Lead Product Security Analyst - PSIRT

About Us

BorgWarner is a global product leader in delivering innovative and sustainable mobility solutions. We are a company of innovators and independent thinkers that brings together talented employees, meaningful work and amazing technology in a unique environment. At BorgWarner, we constantly work towards our vision of a clean and energy-efficient world. 

Our Culture

BorgWarner promotes and nurtures a diverse and inclusive environment, honors integrity, strives for excellence, commits to responsibility for our communities and the environment, and builds on the power of collaboration.  We believe the health and safety of our employees are a top priority.

Career Opportunities  

We manage talent as seriously as we manage our businesses and encourage you to learn about our proud history, strong culture, technologies, and vision for the future. We offer positions locally and globally with over 80 locations in 19 countries. If this position energizes you and you feel you can help us achieve our mission and vision, you are invited to apply. We seek applications from people of all races, color, ages, religions, sex, sexual orientation, gender identity/expression, national origin, disability status, military status, and second-chance hires. 

Some candidates may see the list of qualifications and feel they do not meet the requirements and shy away from applying. BorgWarner thinks differently. We want to encourage you to share your lived experience and skills with us by submitting an application for consideration.

Position Summary

The Lead product security analyst – PSIRT is a role primarily focused on leading the daily activities for the PSIRT function. This critical role will set the daily direction and follow established procedures to perform intake, conduct initial analysis, and respond to reported product vulnerabilities and security concerns. This position will work closely with engineering to execute strategic vision for the team and assist in maturing our overall incident response plans and policies in the ever-demanding automotive industry. You will report to the US Product Cybersecurity Manager.

Key responsibilities

• Being passionate and forward-thinking about cybersecurity and the needs for the ever-changing automotive industry.
• Perform daily operations for PSIRT Activities including intake, initial analysis, and execution of initial product security incident response (PSIRT) activities.
• In coordination with cybersecurity engineers, attend to inquiries from a variety of external and internal stakeholders seeking assistance from our team.
• Manages the coordination for disclosures through our vulnerability disclosure program.
• Creating, auditing, and improving PSIRT process documentation and communications deliverables to include the PSIRT plan, playbooks, procedures, and Product Security Advisory content.
• Continuously monitor and communicate realistic expectations of capabilities, to stakeholders.
• Build and maintain collaborative working relationships with various internal functional groups and other stakeholders to effectively resolve issues and remove barriers to program success.

What we’re looking for

• Bachelor degree in computer science, Ethical Hacking/Cyber Security, Computer Forensics or STEM based (science, Technology, Engineering and/or Mathematics)
• 2+ years of relevant industry experience in incident response, PSIRT, application security, technical program/project management, or equivalent expertise.
• Results-driven, with the ability to drive project tasks and hold others accountable.
• Excellent facilitation, negotiation, and consensus-building skills, and the ability to influence stakeholders, and drive decisions to closure.
• Knowledge of Automotive cybersecurity/Functional Safety standards are advised but not necessary (e.g.ISO/SAE 21434, WP.29 SUMS & CSMS, ISO26262, NIST)
• Automotive, Aerospace or transportation development experience is advantageous but not necessary
• It is desirable to hold a recognized security certification (e.g. CEH, CISSP, CISSM, CISA, etc).
• Excellent communication skills and able to deal with all levels of the organization
• Proven ability to communicate technical issues to technical and non-technical audience.
• Motivation to share knowledge and train people
• Flexibility to travel at the customer or engineering sites when necessary

Global Terms of Use and Privacy Statement

Carefully read the BorgWarner Privacy Policy before using this website. Your  ability to access and use this website and apply for a job at BorgWarner are conditioned on your acceptance and compliance with these terms.

Please access the linked document by clicking here, select the geographical area where you are applying for employment, and review. Before submitting your application you will be asked to confirm your agreement with the terms.

Career Scam Disclaimer:  BorgWarner makes no representations or guarantees regarding employment opportunities listed on any third-party website.  To protect against career scams, job applicants should take the necessary precautions when interviewing for and accepting employment positions allegedly offered by BorgWarner.  Applicants should never provide their national ID numbers, birth dates, credit card numbers, bank account information or other private information when communicating with prospective employers or responding to employment opportunities online.  Job applicants are invited to contact BorgWarner through BorgWarner’s website to verify the authenticity of any employment opportunities.