"Alerted.org

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we’re all a part of something bigger than ourselves. Are you ready to change the way the world moves?

In today’s rapidly evolving digital landscape, cloud security stands as a key component to organizational success. It is paramount that we safeguard data, ensure compliance and mitigate risk as workloads are migrated to Cloud and Software-as-a-Service (SaaS) providers.

We are seeking a Director - Cloud Security who will lead a team of security professionals providing strategic leadership and oversight for our comprehensive public cloud infrastructure and Software-as-a-Service (SaaS) security programs.

This critical role will be responsible for defining and executing a unified security strategy across our multi-cloud environments (Microsoft Azure, Google Cloud Platform) and extensive SaaS application portfolio.

The ideal candidate will possess a deep understanding of both cloud infrastructure and SaaS security domains, exceptional leadership capabilities, and a proven track record of building and managing high-performing security teams. This role will ensure our Public Cloud Infrastructure and SaaS ecosystems are secure, compliant, and resilient against evolving threats, aligning security initiatives with broader business objectives.

What you'll do...

* Strategic Leadership & Program Management: Define, develop, and implement a holistic enterprise public cloud infrastructure and SaaS security strategy, roadmap, and security architecture that integrates seamlessly across all platforms and applications. This includes partnering with various teams to align on the long-term technology roadmap for security products and features.

* Team Development & Oversight: Supervise, mentor, and develop a team of security managers and their respective teams (Public Cloud Security Infrastructure Manager, SaaS Security Manager, and their direct reports), fostering professional growth and maintaining high performance across both cloud and SaaS security functions.

* Unified Security Posture: Drive the implementation and management of robust security controls and policies, ensuring a consistent and effective security posture across Azure, GCP, and all SaaS applications. This includes evaluating, integrating, and managing next-generation security tools and technologies specific to cloud ecosystems.

* Compliance & Governance: Oversee compliance with all relevant regulatory and internal requirements, including NIST 800-53, ISO 27001, SOC 2, GDPR, and CCPA, across both cloud infrastructure and SaaS applications. Develop and implement security controls for IaaS, PaaS, and SaaS environments.

* Risk Management: Establish and manage comprehensive risk assessment and management programs for cloud infrastructure and SaaS applications, prioritizing remediation efforts based on risk, business impact, and threat intelligence. This includes overseeing third-party SaaS vendor risk management, due diligence, and continuous monitoring of vendor security posture.

* Incident Response Oversight: Partner with Cyber Defense leadership to align on incident response goals, requirements and data to ensure effective containment, analysis, and resolution. Assist with additional Response activities when requested by Cyber Defense leadership.

* Cross-functional Collaboration: Collaborate extensively with engineering, operations, procurement, legal, GRC, business units, and audit teams to embed security throughout the entire lifecycle of cloud services and SaaS applications, from selection and design to deployment and offboarding.

* Reporting & Communication: Develop and present comprehensive reports on the enterprise cloud and SaaS security posture, compliance status, vendor risk, and key security initiatives to executive leadership and relevant governance forums.

* Innovation & Threat Intelligence: Stay abreast of the latest security threats, vulnerabilities, emerging technologies, and best practices relevant to multi-cloud environments (Azure, GCP) and the evolving SaaS landscape. Evaluate and recommend new cloud security technologies and practices.

You'll have...

* Bachelor's degree in Computer Science, Information Technology, Software Engineering, or a related field (or a combination of education and experience).

* 10+ years of experience in information security, with at least 5 years in a leadership capacity managing other security professionals or leading large security programs.

* Demonstrable hands-on experience securing production infrastructure in public clouds (Azure, GCP preferred) and managing security for a diverse portfolio of production SaaS applications.

* Strong understanding of core cloud security concepts, including Identity and Access Management (IAM), network security, data protection, logging, monitoring, infrastructure security, and the shared responsibility model.

* Extensive hands-on experience with cloud security tools and services native to Azure and GCP (e.g., Defender for Cloud, Sentinel, Security Command Center, VPC-SC) and SaaS security tools (e.g., SSPM, CASB, vendor risk management platforms).

* Proven experience designing, implementing, and managing security perimeters and controls across complex cloud and SaaS environments.

* Direct experience interpreting, implementing, and documenting controls based on various security frameworks, including NIST 800-53, ISO 27001, SOC 2, GDPR, and CCPA.

* Exceptional leadership, communication, and interpersonal skills, with the ability to effectively articulate complex technical concepts and security risks to diverse technical and executive audiences.

Even better, you may have...

* Master's degree in a relevant field.

* Professional certifications such as CISSP, CISM, CCSP, or equivalent cloud-specific certifications (e.g., Azure Security Engineer Associate, Google Cloud Professional Cloud Security Engineer).

* Experience with Infrastructure as Code (IaC) security practices using tools such as Terraform and integrating security into CI/CD pipelines (DevSecOps).

* Familiarity with secure access service edge (SASE) or zero trust network access (ZTNA) solutions for secure connectivity to cloud and SaaS services.

* Experience in a highly regulated industry or a large, global enterprise environment.

You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply!

As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including:

• Immediate medical, dental, vision and prescription drug coverage

• Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more

• Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more

• Vehicle discount program for employees and family members and management leases

• Tuition assistance

• Established and active employee resource groups

• Paid time off for individual and team community service

• A generous schedule of paid holidays, including the week between Christmas and New Year’s Day

• Paid time off and the option to purchase additional vacation time.

For a detailed look at our benefits, click here:

https://fordcareers.co/LL5NonHTHD

This position is a range of salary grade LL5.

SOUTHEAST MI RESIDENTS: This role is posted as remote unless you reside within 50 miles of Dearborn, MI—in which case we request on-site presence up to 4 days a week.

Visa sponsorship is not available for this position.

Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire.

We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call 1-888-336-0660.

\#LI-Remote

**Requisition ID** : 53886