Security architect jobs in Toledo, OH

PURPOSE OF THE JOB The Global OT Network Security Architect plays a strategic role in enabling secure digital transformation across manufacturing by leading the design, governance, and implementation of resilient operations technology (OT) infrastructure. This role is critical to the success of the Manufacturing Digital Readiness Architecture (MDRA) program and broader strategic initiatives, ensuring standardized, secure environments that protect critical assets, support operational continuity, and align with enterprise architecture and compliance requirements. Reports to: GIS Director, Manufacturing Security & Infrastructure Span of Control: Individual Contributor JOB RESPONSIBILITIES Knowing Our Businesses and their Strategies * Develop and maintain a strong understanding of Owens Corning specific business processes and operations locally and globally * Build relationships within the organization, cross-functionally, and with key business stakeholders; continuously enhance connection to remain aligned with core objectives * Understand how IT Security and services are directly aligned with the company's strategic objectives by regularly engaging with key business stakeholders * Monitor industry trends and competitive benchmarks to inform strategy and maintain a forward-looking security posture Executing Strategy OT Network Infrastructure Security * Lead the architecture, deployment, and ongoing management of secure and resilient OT network infrastructure across global manufacturing sites. Ensure robust connectivity and protection of critical operational systems to support business continuity and enable digital transformation. * Develop and enforce OT network segmentation strategies using VLANs and Layer 2/Layer 3 protocols to minimize risk and enhance operational efficiency. Review and validate OT system designs to ensure alignment with enterprise architecture standards and regulatory requirements. * Ensure OT network designs meet enterprise security and architecture standards. Provide hands-on support to site teams with network configuration, equipment backups, and recovery procedures to maintain system reliability and uptime. * Establish and maintain governance frameworks, standard operating procedures (SOPs), and documentation for OT network infrastructure. Participate in change review boards and architecture decision forums to ensure compliance and drive operational excellence. * Collaboration and integration partner with OT architects, system owners, cybersecurity teams, and business stakeholders to integrate security technologies and resolve infrastructure issues. Offer guidance and support to site teams on governance practices and defect resolution. * Identify gaps in current network documentation and practices and propose updates to improve performance and reliability. Contributes to the development of standard work and process improvements for OT network infrastructure. * Continuously assess and enhance OT network technologies and controls in response to emerging threats and vulnerabilities. Stay current with industry trends, new technologies, and evolving regulatory requirements to inform infrastructure decisions. * Support capital delivery projects by reviewing OT infrastructure plans and ensuring alignment with security and architecture standards. Provide technical input during design and implementation phases, and track project milestones, deliverables, and risk mitigation efforts. Lead and Influencing in the Function * Drive continuous improvement initiatives within the department and cross-functionally; encourage others to identify areas of waste (process, time, etc.); ideate and execute action plans to create productivity * Collaborate with cross-functional teams with key stakeholders on security solutions and capabilities. * Create an inclusive environment where the team looks at you as a highly regarded leader and mentor Lead and Develop Talent * Foster a high-performing, well-connected global team culture that emphasizes collaboration, accountability, curiosity, and innovation * Promote diversity of thought and experience to drive innovation and adaptability * Capture the value of continuous learning and ongoing development opportunities * Be engaged in personal development and stay updated on the latest information security trends and best practices. JOB REQUIREMENTS MINIMUM QUALIFICATIONS: * Bachelor's degree in computer science, Information Systems, Cybersecurity, Networking, Electrical/Computer Engineering, or related field. * 8+ years of experience in OT security, network security, shop floor controls and project management, with at least 2 years in each domain. * 5+ years of hands-on experience in information security technology with a strong background in security and networking * Operational Technology security knowledge is a plus. EXPERIENCE: * Demonstrated experience implementing, maintaining and troubleshooting security and network technologies * Success in solving complex security and network problems * Demonstrated experience designing and managing core network infrastructure; switch and routers * Experience creating and maintaining IPSEC tunnels, remote access solutions, web filtering, security, NAT and AV & threat policies. * Experience managing large scale firewall platforms KNOWLEDGE, SKILLS AND ABILITIES: * Knowledge of OT asset management and monitoring platforms * Solid working knowledge of the function of authentication for security policies * In-depth knowledge of security policy creation, best practices and optimization * Knowledge to secure IoT and IIOT networks * Understanding of central firewall management tools to administrator standard policies and automation * The ability to build trust, connections, and influence stakeholders. * Knowledge of Purdue model, OSI model, ISO, ISA, NIST and IEC standards as applied to security * Must know the difference between an essential security requirement and an ideal security practice and be able to communicate to leaders and stakeholders * Competent in project management theory, knowledge, skills, tools, and techniques with the ability to successfully deliver large projects from concept to deployment * Experience creating communications in a variety of platforms, technologies, and methods. * Ability to communicate and collaborate effectively with both IT and business partners to assess needs, propose technological solutions, and achieve business benefits. * Proven ability to be successful within a global environment. * Ability to understand, communicate with and effectively interact with people across cultures. * Ability to convey relevant information clearly with confidence. * Understanding others through active listening. * Organizational skills to handle multiple priorities and proven ability to execute and deliver results. * Demonstrated the ability to synthesize high-level objectives within an ambiguous environment to align on a direction with clear objectives and goals. * Experience in managing supplier relationships with confidence and presence * Demonstrated experience leading resolution of advanced technical issues in conjunction with and on behalf of internal teams and external providers. * Analytical, technical, and problem-solving skills. * The ability to prioritize in a constantly evolving environment * Ability to travel up to 25%, including internationally About Owens Corning Owens Corning is a residential and commercial building products leader committed to building a sustainable future through material innovation. Our products provide durable, sustainable, energy-efficient solutions that leverage our unique capabilities and market-leading positions to help our customers win and grow. We are global in scope, human in scale with more than 25,000 employees in 31 countries dedicated to generating value for our customers and shareholders and making a difference in the communities where we work and live. Founded in 1938 and based in Toledo, Ohio, USA, Owens Corning posted 2024 sales of $11.0 billion. For more information, visit ********************* Owens Corning is an equal opportunity employer. Except in limited circumstances such as formal apprenticeship programs, Owens Corning does not employ anyone under the age of 18.

As a global leader in advanced mobility solutions, our outstanding team of legal professionals helps us navigate the continually changing legal and regulatory landscape. In our Office of General Counsel, you'll be part of an organization that collaborates with outside counsel to operate as a global team and deliver world-class legal, tax and audit services to client groups throughout the company. At Ford Motor Company, we believe freedom of movement drives human progress. We also believe in providing you with the freedom to define and realize your dreams. With our incredible plans for the future of mobility, we have a wide variety of opportunities for you to accelerate your career potential as you help us define tomorrow's transportation. In this position… The Security Systems Integration Manager will be responsible for emerging technologies and commercial/EV properties in the physical security space. This new, strategic leadership role requires a highly experienced security professional to provide technical leadership and oversee the design, implementation, and maintenance of security solutions for our strategic partnerships, commercial properties, and EV facilities. This individual will play a vital role in mitigating risk and ensuring the security of our expanding operations. Responsibilities What you'll do... Provide expert technical support and consultation on complex security issues for partnerships and commercial properties Manage a team of direct reports, purchased service personnel, and strategic business partners Lead the design, implementation, and strategic planning of on-premise and cloud-hosted security solutions Oversee the daily operation of security systems, ensuring the protection of personnel and assets Manage budgets, contracts, and service agreements related to security systems Collaborate with cross-functional teams (HR, Labor Relations, Finance, IT, Ford Land, etc.) on security initiatives Develop and implement security policies, procedures, and standards Lead strategic projects to keep security systems and technologies current and cost-effective Qualifications You'll have... Bachelor's degree in a related field (e.g., Security Management, Information Technology, Engineering), experience will be considered in lieu of a degree. 5+ years' Experience with cloud-based security solutions and emerging technologies or Cyber Security. Extensive experience in security systems management, including access control, video surveillance, intrusion detection, and other related technologies. Proven experience managing teams and budgets. Strong communication, interpersonal, and collaboration skills. Even better, you may have... Industry certifications (e.g., CPP, PSP) are highly desirable. As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including: Immediate medical, dental, vision and prescription drug coverage. Flexible family care days paid parental leave, new parent ramp-up programs, subsidized back-up childcare and more. Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more. Vehicle discount program for employees and family members and management leases. Tuition assistance. Established and active employee resource groups. Paid time off for individual and team community service. A generous schedule of paid holidays, including the week between Christmas and New Year's Day. Paid time off and the option to purchase additional vacation time. This position is a leadership level 6. For more information on salary and benefits, click here. 2025-benefits-and-comp-LL6-sal-plan-1.pdf Visa sponsorship is not available for this position. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. #LI-DA1

