serving all of Ford Pro business and you can make an immediate impact as we grow software assurance culture with our products teams. We help guide teams to manage business risk as they develop world class commercial software solutions.
Seeking an individual who can:
Provide engineering insights for application security issues to product teams.
Can triage security problems – whether code-level, infrastructure, or architectural to determine risk.
Quickly understand security concerns and propose solutions in collaboration with software engineers.
Support and develop automation solutions to improve visibility into security issues.
Help teams manage technical debt when situation demand upgrade paths not patches.
Consult on API Security, gaining context from product team to guide their policy compliance.
Work towards automating security testing in the pipelines with platform teams.
Provide deep technical insights on topics like logging, IAM, SDLC, DevSecOps, and the role of software assurance in software engineering culture.
Stay abreast of changing threat landscape and security techniques to protect customer data and privacy.
As our Software Assurance Engineer, you are going to:
Support and develop automation solutions that enable our product teams to build and deploy code quickly while giving them insights into security findings
Collaborate with teams working on software solutions to automate security in CI/CD pipelines
Monitor and evaluate the performance of solutions, with an eye to automate wherever practical
Collaborate across Ford Pro Tech, Information Tech Operations (ITO), Enterprise Architecture, Enterprise Cyber Security organizations and so many more….
Leverage cloud technology to promote fast provisioning and scalability with secure configuration management and monitoring
Implement industry best practices for container hardening and API configuration management
Cross between technology and business topics with ease and understanding being able to explain security topics to any audience
Operate independently and adapt to dynamic needs of the organization and changing teams
Bachelor’s degree in computer science, IT management, Cyber Security, Risk Management, computer engineering or any related field
3+ years of cyber security, software engineering, or software product delivery
Experience implementing and/or supporting cloud-based platforms in an enterprise environment such as: Google Cloud Platform (GCP), Microsoft Azure, and Amazon Web Services (AWS).
Experience with security testing tools and their use in an SDLC
Proficiency with scripting and at least one programming language for automation.
Direct experience in delivery of security findings to software engineering teams and consulting on risk priorities for vulnerabilities
Our preferred qualifications would include many of these:
Master’s Degree in Cyber Security, Computer Science, Software Engineering, or a related field.
Experience with Continuous Integration/Continuous Delivery (CI/CD) pipelines
Security architecture experience collaboratingwith product teams
Experience building deployment solutions for containers and serverless functions to cloud environments.
Experience with Git/GitHub or equivalent source control repositories.
Familiarity with configuration and security tools for clouds, especially GCP related.
Experience using a centralized logging solution such as Splunk or Datadog for monitoring and reporting.
IT operations, security, and/or infrastructure experience in an enterprise environment.
Experience with Rally, Jira or other tools for managing backlogs, iterations and user stories
Experience with vulnerability management with understanding of CVEs, CWEs and how to research and manage risks.
Comfortable communicating with different levels and audiences effectively to gain attention collaboratively while not causing panic or animosity.
A strong drive to keep learning new tools, ideas, techniques and methodologies to change culture to one based on building security and privacy into solutions from inception.
Motivated to support compliance to standards and policies as foundational to security
As concerned about the people side of security challenges as the technical
Security Certifications are a plus (CISSP, CISA, CISM, etc)
Working knowledge of a variety of regulations, control frameworks, and requirements, such as SOX, NIST 800-53, NIST 800-171, ISO 27001
What you’ll receive in return :
As part of the Ford family, you’ll enjoy excellent compensation and a comprehensive benefits package that includes generous PTO, retirement, savings, and stock investment plans, incentive compensation, and much more. You’ll also experience exciting opportunities for professional and personal growth and recognition.
Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. Visa sponsorship is not available for this position.
We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status, or protected veteran status.
For information on Ford's salary and benefits, please visit: https://corporate.ford.com/content/dam/corporate/us/en-us/documents/careers/2024-benefits-and-comp-GSR-sal-plan-2.pdf
Requisition ID : 24037
Ford Motor Company
- Ford Motor Company Jobs