FCE IT Security & Controls Lead

·
Full time
Location: Banbury
·
Job offered by: Ford Motor Company
·
Category: IT & Technology
Apply Now
Ford Motor Company Since 1903, we have helped to build a better world for the people and communities that we serve. Welcome to Ford Motor Company. The FCE IT Security & Controls Lead is a crucial member of the IT team, responsible for understanding and supporting the financial entity’s security posture and with awareness on compliance requirements with relevant regulations and industry best practices. This role requires a blend of technical expertise, analytical skills, and a strong understanding of security principles, risk management frameworks and compliance regulations. This is a leadership role demanding strong communication, analytical, and problem-solving skills, that would provide guidance and mentoring for Security & Controls Junior analysts. Key Responsibilities: Security, Controls & Compliance: Engage at Group level (Ford Motor Company, Ford Motor Credit Company) on new control policies, standards and guidelines and advising Software Engineering teams through understanding of the Corporate Information Security Policies. Conduct Security & Risk assessments of Third-party ICT service providers across FCE (IT due diligence reviews), ensuring they comply with most up-to-date and highest quality information security standards. Identify and report compliance gaps with relevant security regulations and industry standards (e.g., SOX, GDPR, DORA, NIST). Lead on remediation of complex IT Security & Controls related audit findings and internally identified control gaps, including high level co-ordination of corrective actions and defining learnings and best practices. Identify/recommend and where needed present material on various topics to support in-house security & controls awareness & training, or related reporting required at FCE committee meetings (e.g. Exec Operational Risk & Resilience Committee). Cyber security: FCE representative at FS-ISAC (Financial Services Information Sharing and Analysis Center) events and seminars. Engage with Global Ford Credit security teams and central FMC Cyber Defence Team, contributing to long and short term strategy updates. Research latest cyber trends and offer insights and suggestions for enhancing cyber security and defence within FCE IT. Attend external seminars and expo events in relation to cyber security and present findings back to the FCE IT Cyber Team and to Software Engineering teams. Responsible for FCE Cyber Incident Response Plan, and its awareness by the Cyber Incident Response Team (CIRT). Qualification and Skills: Minimum 2.2 degree or international equivalent in Information Technology or Cybersecurity. Strong controls mindset, and a background in system development and management – with proven experience (+3 years) in IT Security related function, or equivalent experiences. Demonstrable experience with SOC 2 Type II reports, ISO 27001 or usage of similar standards. Good understanding of cybersecurity threats and best practices, including knowledge of common attack vectors, security controls, and incident response procedures. Strong prioritisation, co-ordination, organisational and communication skills, and a proven ability to balance workload and competing demands to meet deadlines. Clear and concise writing skills for creating reports and documentation, including security requirements, procedures, and policies. Critical thinking skills to assess risks and develop security solutions. Acquired any of the following certifications, or equivalent one:

CRISC (Certified in Risk and Information Systems Control) or equivalent CISM (Certified Information Security Manager) or equivalent CISSP (Certified Information System Security Professional) or equivalent CISA (Certified Information Systems Auditor)

Familiar with any ICT related regulations (e.g. SYSC8, PRA, EBA, BaFin, DORA). Experience in a regulated, financial environment. Understanding of the overall business of Ford Credit. Experience on educating others and sharing awareness to different levels in the organization. Cloud security certifications from major cloud providers (AWS, Azure, GCP) / demonstrable expertise in securing cloud environments. Experience with various testing techniques and methodologies.

#J-18808-Ljbffr

Recent Jobs

Assistant Project Manager – Healthcare

Buscojobs
Apply Now
London (On site) · Full time

Are you a smart, driven professional who takes pride in making a difference in local communities? Turner & Townsend’s Real Estate division is experiencing significant growth and we’re looking for an experienced industry professional with health project experience to join our high-performing and collaborative Project Management team. Why Join Us? Impactful Work: Contribute to social [...]Read More... from Assistant Project Manager – Healthcare See details

Apply Now

Site Operations Manager

AUTO SMART
Apply Now
Chasetown (On site) · Full time

My client, Autosmart International are a manufacturing success story! Site Operations Manager – leading fast-paced manufacturing and warehousing About Our Client Autosmart International is a manufacturing success story, leading the field in vehicle cleaning products. We are the No.1 choice of automotive trade customers across the UK. We have doubled in size in the last [...]Read More... from Site Operations Manager See details

Apply Now

Duty Officer

CSS
Apply Now
London (On site) · Full time

CSS are looking for an experienced duty officer to join our client’s team who are a local council responsible for all areas within the Tendering district. Working hours: All shifts are 8 hours long with various start times available: Monday to Friday – start times between 6AM – 3PM Saturday & Sunday – 6AM – [...]Read More... from Duty Officer See details

Apply Now
© 2025 We are jobs247. A registered company in 321-323 High Road, Chadwell Heath, Essex, United Kingdom, RM6 6AX @ All rights reserved.