Key skills
Cyber Security EngineeringSecurity Operations (SOC)Microsoft Sentinel (SIEM/SOAR)Microsoft Defender (XDR)Microsoft Entra IDMicrosoft 365 SecurityMicrosoft PurviewVulnerability ManagementTenableTaniumCMDB/Asset ManagementNetwork SecurityPalo Alto FirewallsIncident ResponseAIEntra IDGitHubLeadershipFirewall
About this role
Ford Pro is seeking a Manager IT Security Engineering with strong SOC experience to implement, operate, and optimize enterprise security platforms. This role supports immediate security initiatives and serves as an L3 escalation point within a rotating on-call model.
Responsibilities:
- Implement, configure, upgrade, document, and troubleshoot security platforms, including: Microsoft Sentinel (SIEM/SOAR), Microsoft Defender (XDR/DLP), Microsoft Purview, Entra ID, and Microsoft 365 Security, Tenable (including Cloud TVM), Tanium, Delinea (PAM), GitHub Security, Google Security Command Center (SCC), and Palo Alto Firewalls
- Lead enterprise-wide logging implementation and SIEM data onboarding
- Implement vulnerability and cloud TVM solutions and integrate with asset/CMDB data
- Develop cyber security health monitoring and detection quality improvements
- Perform firewall rule reviews, cleanup, and tightening
- Act as L3 SOC support for advanced investigations and incident response
- Partner with IT and infrastructure teams; participate in change control processes
- Apply AI-assisted approaches to investigation and security operations
- Participate in a rotating L3 off-hours on-call schedule
Requirements:
- Minimum of 5–7 years of experience in Cyber Security Engineering or Security Operations (SOC), with a proven track record in an L3 or senior technical lead capacity
- Expert-level proficiency in implementing and managing the Microsoft security ecosystem, specifically Microsoft Sentinel (SIEM/SOAR) and Microsoft Defender (XDR)
- Strong hands-on experience with Microsoft Entra ID, Microsoft 365 security configurations, and Microsoft Purview
- Demonstrated experience operating enterprise vulnerability management tools (e.g., Tenable, Tanium) and integrating them with CMDB/Asset management workflows
- Experience with Palo Alto Firewalls, including rule review, policy optimization, and troubleshooting
- Advanced knowledge of incident response lifecycles and the ability to lead complex investigations as a senior escalation point
- Bachelor's or Master's degree in Computer Science, Engineering, or a related technical field
- Experience in Renewable Energy, Automotive (EV), or Semiconductor industries
- Strong ability to communicate complex technical risks to executive leadership and board members
- Familiarity with export control regulations and international intellectual property protection