Enterprise Cyber Security Supervisor
Mexico City, MEX, Mexico
Ford Motor Company
Since 1903, we have helped to build a better world for the people and communities that we serve. Welcome to Ford Motor Company.Skillset required:
- Knowledge of cyber security framework and industry standards (NIST CSF, ISO27001/2, OWASP, etc.), IT Risk Assessment, Threat Modeling, Control Gap Management
- Assist teams in triaging and addressing security vulnerabilities
- Knowledge on best practices for IAM flows and grant types, OAuth2, OIDC and SAML standards
- Experience with API security best practices to protect sensitive data and services
- Knowledge and experience using crypto algorithms and functions to build secure solutions
- Familiarity and ability to explain common security flaws and ways to address them (e.g. OWASP Top 10)
- Experience mentoring and coaching team members to develop and acquire cyber skills
- Strong knowledge of DevSecOps, Agile Principles, and security policies.
Position responsibilities include:
- Providing policy and risk-based consultation to enterprise customers ensuring a robust cybersecurity posture for applications and services hosted on-premises, private cloud or SaaS.
- Evaluate security vulnerabilities, assess risk, and implement solutions to defend against threats to enterprise assets
- Performing control assessment for critical enterprise assets and SaaS solutions to ensure Ford data is adequately secured. Help business owners to assess the security posture of Outside Service Providers
- Collaborate with other cyber services to provide best-in-class consultation and support to enterprise customers.
- Reporting cyber security metrics by defining and tracking key performance indicators (KPIs)
- Establishing robust engagement and communication channels to provide timely and quality response
Qualifications required:
- Bachelor (undergraduate) degree in a relevant field (Computer Science, Software Engineer, Security, or others) OR an equivalent combination of education, training, and experience
- Experience leading a major work stream or regional program initiative, providing technical guidance and advice to ensure consistent deployment of solutions
- Minimum of 8 years of professional experience with any combination of at least two of the following technical disciplines: application security, DevSecOps methodologies, identity and access management, solutions architect, cloud security, software development / coding and IT infrastructure management.
- Cyber Security certifications (CISA, CISSP, ISO 27001 etc.) is desired
DISCLAIMER:
Ford Motor Company is an Equal Opportunity Employer, as we are committed with a diverse workforce, and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity and/or expression, status as a veteran and basis of disability.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile APIs Application security CISA CISSP Cloud Computer Science Crypto DevSecOps IAM ISO 27001 IT infrastructure KPIs NIST OWASP Risk assessment SaaS SAML Vulnerabilities
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs