Cyber Security Platform Engineer – Cyber Defense

🔥 0 minutes ago

🚗 Michigan – Remote

🚗 Michigan – Remote

💵 $97.1k - $190.5k / year

⏰ Full Time

🟡 Mid-level

🟠 Senior

🏗️ Platform Engineer

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Ford Motor Company

WebsiteLinkedInAll Job Openings

10,000+ employees

Founded 1903

🚗 Transport

💰 Post-IPO Debt on 2023-08

Transport • Manufacturing • Sustainability

Ford Motor Company is a globally renowned automotive company based in the United States, established by Henry Ford. The company is committed to building a better world where every individual has the freedom to move and follow their dreams. Ford is dedicated to innovation, with a focus on services, experiences, and software alongside its traditional vehicle manufacturing. The company is actively involved in sustainability initiatives and aims to meet ambitious environmental targets. Ford values service, community impact, and strives to combine business success with social and environmental responsibility. With a rich history of over 121 years, Ford continues to adapt and lead in the evolving automotive landscape.

📋 Description

• Architect and engineer scalable, cloud-native SIEM solutions, utilizing Infrastructure-as-Code principles to manage log ingestion pipelines and storage. • Develop and maintain robust data pipelines to ingest, transform, and normalize security logs from diverse endpoints (APIs, cloud platforms, firewalls) into the SIEM, ensuring high data fidelity and low latency. • Write and optimize custom parsers using Regex and scripting languages to map raw log data to standardized security models, ensuring consistent data structures for analysis. • Program custom integrations connecting third-party tools and streaming data sources to the SIEM via REST APIs and webhooks. • Collaborate with DevOps and Application teams to define logging standards and embed security telemetry requirements early in the software development lifecycle (SDLC). • Manage the full lifecycle of the SIEM platform, including health monitoring, troubleshooting ingestion failures, and debugging parsing errors to ensure 24/7 availability. • Proactively analyze ingestion volume against capacity limits to identify optimization opportunities, implementing granular log tuning and exclusion rules that minimize licensing costs and maximize the signal-to-noise ratio • Engineer automated provisioning workflows using Infrastructure as Code (IaC) to programmatically manage both the underlying infrastructure and complex IAM policies supporting the security platforms.

🎯 Requirements

• Bachelor’s degree in Computer Science, Cyber Security, Information Systems or related field. • 6+ years of overall software engineering experience • 2+ technical experience designing and maintaining scalable security data architectures. • Skilled in configuring cloud-native security & SIEM/SOAR platforms. • Experience with security logging, data sources, log parsing & tuning and industry best practices for log ingestion • Experience administering cloud-native security platforms, with a specific focus on maintaining platform health, troubleshooting configuration issues, and managing complex IAM roles to ensure granular access control. • 2+ years hands-on development experience on cloud native platforms, preferably Google Cloud Platform. • **Even better, you may have...** • Proficiency in scripting languages like Python, Go, Java, or Bash for automation, data manipulation, and integration tasks. • Hands-on experience setting up CI/CD pipelines. OpenShift Tekton, or GitHub Actions or similar. • Knowledge of secure coding practices • Experience setting up serverless functions using GCP Cloud Run or Cloud functions, and configuring the respective service for scaling • Robust knowledge of system design principles including reliability, availability, and scalability • Experience setting up logging and monitoring services (Dynatrace, GCP Ops Suites) • Strong understanding of network security, log analysis, threat detection, and incident response. • Knowledge of RESTful APIs, data integration techniques, and infrastructure-as-code tools (e.g., Terraform, Ansible).

🏖️ Benefits

• Immediate medical, dental, and prescription drug coverage • Flexible family care, parental leave, new parent ramp-up programs, subsidized back-up child care and more • Vehicle discount program for employees and family members, and management leases • Tuition assistance • Established and active employee resource groups • Paid time off for individual and team community service • A generous schedule of paid holidays, including the week between Christmas and New Year’s Day • Paid time off and the option to purchase additional vacation time.