Responsibilities

• Serve as the primary Subject Matter Expert in both non-connected and connected vehicle cybersecurity, with particular emphasis on JMC Export vehicle programs. You will provide authoritative guidance and strategic direction on cybersecurity requirements, risk assessments, and mitigation strategies tailored to these specific programs and their unique market demands.

• Act as the cybersecurity technical lead for both connected and non-connected modules within JMC vehicle architectures. This includes driving the implementation of robust security requirements and controls, conducting in-depth technical analyses, and ensuring the secure development and deployment of components. A significant focus will be placed on managing and evolving cybersecurity for IDEA legacy systems and the advanced IEDA

3.0 EEA (Electrical/Electronic Architecture).

• Lead, mentor, and manage a team of two direct reports, fostering their professional growth and ensuring the team's objectives align with overall cybersecurity strategy. You will be responsible for their performance, skill development, and engagement in critical cybersecurity initiatives.

• Contribute to the development, implementation, and continuous improvement of cybersecurity strategies, policies, and standards across in-vehicle systems and mobility platforms.

• Identify, evaluate, and prioritize cybersecurity risks throughout the entire vehicle lifecycle, from design and development through production and post-launch. Develop and implement effective mitigation plans to address identified vulnerabilities.

• Ensure all in-vehicle and mobility cybersecurity solutions comply with Ford Engineering Statement of Work (eSoW) for Cybersecurity.

• Collaborate extensively with Ford Secondees at JMC, JMC engineering, product development and other stakeholders to integrate cybersecurity requirements seamlessly into product design, development, and operational processes.

• Bachelor’s degree in computer science or Electronics/Electrical engineering.

• Over 6 years of experience in automotive product cybersecurity, including a minimum of 3 years specializing in in-vehicle and mobility cybersecurity.

• Understanding and effectively managing complex cybersecurity risks in a dynamic automotive environment.

• Proven experience in leading cybersecurity technical team in completing a vehicle program cybersecurity assessment and penetration test.

• Proven experience in leading cybersecurity implementation for medium or large-scale projects.

• Proven experience in working and collaborating with cross-regional and cross-functional teams.

• Proven experience in articulating complex technical issues to non-technical stakeholders (e.g., executives, engineering teams).

• Deep understanding and practical application of automotive cybersecurity regulations and standards (e.g. ISO/SAE 21434, UNECE R155/156, NIST Cybersecurity Framework, China GB44495/

44496).

• Practical experience in assessing and threat modeling of connected and non-connected modules’ cybersecurity posture.

• Practical experience in penetration test of connected and non-connected modules focusing on embedded operating systems, Linux Kernel, Hardware, in-vehicle network communication.

• Knowledge of secure coding principles, static/dynamic analysis, and security testing methodologies.

• Ability to assess and manage cybersecurity risks associated with third-party suppliers and components.

• Strong organizational skills to manage multiple cybersecurity projects, resources, and timelines effectively.