IAM Engineer, Ford Energy

About The Position

Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, Computer Engineering, or Information Technology or 5+ years of experience in Identity and Access Management (IAM) engineering or architecture.
• Practical experience with enterprise IAM/IdP platforms (e.g., Okta, Ping Identity, Microsoft Entra ID/Azure AD) and PAM solutions (e.g., CyberArk, HashiCorp Vault).
• Demonstrated experience with OAuth 2.0, OIDC, SAML, LDAP, and Active Directory structures.
• Strong communication skills with the ability to navigate cross-functional engineering and IT teams.

Nice To Haves

• Master’s degree in a relevant technical field.
• Direct experience implementing IAM in industrial control systems (ICS), SCADA, or utility-scale OT environments.
• Familiarity with NERC CIP (particularly CIP-004 and CIP-007 access control standards) or NIST SP 800-53/800-82.
• Experience with API gateway security, microservices security, and securing IoT/edge device identities (PKI, certificates).
• Relevant professional certifications (e.g., CISSP, CISM, Certified Identity and Access Manager - CIAM, or vendor-specific IAM certs).

Responsibilities

• Lead the technical design, deployment, and local governance of IAM frameworks for Ford Energy, collaborating with Enterprise Architects for final design approval.
• Define and maintain testable IAM requirements for cloud platforms, SCADA systems, and edge devices, ensuring traceability from concept to deployment.
• Establish secure identity lifecycle processes (provisioning, de-provisioning, and transfer) for internal employees, external partners, and utility customers.
• Implement and secure modern authentication (MFA, SSO, Passwordless) and federation standards (OIDC, OAuth 2.0, SAML 2.0).
• Design secure machine-to-machine (M2M) authentication and API authorization mechanisms for connected BESS assets and grid controllers.
• Deploy and manage Privileged Access Management (PAM) solutions to secure high-risk administrative access to critical infrastructure.
• Ensure IAM architectures comply with industrial standards such as NERC CIP, NIST SP 800-82, and Ford’s global cybersecurity policies.
• Lead access reviews, vulnerability assessments, and remediation plans for IAM-related risks.
• Develop technical security case materials, IAM documentation, and evidence for design gates, audits, and compliance reviews.
• Collaborate with software, cloud platform, OT network, and physical security teams to align identity strategies across IT and OT environments.
• Partner with global suppliers and Ford Enterprise IAM teams to integrate Ford Energy platforms with corporate identity providers.
• Communicate identity risks, access governance strategies, and technical recommendations to executive-level stakeholders.

Benefits

• Immediate medical, dental, vision and prescription drug coverage
• Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more
• Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more
• Vehicle discount program for employees and family members and management leases
• Tuition assistance
• Established and active employee resource groups
• Paid time off for individual and team community service
• A generous schedule of paid holidays, including the week between Christmas and New Year’s Day
• Paid time off and the option to purchase additional vacation time.