Cybersecurity Threat Analyst

Our goal is to protect information assets, identify security risks, leverage and share industry best practices. The Insider Threat Program is responsible to detect, analyze, mitigate, & respond to insider threats. This is a highly visible and collaborative position working with cross-functional senior leadership & internal teams.

• Apply program management, thought leadership, and analysis skills to contribute to insider threat program daily operations and processes
• Manage process and technology improvements related to improving our capability to detect, perform analysis, & respond
• Gather, integrate, review, assess, and respond to information derived from Security, Human Resources, Legal, continuous monitoring, and other information sources to identify potential insider threat concerns
• Prepare and maintain insider threat reports & case files
• Collaborate with colleagues across the organization (Compliance, Special Investigations, Privacy, Legal, IT, Global Security, Cyber Security, HR) to communicate technical information to both technical and nontechnical audiences
• Establish strong working relationships with stakeholders such that plans and requirements are fully understood, and issues are resolved effectively and efficiently
• Develop stakeholder briefings on trend analysis and identify new opportunities for program maturation
• Keep monitoring, triage, & test case processes updated
• Drive organizational change to make Ford a safer and more secure place to work
• Support regional expansion, including assessing new technologies & deployment activities
• Manage supplier/vendor relationships & purchase orders related to the program
• Support future state roadmap and initiatives
• Contribute to other data security projects as required

Required Skills:

• At least 2 years of direct experience in cybersecurity operations, threat analysis, or a related role (e.g., SOC, threat hunting, intelligence analysis).
• 3 days per week on site (GTBC FORD MEXICO)
• Proficiency in network and/or host-based intrusion analysis to identify and respond to threats
• Experience in one or more of the following areas: packet analysis, metadata analysis, or log correlation for threat detection
• Familiarity with RCA, SPLUNK, SOC/NOC, incident experience, risk management.
• Experience working with security telemetry, logs, or threat intelligence platforms to support investigations and decision-making
• Ability to conduct in-depth analysis by correlating data from multiple sources to assess visibility into threat actor activity
• Strong english communication skills to effectively document challenges in event tracking and classification, supporting continuous improvement efforts
• Exceptional analytical and critical thinking skills with a keen attention to detail
• Proven ability to collaborate and work effectively in a globally distributed team environment

 

Must have

• Experience in event correlation and leveraging security tools for identification & analysis of suspicious behavioral indicators.
• Knowledge of Insider Threat Behavioral Models.

 

Nice to Have

• Global Counter Insider Threat Professional (GCITP) Certification
• CERT SEI Insider Threat Analyst or Program Manager Certification
• CISSP

At Ford Motor Company, we believe freedom of movement drives human progress. With our incredible plans for the future of mobility, we have a wide variety of opportunities for you to accelerate your career and help us define tomorrow’s transportation.