Resonant Sciences is recruiting for a highly motivated and well- ‐organized individual with prior experience administering US government security policies and procedures to serve as a Part-Time Information Systems Security Manager (ISSM). DUTIES AND RESPONSIBILITIES: Certification & Accreditation of computer networks using government standards, and data contamination management, to include coordinating clean- ‐up efforts and reporting requirements, as well as ensuring auditing requirements are completed. This position is responsible for media control, virus scanning, hardware and software control, and computer security briefings. Must be a strong advocate for all disciplines within the security program, while at the same time ensuring the business needs are met. Candidate will handle the acquisition, installation, operations, maintenance, and usage of a multiuser computer networks in various classified environments. Installs and maintains workstation hardware, software, and peripheral components, and must have knowledge of operating systems including Windows, Windows Server. Interprets and adherence to various federal requirements including (but not limited to): JSIG, ICD 503, ICD 705, and NISPOM. This position works closely with the Facility Security Officer and Customer Program Security Officer to ensure all systems security procedures are being followed. Requires the ability to make sound decisions, take independent action, analyze problems, and provide focused solutions with the ability to effectively communicate information to various audiences both verbally and through written communications. Will be required to interact with internal and external customers or Government security officials to perform security duties; address routine information security matters with employees regarding issues; report preparation, system security access briefings, and other duties as required. Additional Duties Include: Prepare, update and maintain RMF documentation such as, but not limited to, Authorization to Operate (ATO) packages, System Security Plans (SSP), Risk Assessment Reports (RAR), Security Control Traceability Matrixes (SCTM) and Plan of Actions and Milestones (POA&Ms) for all networks and systems. Provide Configuration Management (CM) for IS security software, hardware, firmware and coordinating changes and modifications with the ISSM, SCA and Authorizing Official (AO). Identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies Continually evaluate the security posture of all networks and systems, including making recommendations for implementing new security controls as new threats and vulnerabilities are discovered. Work closely with Security Control Assessors (SCA) to determine effectiveness of current security controls and a path forward to implement future security controls, where potential weaknesses might exist. Establish, document, and monitor security programs while overseeing the implementation plans, and ensuring compliance with federal security requirements and mandates (e.g., RMF, Federal Information Processing Standards (FIPS), National Standards of Information Technology (NIST)). Possess a working knowledge of cyber security policies and technical cyber security protection measures. Serve as the authorizing officer for all cyber security issues. Conduct periodic scans to verify networks and systems are appropriately baselined with tested and approved system and application patches, hotfixes and updates. Create, log, and control all customer requests and transactions for data transfers between systems (e.g. Compact Disks (CD) and other high-capacity media, scanning documents, etc.). Ensure the following activities are required and completed on a periodic basis (e.g. ensuring data is backed up, account management (deactivate unused accounts and validate user access rights). Evaluate all new software and hardware products for potential security flaws and risks. Periodically review and analyze audit logs for system deficiencies and anomalies using audit reduction tools. Perform other duties, as assigned. QUALIFICATIONS: Security Plus Certification. Five years of experience in Information Technology (IT) in a classified environment. BA/BS degree + 2 years ISSM/ISSO experience, or 6- ‐8 years equivalent ISSM/ISSO experience is required. Candidate must possess or have the ability to obtain DODI 8570- ‐.01 compliant certification Experience with supporting various system configurations (Stand Alone, Peer to Peer Networks, Local Area Networks, and Wide Area Networks) and security hardening, test, and maintenance of systems. Experience with various Security Content Automation Protocol (SCAP) tools such as Assured Compliance Assessment Solution (ACAS) (Nessus) and SCAP Compliance Checker (SCC). CITIZENSHIP/SECURITY CLEARANCE: U.S. Citizenship required. Must have or be able to obtain and maintain a Secret security clearance. TS/SCI & SAP eligibility is required. Active TS/SCI clearance is desired. WHAT'S IN IT FOR YOU? Become part of a high-tech work environment that is highly impactful, exciting, and collaborative. Flexible working environment that enables our employees to balance work and personal life. A comprehensive benefits package that includes medical, dental, vision and prescription benefits with extremely low employee cost share for you and your eligible dependents. A well-funded Health Spending Account with standard account fees paid by Resonant Sciences. 10 Federal Holidays (6 Standard, 4 Floating). A flexible Paid Time Off plan for employees. A generous retirement plan, subject to plan, IRS and ERISA rules. WHO ARE WE? Resonant Sciences is a research and development firm with locations all over the United States, focused on developing and transitioning innovative technologies and solutions to developmental and operational platforms. Our areas of expertise include radome and antenna design and fabrication, custom electronic solutions, and RF measurements of materials, antennas, radomes, and subsystems. Our extensive capabilities include design and analysis, production, and ground and flight testing. A career at Resonant Sciences means that you will be involved in the complete development life cycle, seeing your design evolve from development prototype to incorporating mission requirements to technical specifications into a finished product for field testing. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Together, We Enhance Innovation and Growth i2G specializes in advanced physical electronic security and life safety solutions. I2G has proven experience in surveillance, access control, and intrusion detection systems, biometrics, fence sensors, radars, ground sensors, anti-drone technologies, and more. We excel in design, project management, commissioning, and enterprise technology integrations. i2G's mission is to provide the products and services that meet our customers' needs to give them a vital advantage in today's market, helping to protect what matters most. This position will provide engineering design and support for security solutions for new and existing clients while working alongside internal teams, external teams, clients, and subcontractors to ensure project success. We are looking for a motivated and knowledgeable Jr. Security Engineer to join our team. The ideal candidate will have an understanding of standard Low voltage systems ideally in the Electronic Security technology space, to include Access Control Systems (ACS), Intrusion Detection Systems (IDS), Closed-Circuit Television (CCTV), and supporting equipment such as computer software/hardware, and networking infrastructure. This candidate will excel in critical thinking, have the ambition to learn and grow, and possess a strong desire to perform at the top of their abilities. Responsibilities Review architectural, electrical, telecommunication, and security engineering floor plans, riser drawings, device schedules, and detail drawings. Design, develop, and implement solutions for system installations, upgrades, repairs, and conversions. Review Field Site Survey documentation and provide technical assistance with RFI/RFP responses. Create solution design documentation, including drawings, Bills of Materials (BOMs), permitting packages and solution design summaries. Learn and Maintain familiarity with current and emerging electronic security technologies, such as access control, video surveillance, intrusion detection, biometrics, and industry-leading vendors On the job Training will be provided to increase skills in all key responsibilities listed above, including hands on field work with installation and integration teams to better understand design and implementation requirements. Qualifications Mechanical, Engineering, Plumbing Engineering degree or a minimum of 2 years of previous experience in the industry. An associate or bachelor's degree in a relevant field if no previous experience, a comparable amount of experience in the appropriate field may be substituted. Experience in the design and planning of MEP systems. Ability to make load calculations associated with power, data, conduit fill ratios and/or HVAC systems. Ability to manage time and multiple tasks without supervision. Strong organizational skills and attention to detail. Excellent analytical and problem-solving skills. Exceptional presentation, writing, verbal, and written customer communication skills. Experience with computer programs such as Microsoft Office, Excel, Adobe, etc. is preferred. Knowledge of Microsoft Project, Visio, BlueBeam, AutoCAD, or Revit is a plus. Company Overview This is a Low Voltage Security Estimator career opportunity with i2G Systems. Learn more about i2G: *************************************** "Kastle Systems Makes Strategic Investment in i2G Systems, Strengthening Leadership in Serving High-Security Industries and High-Value, Large Scale Facilities" Read More About the Partnership Here: *********************************************************************************************************************************************************************************** Equal Opportunity Statement We are an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, marital status, pregnancy or any other basis protected by applicable federal or state laws. #JuniorSecuritySystemsDesignEngineer #SecuritySystemDesign #AccessControlDesign #VideoSurveillanceDesign #IntrusionDetectionSystems #SecuritySystemsEngineering #SecuritySystemShopDrawings #SecuritySystemLayouts #SystemRiserDiagrams #EngineeringSpecifications #SecurityDesignDocumentation #SecurityProposalDesign #BidPreparation #SecuritySystemEstimation #SecuritySystemSubmittals #AutoCADSecurityDesign #RevitBIMSecurityDesign #SecuritySystemsIntegration #TechnicalSupportForSecurityDesign #SecuritySolutionsEngineering #PhysicalSecuritySystemDesign

