Cyber Security Engineer

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves, and build a better world – together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves?

Do you believe security is the foundation of resilient technology? We do! Protecting and future-proofing Ford's enterprise technology environments requires rigorous vulnerability intelligence, scalable risk controls, and engineers who can translate complex threat landscapes into practical, actionable safeguards. That's where our Cybersecurity Risk Engineering team makes an impact. We partner with platform, cloud, and SRE teams to reduce exposure, harden infrastructure, and keep Ford's systems resilient. Join us and use your security engineering expertise to drive risk-reducing outcomes at enterprise scale.

We are seeking a Risk Engineer with strong technical acumen and practical experience in the vulnerability management space to design, prioritize, and enable risk-reducing technical solutions across complex cloud and enterprise environments. As a Cyber Security Engineer, you should have a strong technical background and demonstrate experience in vulnerability management, security architecture, and control engineering. This role emphasizes solution engineering over process engineering—using vulnerability intelligence, risk frameworks, policies, and controls as inputs to architect practical, automatable, and scalable technical safeguards.

Responsibilities include the end-to-end engineering of vulnerability risk solutions, from exposure discovery through remediation workflow design and executive risk reporting, working within mixed-skill teams and in close partnership with platform, cloud, security, and SRE stakeholders. By leveraging deep technical expertise and a risk-informed engineering mindset, you will deliver impactful security solutions that reduce operational, cyber, and resilience risk at scale.

• Engineer technical vulnerability risk solutions that reduce operational, cyber, and resilience risk through architecture, automation, and control design.
• Translate vulnerability risk requirements, policies, and standards into implementable technical patterns, guardrails, and reference architectures.
• Prioritize and influence solution design decisions based on risk impact, blast radius, and recovery dependencies.
• Partner with platform, cloud, security, and SRE teams to embed risk controls directly into infrastructure and pipelines.
• Evaluate control effectiveness using technical signals and evidence, not just procedural compliance.
• Support initiatives such as vulnerability discovery, exposure analysis, remediation workflow design, secure cloud architectures, isolated recovery environments, identity and access hardening, and infrastructure resilience.
• Provide technical guidance on risk tradeoffs, recovery sequencing, and dependency-aware system design.
• Work across broad vulnerability management capabilities, including scanners, asset and exposure data sources, prioritization models, remediation tracking platforms, exception workflows, and executive risk reporting.
• Contribute to lightweight process definition where needed—but always in service of enabling better technical outcomes.

We recognize that no one person will embody every single quality or skill listed below. If you are passionate about cybersecurity and have a strong foundation in vulnerability management and security engineering, we encourage you to apply.

Education:

• Bachelor's Degree in Computer Science, Cybersecurity, Information Systems, Software Engineering, or a related technical field
• Master's Degree in a related field is preferred

Experience:

• 7+ years in engineering, security engineering, platform engineering, SRE, vulnerability management, or technical risk roles
• Proven ability to design and influence technical solutions across cross-functional teams
• Hands-on experience with vulnerability management practices, including discovery, prioritization, remediation coordination, exception handling, and risk reporting
• Demonstrated problem-solving skills, analytical thinking, and the ability to explain complex technical risk concepts to non-technical audiences without losing fidelity
• Ability to work independently and as part of a team, operating comfortably between engineering teams and risk stakeholders

Required Technical Experience:

• Strong understanding of how risk manifests in distributed systems, cloud platforms, and automation environments
• Infrastructure as Code experience using Terraform
• Configuration management and automation experience using Ansible
• Programming and scripting proficiency in Python
• Hands-on experience with cloud platforms, specifically Google Cloud Platform (GCP) and/or Azure
• Ability to design and implement scalable, automatable security controls and remediation workflows across enterprise technology stacks

Preferred Experience:

• Experience with CI/CD pipelines and policy-as-code implementation
• Knowledge of cloud IAM, networking, and control plane security
• Experience with backup, recovery, and resilience architectures
• Familiarity with observability, logging, and evidence automation for control validation
• Experience with vulnerability scanners, exposure management platforms, and remediation workflow tooling
• Knowledge of ITIL-based IT Service Management (ITSM) practices
• Familiarity with Agentic AI Frameworks for security automation use cases

You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply!

As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including:

• Immediate medical, dental, and prescription drug coverage

• Flexible family care, parental leave, new parent ramp-up programs, subsidized back-up child care and more

• Vehicle discount program for employees and family members, and management leases

• Tuition assistance

• Established and active employee resource groups

• Paid time off for individual and team community service

• A generous schedule of paid holidays, including the week between Christmas and New Year’s Day

• Paid time off and the option to purchase additional vacation time.

For a detailed look at our benefits, click here: Benefit Summary 

This position is a salary grade 7 or 8. 

This position is a salary grade salary grade 7 or 8 and ranges from $99,600-$192,900.

Final determination of salary grade will be based on candidate's skills and experience, and base salary will be set within the applicable range according to job scope, responsibility and competitive market value.

*Visa Sponsorship is not provided for this role*

Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire.

We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, If you need a reasonable accommodation for the online application process due to a disability, please call 1-888-336-0660.
 

#LI-Remote

#LI-GH2