VG
Senior Consultant focused on ISMS, BCM, and cybersecurity compliance at VICCON GmbH. Leading projects and collaborating with clients to enhance their information security and resilience.
About the role
- Senior Security Engineer protecting Ford’s Connected Vehicle Cloud with high security standards. Collaborating with Cloud Engineering teams and ensuring secure, reliable product delivery.
Responsibilities
- Architect and implement robust application security controls throughout the software development process across 200+ external and internal services.
- Ensure the delivery of secure, reliable, and confidential products and services through adherence to best practices.
- Monitor cloud environments for security threats, vulnerabilities and suspicious activities.
- Investigate and respond to Security incidents and alerts in real-time.
- Maintain vulnerability identification, assessment, and remediation across infrastructure and code.
- Work with Engineering development teams to remediate vulnerabilities promptly.
- Integrate security guardrails into build and deployment processes to prevent vulnerable code from reaching production.
- Translate Engineering and Security needs into clear, well-defined functional and technical requirements backed by data analysis and deep understanding of the platform security landscape.
- Collaborate with cross-functional teams to improve the security posture of Connected Vehicle Cloud and design Security into platforms and products.
- Document Security Procedures, playbooks and guidelines.
- Ensure alignment with internal Ford policies, and industry regulations and standards (adherence to relevant security framework such as SOC2, ISO27001).
- Develop and manage key security operational metrics, ensuring their success and implementing action plans, including necessary remediations.
Requirements
- Bachelor's degree or equivalent combination of relevant education and experience.
- 6 years experience in a security engineering role, with experience in implementing effective vulnerability management strategies to mitigate risks.
- 3 years experience applied cloud security knowledge of AWS, GCP
- 1 year experience with automation and scripting using languages such as Python, Go, and Bash (shell scripting)
- 1 year experience in security standards and compliance regulations such as ISO 27001, SOC2, and GDPR
- Even better, you may have…
- Experience security in IOT and Device management systems
- Experience with PKI and Certificate services.
- Strong analytical skills to produce and interpret security data and trends
- Demonstrated experience securing CI/CD pipelines in Kubernetes environments.
Benefits
- Immediate medical, dental, vision and prescription drug coverage
- Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more
- Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more
- Vehicle discount program for employees and family members and management leases
- Tuition assistance
- Established and active employee resource groups
- Paid time off for individual and team community service
- A generous schedule of paid holidays, including the week between Christmas and New Year’s Day
- Paid time off and the option to purchase additional vacation time.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
GSS Officer at Itad supporting safety, security, and travel policies. Overseeing risk management and collaborating with project teams for operational support.
Install and manage fall protection systems at height, ensuring compliance with safety standards. Leadership required in overseeing teams and project delivery at construction sites.
Security Design Lead in Rabobank's cybersecurity team, designing secure technology solutions for food & agribusiness banking. Collaborating across teams to ensure robust security implementations.
Identity Security Posture Management Specialist enhancing identity security posture at Kemper Insurance. Collaborates across teams to tackle identity risks and compliance challenges in a high - performing culture.
Principal Architect developing cybersecurity strategy for Ensemble's technology - enabled revenue cycle management solutions. Focus on securing cloud architectures and ensuring information assurance in healthcare.
Senior Manager overseeing Security Risk Management at First American. Leading enterprise policies, third - party vendor security, and security strategy execution.
Zscaler Engineer responsible for maintaining cybersecurity tools and developing integrations at HP. Collaborating across teams to enhance data loss prevention strategies and monitor industry threats.
Designer developing comprehensive application solutions for security systems at Johnson Controls. Collaborating on technical sales support and large - scale integrated electronic security systems.
Analyst role supporting Epic Security & Configuration at Acrisure, ensuring application functionality and troubleshooting issues. Collaborating with teams for configuration and security in Applied Epic systems.