Woven by Toyota is enabling Toyota's once-in-a-century transformation into a mobility company. Inspired by a legacy of innovating for the benefit of others, our mission is to challenge the current state of mobility through human-centric innovation - expanding what "mobility" means and how it serves society. Our work centers on four pillars: AD/ADAS, our autonomous driving and advanced driver assist technologies; Arene, our software development platform for software-defined vehicles; Woven City, a test course for mobility; and Cloud & AI, the digital infrastructure powering our collaborative foundation. Business-critical functions empower these teams to execute, and together, we're working toward one bold goal: a world with zero accidents and enhanced well-being for all. TEAM The security team at Woven by Toyota is on the cutting edge of many challenging security problems.We identify emerging security threats in autonomous vehicles and help design more secure systems.We work closely with internal platform teams to provide a secure development environment through tooling and automation, allowing developers to innovate quickly without compromising security. WHO ARE WE LOOKING FOR? We are looking for a Senior Security Risk Technical Specialist to lead information security risk management engagements such as technical risk assessments pertaining to Woven by Toyota's businesses and engineering work. You will identify risks and vulnerabilities by working with diverse internal and external stakeholders of varied technical and business backgrounds. You will work with technical product teams on assessing any security risks and manage those risks through their lifecycle. You will be expected to work with both highly technical teams and senior management. While this is a risk assurance position, given the cutting edge nature of projects that we work on (IoT, autonomous driving, vehicle OS), we are seeking a candidate with strong technical insight. Woven by Toyota Security demands high standards, so a passion and discipline around security and delivery is critical. A high level of ownership and accountability is a must. In this role you will report to an engineering manager, in a hybrid capacity requiring your presence on-site three days per week. RESPONSIBILITIES * Lead/perform risk assessment engagements for products (IoT, autonomous driving, AI etc), enterprise, and related information systems or processes. * Manage technical, process and human related information security risks and ensure compliance for information security policies and regulatory requirements by conducting technical, procedural and operational review of business processes and system controls * Communicate and escalate risk issues to the appropriate level and department from frontline teams to senior management * Evaluate technology and business-related controls for integrating business and information system security and risk mitigation efforts for products and enterprise. Coordinate and validate business risk justification documents for internal and external governance programs * Manage third party risk with both internal and external stakeholders MINIMUM QUALIFICATIONS * Bachelor or Masters degree in Information Security and/or related field * 6+ years experience in Information Security * 3+ years technical security experience securing products incorporating emerging technologies like IoT, AI, Automotive operating systems * 1+ year of experience within Information Risk Management, IT audit or Security Governance function * 1+ year of experience with regulatory compliance and information security management frameworks (e.g., ISO27001/ISO27002, NIST CSF, CMMC) * Experience in highly regulated industries, ideally with retail product exposure and impact * Technical expertise in the security field and experience with security architecture and ability to challenge risk assessments on the technical side * Experience with multiple risk assessment methods including threat modeling (STRIDE, etc) * High level of independence and autonomy in leading and performing engagements, including conducting interviews, with a complex set of corporate stakeholders * Experience in IT auditing and technical assessments of networks, operating systems, cloud environments, etc * Excellent written and verbal communication skills and ability to adapt communication to the audience skillset and level of responsibilities NICE TO HAVES * Japanese language proficiency * 5+ years of technical security experience out of the required 6+ years of Information Security experience * 3+ years of experience within Information Risk Management, IT audit or Security Governance function * 3+ years of experience with regulatory compliance and information security management frameworks (e.g., ISO27001/ISO27002, NIST CSF, CMMC) * 1+ year of development and coding experience ideally in IoT, AI, automotive OS * Experience with compliance especially security and privacy regulations * Experience building enterprise governance, risk, and compliance programs * Hands-on experience in configuring and working with GRC tools * Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and/or Certified Information Systems Auditor (CISA) WHAT WE OFFER We are committed to creating a modern work environment that supports our employees and their loved ones. We offer many options of the best programs to allow you to do your most meaningful work and to help you shape the future of mobility. ・Excellent health, wellness, dental and vision coverage ・A rewarding 401k program ・Flexible vacation policy ・Family planning and care benefits Our Commitment ・We are an equal opportunity employer and value diversity. ・Any information we receive from you will be used only in the hiring and onboarding process. Please see our privacy notice for more details.

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? As a key member of our Information Technology group, you'll play a critical part in shaping the future of mobility. If you're looking for the chance to leverage advanced technology to redefine the transportation landscape, enhance the customer experience and improve people's lives, this is the opportunity for you. Join us and challenge your IT expertise and analytical skills to help create vehicles that are as smart as you are! The Vehicle Cyber Security Systems Engineer will serve a key role in shaping the future of product development security for vehicles (e.g. Connected Vehicle, Autonomous Vehicle, Electric Vehicle, Ford Smart Mobility, and V2X Security). The engineer will work within cross functional team to do/support the following: You'll have... Bachelor's degree in Electrical Engineering, Computer Engineering, Software Engineering, Computer Science, or Cybersecurity OR a combination of education and experience 5+ years of experience with embedded and/or automotive systems 3+ years of experience with in-vehicle network architecture, modules, and protocols (CAN, etc.) Ability to develop and maintain engineering documentation including requirements, specifications, test plans, etc. Ability to work independently and collaboratively Strong communication and analytical skills Even better, you may have... Experience with Hardware Security Module (HSM) and Secure Hardware Extension (SHE) Experience with coding (i.e., C, C++, C# Python, Java, CAPL, JQL) Experience with JIRA and Kanban boards for project management Familiar with vehicle system (i.e., capabilities of ECUs on a vehicle) Familiar with automotive standards (i.e., ISO 14229-1, ISO 21434) Familiar with quality tools and methodologies (i.e., FMEA, DVP) Able to work following an agile methodology Knowledge of Ford's internal engineering systems and requirements Comfortable working in a fast-paced and innovative environment where problems are not always well-defined. Experience advocating and driving adoption of industry standard methodologies. Project management skills, including identifying and scheduling process steps, determining resources and staff required to successfully complete research projects. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including: • Immediate medical, dental, vision and prescription drug coverage • Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more • Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more • Vehicle discount program for employees and family members and management leases • Tuition assistance • Established and active employee resource groups • Paid time off for individual and team community service • A generous schedule of paid holidays, including the week between Christmas and New Year's Day • Paid time off and the option to purchase additional vacation time. For a detailed look at our benefits, click here: ******************************* This position is a range of salary grades 7-8. Visa sponsorship is not available for this position. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. #LI-Hybrid What you'll do... Perform product Cyber Security assessments on projects of multiple Ford product lines Compliance reviews on features, modules as defined in the Ford Cyber Security engineering process in compliance with ISO 21434, UNECE R155, UNECE WP.29 and any other required relevant global cyber security requirements, regulations. Using that understanding to standardize all business operations and establish clear, documented protocols. Have the ability to review technical documentation to assess compliance. Manage and apply cybersecurity requirements into product design and development life cycle from requirement to testing with required deliverables Work with feature and ECU owners to manage the progression of each feature / ECU through development to ensure security by design from inception Ensure features, components, systems are designed using robust engineering processes including threat analysis, risk assessment, adoption of security requirements, security audits, and vehicle ecosystem assessments Develop and utilize global supplier expertise to meet cyber security expectations Proficient in JIRA. Process, requirement improvement support, for future reference, particularly in the event of an audit by a regulatory agency. Provide presentations to management (program milestones, security governance board, etc.)

