Ford Motor CompanyRemote
Electric Vehicle Infrastructure Cybersecurity Engineer
United States of America
Full Time
2 weeks ago
H1B Sponsored
Key skills
PythonC++CGoRCommunication
About this role
Ford Motor Company is a global leader in the automotive industry, committed to innovation and sustainability. The EV Infrastructure Cybersecurity Engineer will lead efforts in securing the charging and energy ecosystem, developing security designs, and collaborating with product teams to ensure the resilience of energy products.
Responsibilities:
- Perform threat modeling and security risk assessments for EVSE and energy infrastructure products
- Develop and validate security requirements for charging related protocols (i.e., ISO 15118, OCPP, and OCPI)
- Secure V2G and V2H communication pathways
- Review, develop, and maintain security requirements and Design Validation Methodologies for EV charging and energy infrastructure products
- Develop security controls and mitigations for risks found in embedded components
- Work with hardware vendors, internal product teams, and internal cloud teams to ensure end-to-end security in the electric vehicle charging ecosystem
- Investigate and resolve complex security issues across hardware, firmware, and communication layers
- Research emerging threats to smart grids and IoT energy devices to keep Ford’s infrastructure protected
- Communicate high-level design and low-level security details at both the working and management levels
- Work with cross-functional teams to integrate security controls into the development and manufacturing process
- Partner with product teams during the innovation and sourcing of new products and features to perform threat modeling and develop integrated security controls
Requirements:
- Bachelor's degree in Electrical Engineering, Computer Engineering, Software Engineering, Computer Science, or Cybersecurity
- 5+ years of experience securing embedded systems, IoT devices, automotive systems, or Industrial Control Systems
- 3+ years of experience with networked systems and communication protocols (TCP/IP, Ethernet, Wi-Fi, or Cellular)
- Ability to develop and maintain engineering documentation including security requirements, specifications, and test plans
- Strong communication skills with the ability to explain complex security risks to non-technical stakeholders
- Experience with secure charging implementations and protocols (i.e., ISO 15118, OCPP, and PKI)
- Experience with hardware security features such as HSM, TEE, and secure boot for embedded IoT devices
- Experience with coding for security tool development and firmware analysis (i.e., C, C++, Python, or Go)
- Experience securing cloud-connected systems and communication interfaces (e.g., MQTT, TLS, or REST APIs)
- Familiar with industry cybersecurity and grid standards (i.e., ISO 21434, NIST SP 800-213, NIST XFC Cybersecurity)
- Familiar with security risk assessment and quality methodologies (i.e., TARA, FMEA, DVP&R)
- Experience with vulnerability management tooling and processes
- Knowledge of Ford's internal engineering systems and energy services requirements