Battery Monitoring Cyber Security Engineer, Ford Energy
Ford Energy · Dearborn, MI · 3 wk ago
HybridInformation Technology$99k–$166k/yrFull-time
Responsibilities
- Cybersecurity Architecture & Risk Management
- Lead cybersecurity architecture and TARA (Threat Analysis and Risk Assessment) for battery monitoring electronics.
- Focus on mitigating risks related to sensor spoofing, unauthorized SOC manipulation, malicious commands, and firmware compromise.
- Define and maintain cybersecurity requirements for BMS and monitoring functions, ensuring traceability from concept to release.
- Develop and implement Hardware Root of Trust, secure boot, code signing, and key lifecycle management strategies.
- Secure internal and external communication pathways, including CAN, CAN-FD, SPI, Ethernet, and Modbus TCP.
- Define and validate secure OTA (Over-the-Air) and field update strategies, focusing on authentication, anti-rollback protection, and recovery behavior.
- Identify and implement embedded intrusion/anomaly detection approaches for real-time attack awareness.
- Communication & Update Security
- Secure internal and external communication pathways, including CAN, CAN-FD, SPI, Ethernet, and Modbus TCP.
- Define and validate secure OTA (Over-the-Air) and field update strategies, focusing on authentication, anti-rollback protection, and recovery behavior.
- Identify and implement embedded intrusion/anomaly detection approaches for real-time attack awareness.
- Validation, Testing & Response
- Support vulnerability analysis, penetration testing, and fuzz testing for battery monitoring and connected interfaces.
- Lead issue remediation planning and establish response processes for product vulnerabilities and field issues.
- Develop technical security case materials and evidence for design gates, audits, and compliance reviews.
- Cross-Functional Co-Engineering
- Collaborate with software, controls, and safety teams to ensure security controls are compatible with functional safety and safe-state behavior.
- Align with Ford Auto Engineering and global suppliers on shared architecture and implementation standards.
- Communicate technical security risks, tradeoffs, and recommendations to executive-level stakeholders.
Qualifications
- Bachelor’s degree in Electrical, Computer, or Systems Engineering, Computer Science, or Cybersecurity or equivalent experience.
- 5+ years of experience in embedded or automotive cybersecurity, BMS, or battery electronics.
- Practical experience in TARA, cybersecurity architecture, and authoring technical security requirements.
- Demonstrated experience with secure embedded design (Secure Boot, cryptographic implementation).
- Strong communication skills with the ability to navigate cross-functional engineering teams.