+ As a Cyber Engineer, you will be responsible for maintaining systems, performing reviews, and evaluating configurations. + You will handle daily tasks and requests using the corporate IT ticketing system. + The role focuses on the hardening and improvement of existing systems to reduce risk to the systems and/or data. **Responsibilities:** + Maintain existing systems and ensure their proper functioning, identifying a baseline operation and identify an issue outside of the baseline. + Review the configuration of different systems, including consoles to evaluate system configurations for security controls. + Handle daily requests through the corporate IT ticketing system to onboard devices onto the network and address system issues. + Work with other teams to address findings. + Influence others to reduce risk and increase the resiliency of the system to cyber events. + Conduct vulnerability assessments and security evaluations of complex systems. + Develop and maintain comprehensive security testing plans. + Automate security testing processes for networks, systems, and applications where possible. + Develop meaningful metrics to reflect the security posture of the environment. + Produce actionable, threat-based reports on security review results. + Consult with platform managers and systems administrators on security review results and remediation strategies. + Install, operate, and maintain various cybersecurity products. + Implement routine security reviewing processes. + Collaborate closely with the organization's architect to implement design recommendations and requirements in the work environment. **Experience:** + At least 5 years of hands-on experience working with operating systems + Knowledge with security testing frameworks, such as OWASP. + Excellent organizational and time management skills. + Strong critical thinking and analytical abilities. **Skills:** + Proficient knowledge of: Unix/Linux systems, Mac OS + Desired Qualifications: + Knowledge of application development processes and proficiency in at least one programming or scripting language (Python, PowerShell, ETC.). + Windows client/server environments, VMware/Citrix + Cloud environments and technologies (e.g., AWS, Azure) + Certifications such as CCNA, NCSA, Linux Essentials, CompTIA-Security+, (ISC)2-SSCP **Education:** + Bachelor's or equivalent experience. **About US Tech Solutions:** US Tech Solutions is a global staff augmentation firm providing a wide range of talent on-demand and total workforce solutions. To know more about US Tech Solutions, please visit *********************** (********************************** . US Tech Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Woven by Toyota is enabling Toyota's once-in-a-century transformation into a mobility company. Inspired by a legacy of innovating for the benefit of others, our mission is to challenge the current state of mobility through human-centric innovation - expanding what “mobility” means and how it serves society. Our work centers on four pillars: AD/ADAS, our autonomous driving and advanced driver assist technologies; Arene, our software development platform for software-defined vehicles; Woven City, a test course for mobility; and Cloud & AI, the digital infrastructure powering our collaborative foundation. Business-critical functions empower these teams to execute, and together, we're working toward one bold goal: a world with zero accidents and enhanced well-being for all. TEAMThe security team at Woven by Toyota is on the cutting edge of many challenging security problems.We identify emerging security threats in autonomous vehicles and help design more secure systems.We work closely with internal platform teams to provide a secure development environment through tooling and automation, allowing developers to innovate quickly without compromising security. WHO ARE WE LOOKING FOR?We are looking for a Senior Security Risk Technical Specialist to lead information security risk management engagements such as technical risk assessments pertaining to Woven by Toyota's businesses and engineering work. You will identify risks and vulnerabilities by working with diverse internal and external stakeholders of varied technical and business backgrounds. You will work with technical product teams on assessing any security risks and manage those risks through their lifecycle. You will be expected to work with both highly technical teams and senior management. While this is a risk assurance position, given the cutting edge nature of projects that we work on (IoT, autonomous driving, vehicle OS), we are seeking a candidate with strong technical insight. Woven by Toyota Security demands high standards, so a passion and discipline around security and delivery is critical. A high level of ownership and accountability is a must. In this role you will report to an engineering manager, in a hybrid capacity requiring your presence on-site three days per week.RESPONSIBILITIES Lead/perform risk assessment engagements for products (IoT, autonomous driving, AI etc), enterprise, and related information systems or processes. Manage technical, process and human related information security risks and ensure compliance for information security policies and regulatory requirements by conducting technical, procedural and operational review of business processes and system controls Communicate and escalate risk issues to the appropriate level and department from frontline teams to senior management Evaluate technology and business-related controls for integrating business and information system security and risk mitigation efforts for products and enterprise. Coordinate and validate business risk justification documents for internal and external governance programs Manage third party risk with both internal and external stakeholders MINIMUM QUALIFICATIONS Bachelor or Masters degree in Information Security and/or related field 6+ years experience in Information Security 3+ years technical security experience securing products incorporating emerging technologies like IoT, AI, Automotive operating systems 1+ year of experience within Information Risk Management, IT audit or Security Governance function 1+ year of experience with regulatory compliance and information security management frameworks (e.g., ISO27001/ISO27002, NIST CSF, CMMC) Experience in highly regulated industries, ideally with retail product exposure and impact Technical expertise in the security field and experience with security architecture and ability to challenge risk assessments on the technical side Experience with multiple risk assessment methods including threat modeling (STRIDE, etc) High level of independence and autonomy in leading and performing engagements, including conducting interviews, with a complex set of corporate stakeholders Experience in IT auditing and technical assessments of networks, operating systems, cloud environments, etc Excellent written and verbal communication skills and ability to adapt communication to the audience skillset and level of responsibilities NICE TO HAVES Japanese language proficiency 5+ years of technical security experience out of the required 6+ years of Information Security experience 3+ years of experience within Information Risk Management, IT audit or Security Governance function 3+ years of experience with regulatory compliance and information security management frameworks (e.g., ISO27001/ISO27002, NIST CSF, CMMC) 1+ year of development and coding experience ideally in IoT, AI, automotive OS Experience with compliance especially security and privacy regulations Experience building enterprise governance, risk, and compliance programs Hands-on experience in configuring and working with GRC tools Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and/or Certified Information Systems Auditor (CISA) WHAT WE OFFERWe are committed to creating a modern work environment that supports our employees and their loved ones. We offer many options of the best programs to allow you to do your most meaningful work and to help you shape the future of mobility.・Excellent health, wellness, dental and vision coverage・A rewarding 401k program・Flexible vacation policy・Family planning and care benefits Our Commitment・We are an equal opportunity employer and value diversity.・Any information we receive from you will be used only in the hiring and onboarding process. Please see our privacy notice for more details.

We are looking for a Privacy Risk & Assurance Analyst to serve as the operational engine of our Global Privacy Program. In this role, you will step into a clear and immediate mission: owning the day-to-day execution of our annual privacy risk assessments. This is a "bird's-eye view" opportunity where you will look across the entire enterprise, investigating how data flows through our global business units and ensuring our innovations remain trusted and secure. At Ford Motor Company, we are not just manufacturing vehicles; we are defining the future of connected mobility. As we evolve into a software-defined organization, the data we handle-from employee records to vehicle telematics is our most valuable asset. What You'll Do… * Lead the Assessment Lifecycle: Execute the annual privacy risk assessment process from start to finish. You will work with our Privacy Operations team and support the distribution of questionnaires to business units and track their completion across the global enterprise. * Privacy Program Effectiveness Testing: Lead the evaluation of the Privacy Program's effectiveness by conducting control testing to ensure key privacy controls effectively mitigate privacy risks, support compliance with legal requirements, and uphold our privacy promise, while also proactively analyzing new technological developments for potential impacts or improvements * First-Line Risk Analysis: Act as the primary quality filter. You will review incoming assessment responses and control testing results to identify inconsistencies, vague answers, or potential privacy risks that require deeper investigation. * Risk Register Management: maintain the "source of truth" for our privacy risks. You will ensure identified issues are documented, assigned to owners, and rigorously tracked through their remediation lifecycle. * Reporting & Intelligence: Assist in the creation of executive-level dashboards and reports that summarize our key themes, issues, and risk posture for Privacy Leadership, turning raw data into actionable compliance insights. What You'll Do… * Lead the Assessment Lifecycle: Execute the annual privacy risk assessment process from start to finish. You will work with our Privacy Operations team and support the distribution of questionnaires to business units and track their completion across the global enterprise. * Privacy Program Effectiveness Testing: Lead the evaluation of the Privacy Program's effectiveness by conducting control testing to ensure key privacy controls effectively mitigate privacy risks, support compliance with legal requirements, and uphold our privacy promise, while also proactively analyzing new technological developments for potential impacts or improvements * First-Line Risk Analysis: Act as the primary quality filter. You will review incoming assessment responses and control testing results to identify inconsistencies, vague answers, or potential privacy risks that require deeper investigation. * Risk Register Management: maintain the "source of truth" for our privacy risks. You will ensure identified issues are documented, assigned to owners, and rigorously tracked through their remediation lifecycle. * Reporting & Intelligence: Assist in the creation of executive-level dashboards and reports that summarize our key themes, issues, and risk posture for Privacy Leadership, turning raw data into actionable compliance insights.

