Job Description

Job Category: Enterprise Technology
:
The Cloud Security team is responsible for identifying, evaluating, and recommending
cloud security tools and functions to enhance security around Ford's public cloud. The
team is also responsible for developing and managing the following Security Services in
Ford's public cloud environments: - GCP Security Command Center - GCP/Azure Security Compliance - GCP VPC Service Control - GCP Cloud Armor/ Azure WAF
Responsibilities:
Responsibilities - Partner with other Cloud Security team members to identify and develop automation for security related workflows and audits (VPC SC, DLP, Exceptions, Org Policy, etc..). - Lead evaluation and develop an understanding of tools needed to address security gaps. - Lead/Collaborate with EPEO Services teams on security gap remediation.
Qualifications:
Qualifications Desired Skills - Experience working with CI/CD deployment pipelines & automated build and configuration tools such as Jenkins, Chef, OpenShift, Tekton, Cloud Build - Experienced in developing and releasing infrastructure-as-code (IaC) using configuration management tools such as Terraform. - Experience with automation using scripting languages such as Python, Go, Node.js, Angular, JavaScript, React, TypeScript, etc. - Strong understanding of Git and GitHub, GitHub Actions. - Strong knowledge of security best practices and guidelines (at the enterprise-level) related to GCP and Azure Cloud deployments as well as common web application frameworks - Understand the functionality and secure usage of various GCP services: VPCs, IAM, security groups, compute engine, cloud storage, Security Command Center, VPC Service Control, Cloud DLP and Cloud Armor

Skills Required