Product Cybersecurity Manager, Ford Energy

About The Position

Requirements

• A minimum of 5–7 years of experience in Embedded Systems Security, Product Cybersecurity, or Security Engineering, with a proven track record in a product lead or senior technical capacity.
• Bachelor’s or Master’s degree in Computer Engineering, Electrical Engineering, Computer Science, Cybersecurity, or a related technical field.
• Expert-level proficiency in secure coding practices (C/C++ or Rust), hardware architectures, secure boot, JTAG debugging protection, and cryptographic implementations.
• Strong hands-on experience performing penetration testing on physical hardware interfaces (e.g., UART, JTAG, SPI, and I2C) and industrial/automotive network protocols (e.g., CAN, Modbus, and DNP3).
• Demonstrated experience conducting threat modeling and risk assessments for complex cyber-physical or industrial control systems (ICS).
• Deep familiarity with cybersecurity frameworks and standards relevant to embedded systems and critical infrastructure (e.g., IEC 62443, ISO 21434, or UL 2900).

Nice To Haves

• Experience in Renewable Energy, Automotive (EV/BMS), or Semiconductor industries.
• Proven ability to serve as a prime consultant and spokesperson on advanced cybersecurity initiatives, act as a trusted advisor to senior management on long-range security roadmaps, and communicate complex technical risks clearly to executive leadership and board members.
• Familiarity with export control regulations and international intellectual property protection.
• Relevant industry certifications such as CISSP, CSSLP, CEH, GPEN, GICSP, or OSCP.

Responsibilities

• Lead and integrate cybersecurity engineering across the entire battery storage system lifecycle, including design, manufacturing, deployment, operations, and decommissioning.
• Define, implement, and audit security controls at the silicon, microcontroller, and firmware levels, including secure boot, cryptographic key management, secure storage, and Hardware Security Modules (HSMs).
• Develop solutions to unusually complex cyber-physical security problems that require a high degree of ingenuity and creativity. Establish engineering precedents and design patterns that will serve as the template for future product lines and support the long-term reputation of the organization.
• Lead threat modeling (e.g., STRIDE) and risk assessments to resolve highly ambiguous, large-scale technical challenges across battery management systems (BMS), power conversion systems (PCS), and overall BESS architectures. Develop novel, high-performance, and resilient security frameworks under extreme hardware and operational constraints.
• Plan, coordinate, and execute hands-on penetration testing and vulnerability assessments on embedded hardware, firmware, and communication protocols (e.g., Modbus, CAN, DNP3, and TCP/IP).
• Align product engineering processes and security controls with relevant industry standards and frameworks (e.g., IEC 62443, ISO 21434, UL 2900, and NIST SP 800-82).
• Establish and manage cybersecurity work packages, compile risk registers, and represent cybersecurity requirements in stage-gate reviews and engineering boards.
• Develop and support security incident response playbooks for fielded BESS assets, and manage coordinated vulnerability disclosure for discovered firmware/hardware bugs.
• Drive technical security direction and best practices across multiple engineering teams (hardware, firmware, cloud, and systems), building architectural consensus for end-to-end product security.
• Actively mentor and guide peers to elevate the collective technical cybersecurity capabilities of the organization.

Benefits

• Immediate medical, dental, vision and prescription drug coverage
• Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more
• Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more
• Vehicle discount program for employees and family members and management leases
• Tuition assistance
• Established and active employee resource groups
• Paid time off for individual and team community service
• A generous schedule of paid holidays, including the week between Christmas and New Year’s Day
• Paid time off and the option to purchase additional vacation time.