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? The Ford Motor Credit Company team helps put people behind the wheels of great Ford and Lincoln vehicles. By partnering with dealerships, we provide financing, personalized service and professional expertise to thousands of dealers and millions of customers in over one hundred countries around the world. In this position... Ford Credit is undertaking a massive technology modernization, and at the heart of this transformation is a commitment to building a world-class, secure cloud environment. We are seeking a senior engineer to be a cornerstone of this initiative. This role will have the opportunity to help design, build, and secure our new Zero Trust environment in Google Cloud Platform (GCP). As a key member of our second line-of-defense security team, you will act as a trusted advisor and technical expert, partnering with development, operations, and architecture teams. You will have the autonomy and influence to embed security into the fabric of our applications and infrastructure, ensuring we are secure by design. If you are a hands-on builder who is passionate about proactive security and wants to make a tangible impact on a strategic, multi-year program, this is the role for you. You'll have... Bachelor's degree in computer science, information security, or a related technical field, or equivalent practical experience. 5+ years of progressive experience in application security, cloud security, or a similar security engineering role. Demonstrable expertise in securing applications and infrastructure within Google Cloud Platform (GCP). In-depth understanding of software development lifecycle (SDLC) principles and practices. Proven experience with vulnerability management, including scanning, analysis, prioritization, and remediation tracking. Strong knowledge of various security testing methodologies and tools Proficiency in at least one scripting language (e.g., Python, Go, Bash) for automation and tool development. Experience with containerization (Docker, Kubernetes) and serverless technologies. Excellent communication, collaboration, and problem-solving skills. Even better, you may have... Master's degree in a relevant technical field. Relevant industry certifications such as GCP Professional Cloud Security Engineer, CISSP, CCSP, CSSLP. Experience with Infrastructure as Code (IaC) security practices and tools (e.g., Terraform, Mondoo, Open Policy Agent). Knowledge of common security frameworks and compliance standards (e.g., NIST, ISO 27001, SOC 2, GDPR). Experience with security monitoring, logging, and alerting solutions in a cloud environment (e.g., GCP Security Command Center, Cloud Logging, Cloud Monitoring). You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including: Immediate medical, dental, vision and prescription drug coverage Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more Vehicle discount program for employees and family members and management leases Tuition assistance Established and active employee resource groups Paid time off for individual and team community service A generous schedule of paid holidays, including the week between Christmas and New Year's Day Paid time off and the option to purchase additional vacation time. For more information on salary and benefits, click here: ***************************** This position is a range of salary grades 6-8 . Visa sponsorship is not available for this position. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. This position is hybrid. Candidates who are in commuting distance to a Ford hub location may be required to be onsite four or more days per week. #LI-Hybrid #LI-FordCredit #LI-MK2 What you'll do... Cloud Security Strategy & Oversight: Partner with Architecture, Developer Experience (DevX), and Site Reliability Engineering (SRE) teams to shape and implement our GCP Zero-Trust security architecture. Provide expert oversight and validation of security controls, acting as a critical second-line partner to ensure our cloud environment is fundamentally secure. Drive the operationalization of Google's Security Command Center Enterprise (SCCE), turning its powerful features into a proactive threat detection and compliance engine. Technical Application & Cloud Security: Serve as the subject matter expert for securing containerized (Docker, Kubernetes) and serverless applications within GCP. Collaborate on best practices for the enforcement of security quality gates for Infrastructure as Code (IaC) and Policy as Code (PaC) implementations. Govern security controls within our CI/CD pipelines, overseeing and adjusting security gates to prevent vulnerabilities from reaching production. Mature and scale our application security tooling processes (Static and Dynamic Testing, Open-Source Software Scanning, secrets detection), translating raw findings into actionable risk intelligence for development teams. Develop and automate vulnerability management processes, using a risk-based approach to prioritize and drive remediation. Collaboration & Security Culture: Lead by influence, providing expert guidance on secure coding practices and modern security patterns to our engineering teams. Act as a key liaison for our bug bounty program, coordinating between vendors and internal teams to ensure swift resolution. Mentor and support our Security Advocate program, empowering them to elevate the security posture across the organization through awareness and training exercises. Collaborate effectively with cross-functional teams, including development, operations, compliance, and incident response.

We are looking for a Privacy Risk & Assurance Analyst to serve as the operational engine of our Global Privacy Program. In this role, you will step into a clear and immediate mission: owning the day-to-day execution of our annual privacy risk assessments. This is a "bird's-eye view" opportunity where you will look across the entire enterprise, investigating how data flows through our global business units and ensuring our innovations remain trusted and secure. **What You'll Do...** + Lead the Assessment Lifecycle: Execute the annual privacy risk assessment process from start to finish. You will work with our Privacy Operations team and support the distribution of questionnaires to business units and track their completion across the global enterprise. + Privacy Program Effectiveness Testing: Lead the evaluation of the Privacy Program's effectiveness by conducting control testing to ensure key privacy controls effectively mitigate privacy risks, support compliance with legal requirements, and uphold our privacy promise, while also proactively analyzing new technological developments for potential impacts or improvements + First-Line Risk Analysis: Act as the primary quality filter. You will review incoming assessment responses and control testing results to identify inconsistencies, vague answers, or potential privacy risks that require deeper investigation. + Risk Register Management: maintain the "source of truth" for our privacy risks. You will ensure identified issues are documented, assigned to owners, and rigorously tracked through their remediation lifecycle. + Reporting & Intelligence: Assist in the creation of executive-level dashboards and reports that summarize our key themes, issues, and risk posture for Privacy Leadership, turning raw data into actionable compliance insights. **You'll have...** + Bachelor's Degree in Business Administration, Accounting, Finance, Operations Management. + 5+ years of relevant professional experience in Compliance, Risk Management, Internal Audit, or Data Privacy (or an equivalent combination of education and experience). + Strong ability to analyze complex information, spot patterns, and pay close attention to detail. + Familiarity with fundamental privacy concepts, principles, and regulations (e.g., GDPR, CCPA/CPRA). + Ability to communicate complex risk concepts to non-technical stakeholders clearly. **Even better, you may have...** + Professional privacy or audit certifications such as CIPP (Certified Information Privacy Professional), CIPM (Certified Information Privacy Manager), or CISA (Certified Information Systems Auditor). + Direct experience conducting risk assessments, internal audits, or third-party risk reviews in a corporate setting. + Experience using GRC platforms (e.g., OneTrust, Archer, ServiceNow) to manage assessments and risk registers. + Previous experience working in a large-scale, complex global organization or Fortune 500 environment. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder...or all of the above? No matter what you choose, we offer a work life that works for you, including: + Immediate medical, dental, vision and prescription drug coverage + Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more + Family building benefits, including adoption and surrogacy expense reimbursement, fertility treatments, and more + Vehicle discount program for employees, family members and management leases + Tuition assistance + Established and active employee resource groups + Paid time off for individual and team community service + A generous schedule of paid holidays, including the week between Christmas and New Year's Day + Paid time off and the option to purchase additional vacation time. + This position is a salary grade 8. For more information on salary and benefits, click here: ***************************** Visa sponsorship is not available for this position. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. This position is hybrid. Candidates who are in commuting distance to a Ford hub location may be required to be onsite four or more days per week. \#LI-Hybrid \#LI-DH1 **Requisition ID** : 54895

