# Product Cybersecurity Manager, Ford Energy **Company**: Ford Motor Company **Location**: Dearborn, MI **Work arrangement**: hybrid **Experience**: senior **Job type**: full-time **Salary**: $115,500-$218,100 **Category**: Engineering **Industry**: Automotive **Wikidata**: https://www.wikidata.org/wiki/Q44294 **Apply**: https://efds.fa.em5.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX_1/job/65356?utm_source=yubhub.co&utm_medium=jobs_feed&utm_campaign=apply **Canonical**: https://yubhub.co/jobs/job_34a2aa34-c90 ## Description We are seeking a Product Cybersecurity Manager with deep technical expertise in firmware, hardware, and penetration testing. In this role, you will implement, validate, and optimize security controls across the entire lifecycle of our BESS portfolio. You will support immediate product security initiatives,ensuring robust defense-in-depth from early-stage hardware development through deployment,and serve as the senior technical security lead for our BESS product portfolio. ### Responsibilities #### End-to-End Security Architecture & Engineering - Lifecycle Integration: Lead and integrate cybersecurity engineering across the entire battery storage system lifecycle, including design, manufacturing, deployment, operations, and decommissioning. - Hardware & Firmware Hardening: Define, implement, and audit security controls at the silicon, microcontroller, and firmware levels, including secure boot, cryptographic key management, secure storage, and Hardware Security Modules (HSMs). - Technical Innovation: Develop solutions to unusually complex cyber-physical security problems that require a high degree of ingenuity and creativity. Establish engineering precedents and design patterns that will serve as the template for future product lines and support the long-term reputation of the organization. #### Threat Modeling & Offensive Security Validation - Cyber-Physical Threat Modeling: Lead threat modeling (e.g., STRIDE) and risk assessments to resolve highly ambiguous, large-scale technical challenges across battery management systems (BMS), power conversion systems (PCS), and overall BESS architectures. Develop novel, high-performance, and resilient security frameworks under extreme hardware and operational constraints. - Active Penetration Testing: Plan, coordinate, and execute hands-on penetration testing and vulnerability assessments on embedded hardware, firmware, and communication protocols (e.g., Modbus, CAN, DNP3, and TCP/IP). #### Governance, Compliance & Incident Management - Standards & Framework Alignment: Align product engineering processes and security controls with relevant industry standards and frameworks (e.g., IEC 62443, ISO 21434, UL 2900, and NIST SP 800-82). - Project Risk Governance: Establish and manage cybersecurity work packages, compile risk registers, and represent cybersecurity requirements in stage-gate reviews and engineering boards. - Incident Response Operations: Develop and support security incident response playbooks for fielded BESS assets, and manage coordinated vulnerability disclosure for discovered firmware/hardware bugs. #### Cross-Functional Collaboration & Technical Leadership - Consensus Building: Drive technical security direction and best practices across multiple engineering teams (hardware, firmware, cloud, and systems), building architectural consensus for end-to-end product security. - Talent Mentorship: Actively mentor and guide peers to elevate the collective technical cybersecurity capabilities of the organization. ### Qualifications - Experience: A minimum of 5–7 years of experience in Embedded Systems Security, Product Cybersecurity, or Security Engineering, with a proven track record in a product lead or senior technical capacity. - Education: Bachelor’s or Master’s degree in Computer Engineering, Electrical Engineering, Computer Science, Cybersecurity, or a related technical field. - Hardware & Firmware Security: Expert-level proficiency in secure coding practices (C/C++ or Rust), hardware architectures, secure boot, JTAG debugging protection, and cryptographic implementations. - Penetration Testing: Strong hands-on experience performing penetration testing on physical hardware interfaces (e.g., UART, JTAG, SPI, and I2C) and industrial/automotive network protocols (e.g., CAN, Modbus, and DNP3). - Threat Modeling & Risk Assessment: Demonstrated experience conducting threat modeling and risk assessments for complex cyber-physical or industrial control systems (ICS). - Standards & Regulations: Deep familiarity with cybersecurity frameworks and standards relevant to embedded systems and critical infrastructure (e.g., IEC 62443, ISO 21434, or UL 2900). ### Preferred - Experience in Renewable Energy, Automotive (EV/BMS), or Semiconductor industries. - Proven ability to serve as a prime consultant and spokesperson on advanced cybersecurity initiatives, act as a trusted advisor to senior management on long-range security roadmaps, and communicate complex technical risks clearly to executive leadership and board members. - Familiarity with export control regulations and international intellectual property protection. - Relevant industry certifications such as CISSP, CSSLP, CEH, GPEN, GICSP, or OSCP. ### Leadership Attributes - Visionary Strategic Thinker: Able to navigate rapidly evolving global energy storage markets and emerging cyber threat landscapes. - Collaborative Leader: Highly skilled at building consensus across multi-disciplinary engineering domains and translating complex technical security objectives into actionable engineering milestones. ### Location & Travel - Location: Dearborn, MI. This position is hybrid-friendly for candidates with a proven ability to deliver results in a flexible environment. - Travel Expectations: Occasional travel may be required to support system deployments or vendor onsite sessions. ### Benefits - Immediate medical, dental, vision and prescription drug coverage - Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more - Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more - Vehicle discount program for employees and family members and management leases - Tuition assistance - Established and active employee resource groups - Paid time off for individual and team community service - A generous schedule of paid holidays, including the week between Christmas and New Year’s Day - Paid time off and the option to purchase additional vacation time. ## Skills ### Required - Embedded Systems Security - Product Cybersecurity - Security Engineering - Secure Coding Practices - Hardware Architectures - Secure Boot - JTAG Debugging Protection - Cryptographic Implementations - Penetration Testing - Threat Modeling - Risk Assessments - Cyber-Physical Threat Modeling - STRIDE - IEC 62443 - ISO 21434 - UL 2900 - NIST SP 800-82 ### Nice to have - Renewable Energy - Automotive (EV/BMS) - Semiconductor Industries - Export Control Regulations - International Intellectual Property Protection - CISSP - CSSLP - CEH - GPEN - GICSP - OSCP --- Source: [Apply at efds.fa.em5.oraclecloud.com](https://efds.fa.em5.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX_1/job/65356?utm_source=yubhub.co&utm_medium=jobs_feed&utm_campaign=apply)