Senior Cybersecurity Analyst, Risk and Compliance Assessor

Audit and assess the cybersecurity development process to ensure a secure product solution. This includes all aspects of cybersecurity development, implementation, and testing at BorgWarner and its sub-suppliers.

You will audit and assess the cybersecurity development process to ensure a secure product solution. This includes all aspects of cybersecurity development, implementation, and testing at BorgWarner and its sub-suppliers. You will provide expert coaching and consulting support to all internal stakeholders involved in the development. This position is within the regulatory and compliance quality team.

Additionally, as the Lead Product Security Analyst – PSIRT, you will lead daily activities for the PSIRT function. This role involves setting daily direction, performing intake, conducting initial analysis, and responding to reported product vulnerabilities and security concerns. You will work closely with engineering to execute the strategic vision for the team and assist in maturing overall incident response plans and policies in the automotive industry.

Key Responibilities:

• Be passionate and forward-thinking about cybersecurity and the needs of the ever-changing automotive industry 
• Plan and implement cybersecurity audit and assessment activities in projects, considering customer specifications, the cybersecurity process, and your own experience 
• Perform daily operations for PSIRT activities, including intake, initial analysis, and execution of initial product security incident response 
• Participate in cybersecurity risk assessments and threat modelling within the product scope 
• Perform cybersecurity confirmation reviews on agreed-upon work products 
• Collaborate with hardware and software teams to develop cybersecurity technical solutions as required by the project 
• Review the cybersecurity assurance case 
• Interface with suppliers on technical cybersecurity issues 
• Follow and keep up to date with vulnerabilities of suppliers and customers 
• Network and maintain a high level of industry knowledge 
• Work directly with Cybersecurity Managers and Engineers to provide cybersecurity support on projects 
• Attend to inquiries from various external and internal stakeholders seeking assistance from the team 
• Manage the coordination for disclosures through the vulnerability disclosure program 
• Create, audit, and improve PSIRT process documentation and communications deliverables, including the PSIRT plan, playbooks, procedures, and Product Security Advisory content 
• Continuously monitor and communicate realistic expectations of capabilities to stakeholders 
• Build and maintain collaborative working relationships with various internal functional groups and other stakeholders to effectively resolve issues and remove barriers to program success

Internal Use Only: Salary

Global Terms of Use and Privacy Statement

Carefully read the BorgWarner Privacy Policy before using this website. Your  ability to access and use this website and apply for a job at BorgWarner are conditioned on your acceptance and compliance with these terms.

Please access the linked document by clicking here, select the geographical area where you are applying for employment, and review. Before submitting your application you will be asked to confirm your agreement with the terms.

Career Scam Disclaimer:  BorgWarner makes no representations or guarantees regarding employment opportunities listed on any third-party website.  To protect against career scams, job applicants should take the necessary precautions when interviewing for and accepting employment positions allegedly offered by BorgWarner.  Applicants should never provide their national ID numbers, birth dates, credit card numbers, bank account information or other private information when communicating with prospective employers or responding to employment opportunities online.  Job applicants are invited to contact BorgWarner through BorgWarner’s website to verify the authenticity of any employment opportunities.