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? The Enterprise Cyber Security Cloud Security team is responsible for working with other security and cloud services teams to ensure alignment and collaboration in securing Ford's public cloud infrastructure. The teams work closely together to identify security gaps in the cloud environments and address them. The Cloud Security team is responsible for identifying, evaluating, and recommending cloud security tools and functions to enhance security around Ford's public cloud. The team is also responsible for developing and managing the following Security Services in Ford's public cloud environments: - Cloud Security Automation Development - GCP/Azure Security Compliance - GCP VPC Service Control - GCP Cloud Armor/ Azure WAF You'll have... Bachelor's degree in Computer Science, Information Technology or related OR a combination of education and experience 5+ years of scripting and automation experience Proven experience in developing and implementing automation using scripting languages such as Python, PowerShell, or Go, particularly for API integrations, security tool orchestration, and custom audit scripts. Solid understanding and practical experience with Git and GitHub for version control, collaborative development, and security automation pipeline management. Familiarity with CI/CD pipelines and automated deployment tools (e.g., Jenkins, Azure DevOps, GitHub Actions) to integrate security automation into the software development lifecycle. Knowledge of Infrastructure-as-Code (IaC) principles and tools like Terraform. Strong knowledge of security best practices and guidelines (at the enterprise-level) related to GCP and Azure Cloud deployments as well as common web application frameworks Understand the functionality and secure usage of various GCP services: VPCs, IAM, security groups, compute engine, cloud storage, Security Command Center, VPC Service Control, Cloud DLP and Cloud Armor Customer focused and strong team orientation Self-starter and fast-learner Strong communication and interpersonal skills Strong problem solving and Analytical/Reasoning skills Strong drive for results and ability to work independently Demonstrated commitment to quality and project timing Familiarity with the agile project planning process and use of Rally. Document processes & procedures and developing other documentation. Even better, you may have... Understand the functionality and secure usage of various Azure services: Virtual Machines, Virtual Networks, Azure Active Directory, App Services, Azure SQL Databases, Storage Accounts, Kubernetes, Containers, Key vaults. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including: • Immediate medical, dental, vision and prescription drug coverage • Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more • Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more • Vehicle discount program for employees and family members and management leases • Tuition assistance • Established and active employee resource groups • Paid time off for individual and team community service • A generous schedule of paid holidays, including the week between Christmas and New Year's Day • Paid time off and the option to purchase additional vacation time. For a detailed look at our benefits, click here: ******************************* This position is a range of salary grades 7-8. Visa sponsorship is not available for this position. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. #LI-Hybrid What you'll do... Partner with other Cloud Security team members to identify and develop automation for security related workflows and audits (VPC SC, DLP, Exceptions, Org Policy, etc..). Lead evaluation and develop an understanding of tools needed to address security gaps. Lead/Collaborate with EPEO Services teams on security gap remediation.

Woven by Toyota is enabling Toyota's once-in-a-century transformation into a mobility company. Inspired by a legacy of innovating for the benefit of others, our mission is to challenge the current state of mobility through human-centric innovation - expanding what “mobility” means and how it serves society. Our work centers on four pillars: AD/ADAS, our autonomous driving and advanced driver assist technologies; Arene, our software development platform for software-defined vehicles; Woven City, a test course for mobility; and Cloud & AI, the digital infrastructure powering our collaborative foundation. Business-critical functions empower these teams to execute, and together, we're working toward one bold goal: a world with zero accidents and enhanced well-being for all. TEAMProduct IntegrityWe are the first line of defense for safety + security + quality of AD/ADAS software at Woven by Toyota. Partnering with feature, systems, safety, cybersecurity, and machine learning teams, we turn prototypes into production-intent, standards-compliant software that can be trusted on public roads. Our mandate flows directly from Woven's commitment to “zero accidents and enhanced well-being for all.” WHO WE ARE LOOKING FORA senior security engineer who makes “secure by design” the default. This is a senior individual contributor role with wide cross-functional visibility. Your work directly impacts the safety and trustworthiness of Woven's autonomous technology on public roads. You combine deep ISO/SAE 21434 know-how with pragmatic threat-modeling skills, embedding controls early and guiding teams to create strong cybersecurity cases, while keeping velocity high. You are an active enabler, whose primary mission is to empower teams to build resilient, production-ready software that protects our customers and our systems.RESPONSIBILITIES Own the cybersecurity framework for AD/ADAS software, from requirements to tests and incident-response deliverables. Drive threat analysis & risk assessments (TARA) and translate them into secure coding guidelines, checklists, and automated CI/CD gates. Generate and maintain cybersecurity plans, work products, and case artifacts required for production readiness. Serve as incident “first responder” and coordinate remediation across hardware, firmware, cloud, and software teams. MINIMUM QUALIFICATIONS Bachelor's or Master's in CS, EE, CE or related discipline. 5+ years in embedded or automotive product security in a production environment. Hands-on implementation of ISO/SAE 21434 or UNECE R155 cybersecurity management systems. Proven track record building threat models, secure code reviews, and penetration testing pipelines. Proficiency with C/C++, Python, and common vulnerability scanning & fuzzing tools (e.g., AFL++, QEMU, CodeQL). Ability to balance risk, compliance, and delivery speed in a fast-moving org. NICE TO HAVES GIAC (GPEN/GWEB) or CISSP, CEH certifications. Experience securing ML pipelines or autonomous-driving perception stacks. Knowledge of cloud security (AWS IoT, Kubernetes) and over-the-air update infrastructures. Participation in ISO 21434 standardization or open-source security communities. For positions based in Palo Alto, CA, the base pay for this position ranges from $140,000- $230,000 a year Your base salary is one part of your total compensation. We offer a base salary, short term and long term incentives, and a comprehensive benefits package. The total compensation offered to an employee will be dependent upon the individual's skills, experience, qualifications, location, and level. WHAT WE OFFERWe are committed to creating a modern work environment that supports our employees and their loved ones. We offer many options of the best programs to allow you to do your most meaningful work and to help you shape the future of mobility.・Excellent health, wellness, dental and vision coverage・A rewarding 401k program・Flexible vacation policy・Family planning and care benefits Our Commitment・We are an equal opportunity employer and value diversity.・Any information we receive from you will be used only in the hiring and onboarding process. Please see our privacy notice for more details.

We are looking for a Privacy Risk & Assurance Analyst to serve as the operational engine of our Global Privacy Program. In this role, you will step into a clear and immediate mission: owning the day-to-day execution of our annual privacy risk assessments. This is a "bird's-eye view" opportunity where you will look across the entire enterprise, investigating how data flows through our global business units and ensuring our innovations remain trusted and secure. You'll have... Bachelor's Degree in Business Administration, Accounting, Finance, Operations Management. 5+ years of relevant professional experience in Compliance, Risk Management, Internal Audit, or Data Privacy (or an equivalent combination of education and experience). Strong ability to analyze complex information, spot patterns, and pay close attention to detail. Familiarity with fundamental privacy concepts, principles, and regulations (e.g., GDPR, CCPA/CPRA). Ability to communicate complex risk concepts to non-technical stakeholders clearly. Even better, you may have... Professional privacy or audit certifications such as CIPP (Certified Information Privacy Professional), CIPM (Certified Information Privacy Manager), or CISA (Certified Information Systems Auditor). Direct experience conducting risk assessments, internal audits, or third-party risk reviews in a corporate setting. Experience using GRC platforms (e.g., OneTrust, Archer, ServiceNow) to manage assessments and risk registers. Previous experience working in a large-scale, complex global organization or Fortune 500 environment. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including: Immediate medical, dental, vision and prescription drug coverage Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more Family building benefits, including adoption and surrogacy expense reimbursement, fertility treatments, and more Vehicle discount program for employees, family members and management leases Tuition assistance Established and active employee resource groups Paid time off for individual and team community service A generous schedule of paid holidays, including the week between Christmas and New Year's Day Paid time off and the option to purchase additional vacation time. This position is a salary grade 8. For more information on salary and benefits, click here: ***************************** Visa sponsorship is not available for this position. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. This position is hybrid. Candidates who are in commuting distance to a Ford hub location may be required to be onsite four or more days per week. #LI-Hybrid #LI-DH1 What You'll Do… Lead the Assessment Lifecycle: Execute the annual privacy risk assessment process from start to finish. You will work with our Privacy Operations team and support the distribution of questionnaires to business units and track their completion across the global enterprise. Privacy Program Effectiveness Testing: Lead the evaluation of the Privacy Program's effectiveness by conducting control testing to ensure key privacy controls effectively mitigate privacy risks, support compliance with legal requirements, and uphold our privacy promise, while also proactively analyzing new technological developments for potential impacts or improvements First-Line Risk Analysis: Act as the primary quality filter. You will review incoming assessment responses and control testing results to identify inconsistencies, vague answers, or potential privacy risks that require deeper investigation. Risk Register Management: maintain the "source of truth" for our privacy risks. You will ensure identified issues are documented, assigned to owners, and rigorously tracked through their remediation lifecycle. Reporting & Intelligence: Assist in the creation of executive-level dashboards and reports that summarize our key themes, issues, and risk posture for Privacy Leadership, turning raw data into actionable compliance insights.

This position is for a Cyber Defense Center (CDC) Detection Analyst specializing in initial threat triage. A Detection Analyst involves swiftly assessing and prioritizing security incidents to determine their severity and potential impact. You will be responsible for promptly identifying and investigating various threats, initiating timely response actions, and escalating to appropriate teams for further investigation and/or remediation. This role is hybrid, with on-site work in Southeast Michigan. Candidates in Pacific or Mountain time zones may be considered for a fully remote arrangement to meet business needs. Additionally, candidates must be willing to work at least 1 weekend per calendar quarter. For those weeks, only when you're Shift Lead, you work 11am-8pm shift during Eastern Daylight Savings time and 10am-7pm shift during Eastern Standard time. Enterprise Technology plays a critical part in shaping the future of mobility. If you're looking for the chance to leverage advanced technology to redefine the transportation landscape, enhance the customer experience and improve people's lives, this is the opportunity for you. Join us and challenge your IT expertise and analytical skills to help create vehicles that are as smart as you are. Minimum Qualifications: Bachelor's degree in a computer related field 2+ years of experience with SIEM tools and/or reviewing system log files, data correlation, and analysis (i.e. firewall, network flow, system logs, IDS) 2+ years of experience in customer service including the resolution of escalations, incident handling, and response In depth knowledge of servers, clients, various computer peripherals, network and/or storage technologies with various operating systems including Windows, Linux, and Mac Experience in a fast paced, high stress, support environment, able to work with a sense of urgency and attention to detail Must work well with others including peers and end-users Strong interest in cyber security with an eagerness and willingness to learn Strong deductive reasoning, critical and analytical thinking, problem solving, and prioritization skills Disciplined approach utilized when completing work and adhering to procedure Strong oral and written communications skills - able and willing to communicate technical items in non-technical terms Demonstrate high level of independent initiative, drive for results and commitment to integrity Ability to concurrently work on multiple assignments/projects and complete on schedule with high quality Preferred Qualifications: 2+ years of Cyber Security experience 2+ years Cloud experience in Google Cloud Platform (GCP) or Microsoft Azure Experience applying Artificial Intelligence (AI) and Machine Learning (ML) to improve processes, decision-making, or analysis within your current job responsibilities Familiar with Ford Computing Infrastructure and application development life cycle (SDM) Scripting abilities (Python, PowerShell, Bash/Shell, SQL) GIAC, CEH, CISSP or other security credentials You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including: • Immediate medical, dental, vision and prescription drug coverage • Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more • Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more • Vehicle discount program for employees and family members and management leases • Tuition assistance • Established and active employee resource groups • Paid time off for individual and team community service • A generous schedule of paid holidays, including the week between Christmas and New Year's Day • Paid time off and the option to purchase additional vacation time. This position is a salary grade 6-8 For more information on salary and benefits, click here: ***************************** Visa sponsorship is not available for this position. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. This position is hybrid. Candidates who are in commuting distance to a Ford hub location may be required to be onsite four or more days per week. #LI-Hybrid #LI-GR What You'll Do: Perform initial triage of various security incidents to determine if a threat applies to Ford including phishing, malicious software, hostile probes, information theft, and misuse of computing facilities Conduct daily analysis on the aforementioned incidents using a range of tools such as SIEM, EDR, IDS/IPS, Cloud, and Sandbox analysis Collaborate with internal and customer teams to investigate and contain incidents Respond to cyber security queries received from Ford personnel Adhere to various playbooks/procedures to provide consistent and repeatable methods to resolve security incidents Effectively document investigation details for both technical and non-technical audiences Recognize attacker Tools, Techniques, and Procedures (TTPs) and Indicator of Compromises (IOCs) that apply to current and future investigations Support Shift Lead rotation at least once per calendar quarter Keeping up-to-date with emerging cybersecurity threats to proactively prevent potential attacks and improve Ford's cyber security posture Leverage AI-driven threat detection and analysis tools to enhance triage accuracy and accelerate identification of emerging attack patterns

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? As a key member of our Information Technology group, you'll play a critical part in shaping the future of mobility. If you're looking for the chance to leverage advanced technology to redefine the transportation landscape, enhance the customer experience and improve people's lives, this is the opportunity for you. Join us and challenge your IT expertise and analytical skills to help create vehicles that are as smart as you are! The Vehicle Cyber Security Systems Engineer will serve a key role in shaping the future of product development security for vehicles (e.g. Connected Vehicle, Autonomous Vehicle, Electric Vehicle, Ford Smart Mobility, and V2X Security). The engineer will work within cross functional team to do/support the following: At Ford Motor Company, we believe freedom of movement drives human progress. We also believe in providing you with the freedom to define and realize your dreams. With our incredible plans for the future of mobility, we have a wide variety of opportunities for you to accelerate your career potential as you help us define tomorrow's transportation. What you'll do... * Perform product Cyber Security assessments on projects of multiple Ford product lines * Compliance reviews on features, modules as defined in the Ford Cyber Security engineering process in compliance with ISO 21434, UNECE R155, UNECE WP.29 and any other required relevant global cyber security requirements, regulations. Using that understanding to standardize all business operations and establish clear, documented protocols. * Have the ability to review technical documentation to assess compliance. * Manage and apply cybersecurity requirements into product design and development life cycle from requirement to testing with required deliverables * Work with feature and ECU owners to manage the progression of each feature / ECU through development to ensure security by design from inception * Ensure features, components, systems are designed using robust engineering processes including threat analysis, risk assessment, adoption of security requirements, security audits, and vehicle ecosystem assessments * Develop and utilize global supplier expertise to meet cyber security expectations * Proficient in JIRA. Process, requirement improvement support, for future reference, particularly in the event of an audit by a regulatory agency. * Provide presentations to management (program milestones, security governance board, etc.) What you'll do... * Perform product Cyber Security assessments on projects of multiple Ford product lines * Compliance reviews on features, modules as defined in the Ford Cyber Security engineering process in compliance with ISO 21434, UNECE R155, UNECE WP.29 and any other required relevant global cyber security requirements, regulations. Using that understanding to standardize all business operations and establish clear, documented protocols. * Have the ability to review technical documentation to assess compliance. * Manage and apply cybersecurity requirements into product design and development life cycle from requirement to testing with required deliverables * Work with feature and ECU owners to manage the progression of each feature / ECU through development to ensure security by design from inception * Ensure features, components, systems are designed using robust engineering processes including threat analysis, risk assessment, adoption of security requirements, security audits, and vehicle ecosystem assessments * Develop and utilize global supplier expertise to meet cyber security expectations * Proficient in JIRA. Process, requirement improvement support, for future reference, particularly in the event of an audit by a regulatory agency. * Provide presentations to management (program milestones, security governance board, etc.)

