IT Security and Compliance Analyst

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we’re all a part of something bigger than ourselves. Are you ready to change the way the world moves? Enterprise Technology plays a critical part in shaping the future of mobility. If you’re looking for the chance to leverage advanced technology to redefine the transportation landscape, enhance the customer experience and improve people’s lives, this is the opportunity for you. Join us and challenge your IT expertise and analytical skills to help create vehicles that are as smart as you are.

The Ford Credit IT Security and Compliance Analyst provides oversight of IT Security and controls, supports the IT compliance and regulatory requirements. You will play a key role in our Second Line of Defense, supporting our IT Compliance and Regulatory requirements. This position is responsible for providing support for internal and external audits, engage with business to conduct risk assessments, and remediate gaps. Ford Credit Technology is on an exciting transformation journey, and you will have a great opportunity to help us transform the Security area as well.  

MAJOR RESPONSIBILITIES INCLUDE

• Partner with Credit PDOs to Implement and manage IT Controls
• Provide Security & Control consulting to PDO teams
• GAO and Third-Party Audit Support
• Support Credit Internal Controls with IT related controls and deficiencies
• Major and Minor Audit Comment and OICs Management (development, implementation, and sustainability of Control Improvement Plans)
• Conduct reviews of recently Identified IT and IT related GAO Major Comments
• Support PDO teams with Detailed Risk Assessments and Threat Modeling 
• Support Vendor Management and Business Owners with due diligence for supplier onboarding
• Support Credit Privacy and Compliance Attorneys with IT related regulatory requirements
• Support Third Party consulting engagements
• Maintain accurate Rally User Stories and Backlog

Essential skills

• BA or BS degree (preferably in Cybersecurity, Computer Science, Information System/Management, or Computer Engineering). 
• Strong knowledge of Ford and Industry standard IT Controls and best security practices
• General understanding of Ford Credit & Treasury operations (Originations, Servicing, Securitization, Collections)
• Solid understanding of corporate policies (ISP, Finance Manual, Corporate Directives, etc.)
• Understand risk and implement mitigating controls
• Capable and comfortable working autonomously
• Strong leadership skills and results oriented
• Demonstrates ability to work in white space
• Continuous controls process improvement mentality
• Integrity - ability to "stand ground" for correct action and do the right thing
• Demonstrated ability to take ownership and accountability of all work and responsibilities
• Strong communication skills (written and oral)
• Excellent interpersonal, collaborative and team building skills

Desired experience

• GAO IT Auditor
• Cyber Security Services Advisor (formerly Security Controls Champion or Security Controls Practitioner)
• Preferred candidate should have a proven track record in IT security and controls, demonstrated strong controls mindset
• Experience in one or more of the following areas: Security services, Database Administration, cloud security, Application development or support and Networks
• Industry Certifications a plus (e.g., CISA, CRISC, CISM, CISSP)

You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply!

As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you