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? As a key member of our Information Technology group, you'll play a critical part in shaping the future of mobility. If you're looking for the chance to leverage advanced technology to redefine the transportation landscape, enhance the customer experience and improve people's lives, this is the opportunity for you. Join us and challenge your IT expertise and analytical skills to help create vehicles that are as smart as you are! The Vehicle Cyber Security Systems Engineer will serve a key role in shaping the future of product development security for vehicles (e.g. Connected Vehicle, Autonomous Vehicle, Electric Vehicle, Ford Smart Mobility, and V2X Security). The engineer will work within cross functional team to do/support the following: You'll have... Bachelor's degree in Electrical Engineering, Computer Engineering, Software Engineering, Computer Science, or Cybersecurity OR a combination of education and experience 5+ years of experience with embedded and/or automotive systems 3+ years of experience with in-vehicle network architecture, modules, and protocols (CAN, etc.) Ability to develop and maintain engineering documentation including requirements, specifications, test plans, etc. Ability to work independently and collaboratively Strong communication and analytical skills Even better, you may have... Experience with Hardware Security Module (HSM) and Secure Hardware Extension (SHE) Experience with coding (i.e., C, C++, C# Python, Java, CAPL, JQL) Experience with JIRA and Kanban boards for project management Familiar with vehicle system (i.e., capabilities of ECUs on a vehicle) Familiar with automotive standards (i.e., ISO 14229-1, ISO 21434) Familiar with quality tools and methodologies (i.e., FMEA, DVP) Able to work following an agile methodology Knowledge of Ford's internal engineering systems and requirements Comfortable working in a fast-paced and innovative environment where problems are not always well-defined. Experience advocating and driving adoption of industry standard methodologies. Project management skills, including identifying and scheduling process steps, determining resources and staff required to successfully complete research projects. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including: • Immediate medical, dental, vision and prescription drug coverage • Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more • Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more • Vehicle discount program for employees and family members and management leases • Tuition assistance • Established and active employee resource groups • Paid time off for individual and team community service • A generous schedule of paid holidays, including the week between Christmas and New Year's Day • Paid time off and the option to purchase additional vacation time. For a detailed look at our benefits, click here: ******************************* This position is a range of salary grades 5-8. Visa sponsorship is not available for this position. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. #LI-Hybrid What you'll do... Perform product Cyber Security assessments on projects of multiple Ford product lines Compliance reviews on features, modules as defined in the Ford Cyber Security engineering process in compliance with ISO 21434, UNECE R155, UNECE WP.29 and any other required relevant global cyber security requirements, regulations. Using that understanding to standardize all business operations and establish clear, documented protocols. Have the ability to review technical documentation to assess compliance. Manage and apply cybersecurity requirements into product design and development life cycle from requirement to testing with required deliverables Work with feature and ECU owners to manage the progression of each feature / ECU through development to ensure security by design from inception Ensure features, components, systems are designed using robust engineering processes including threat analysis, risk assessment, adoption of security requirements, security audits, and vehicle ecosystem assessments Develop and utilize global supplier expertise to meet cyber security expectations Proficient in JIRA. Process, requirement improvement support, for future reference, particularly in the event of an audit by a regulatory agency. Provide presentations to management (program milestones, security governance board, etc.)

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? As a key member of our Information Technology group, you'll play a critical part in shaping the future of mobility. If you're looking for the chance to leverage advanced technology to redefine the transportation landscape, enhance the customer experience and improve people's lives, this is the opportunity for you. Join us and challenge your IT expertise and analytical skills to help create vehicles that are as smart as you are! The Vehicle Cyber Security Systems Engineer will serve a key role in shaping the future of product development security for vehicles (e.g. Connected Vehicle, Autonomous Vehicle, Electric Vehicle, Ford Smart Mobility, and V2X Security). The engineer will work within cross functional team to do/support the following: **What you'll do...** + Perform product Cyber Security assessments on projects of multiple Ford product lines + Compliance reviews on features, modules as defined in the Ford Cyber Security engineering process in compliance with ISO 21434, UNECE R155, UNECE WP.29 and any other required relevant global cyber security requirements, regulations. Using that understanding to standardize all business operations and establish clear, documented protocols. + Have the ability to review technical documentation to assess compliance. + Manage and apply cybersecurity requirements into product design and development life cycle from requirement to testing with required deliverables + Work with feature and ECU owners to manage the progression of each feature / ECU through development to ensure security by design from inception + Ensure features, components, systems are designed using robust engineering processes including threat analysis, risk assessment, adoption of security requirements, security audits, and vehicle ecosystem assessments + Develop and utilize global supplier expertise to meet cyber security expectations + Proficient in JIRA. Process, requirement improvement support, for future reference, particularly in the event of an audit by a regulatory agency. + Provide presentations to management (program milestones, security governance board, etc.) **You'll have...** + Bachelor's degree in Electrical Engineering, Computer Engineering, Software Engineering, Computer Science, or Cybersecurity OR a combination of education and experience + 5+ years of experience with embedded and/or automotive systems + 3+ years of experience with in-vehicle network architecture, modules, and protocols (CAN, etc.) + Ability to develop and maintain engineering documentation including requirements, specifications, test plans, etc. + Ability to work independently and collaboratively + Strong communication and analytical skills **Even better, you may have...** + Experience with Hardware Security Module (HSM) and Secure Hardware Extension (SHE) + Experience with coding (i.e., C, C++, C# Python, Java, CAPL, JQL) + Experience with JIRA and Kanban boards for project management + Familiar with vehicle system (i.e., capabilities of ECUs on a vehicle) + Familiar with automotive standards (i.e., ISO 14229-1, ISO 21434) + Familiar with quality tools and methodologies (i.e., FMEA, DVP) + Able to work following an agile methodology + Knowledge of Ford's internal engineering systems and requirements + Comfortable working in a fast-paced and innovative environment where problems are not always well-defined. + Experience advocating and driving adoption of industry standard methodologies. + Project management skills, including identifying and scheduling process steps, determining resources and staff required to successfully complete research projects. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder...or all of the above? No matter what you choose, we offer a work life that works for you, including: - Immediate medical, dental, vision and prescription drug coverage - Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more - Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more - Vehicle discount program for employees and family members and management leases - Tuition assistance - Established and active employee resource groups - Paid time off for individual and team community service - A generous schedule of paid holidays, including the week between Christmas and New Year's Day - Paid time off and the option to purchase additional vacation time. For a detailed look at our benefits, click here: ******************************* This position is a range of salary grades 5-8. **Visa sponsorship is not available for this position.** Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. \#LI-Hybrid **Requisition ID** : 51647

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? The Enterprise Cyber Security Cloud Security team is responsible for working with other security and cloud services teams to ensure alignment and collaboration in securing Ford's public cloud infrastructure. The teams work closely together to identify security gaps in the cloud environments and address them. The Cloud Security team is responsible for identifying, evaluating, and recommending cloud security tools and functions to enhance security around Ford's public cloud. The team is also responsible for developing and managing the following Security Services in Ford's public cloud environments: * Cloud Security Automation Development * GCP/Azure Security Compliance * GCP VPC Service Control * GCP Cloud Armor/ Azure WAF The Enterprise Cyber Security Cloud Security team is responsible for working with other security and cloud services teams to ensure alignment and collaboration in securing Ford's public cloud infrastructure. The teams work closely together to identify security gaps in the cloud environments and address them. What you'll do... * Partner with other Cloud Security team members to identify and develop automation for security related workflows and audits (VPC SC, DLP, Exceptions, Org Policy, etc..). * Lead evaluation and develop an understanding of tools needed to address security gaps. * Lead/Collaborate with EPEO Services teams on security gap remediation. What you'll do... * Partner with other Cloud Security team members to identify and develop automation for security related workflows and audits (VPC SC, DLP, Exceptions, Org Policy, etc..). * Lead evaluation and develop an understanding of tools needed to address security gaps. * Lead/Collaborate with EPEO Services teams on security gap remediation.