Ford Motor Company

SaaS Security Manager

Ford Motor Company

full-time

Posted on:

Location Type: Remote

Location: MissouriUnited States

Visit company website

Explore more

AI Apply
Apply

Tech Stack

Cloud

About the role

  • Supervise, mentor, and develop a team of SaaS security engineers and analysts, fostering professional growth and maintaining high team performance.
  • Manage day-to-day SaaS security operations, including continuous monitoring of SaaS application configurations, user activity, and integrations for security risks.
  • Design, implement, and maintain robust security controls and policies aligned with organizational requirements and industry best practices for SaaS applications.
  • Oversee the configuration, monitoring, and utilization of SaaS Security Posture Management (SSPM) tools to identify and remediate misconfigurations, excessive permissions, and compliance gaps across the SaaS landscape.
  • Lead the assessment and management of security risks associated with third-party SaaS vendors, including due diligence, contract reviews, and continuous monitoring of vendor security posture and compliance.
  • Ensure the secure integration of SaaS applications, focusing on API security, secure authentication (e.g., SSO, MFA), and data flow protection.
  • Ensure SaaS application compliance with regulatory and internal requirements, with a specific focus on interpreting, implementing, and documenting controls based on frameworks such as NIST 800-53, SOC 2, and ISO 27001 as applied to SaaS.
  • Support SaaS-specific security incident response activities – when requested by Cyber Defense leadership – ensuring effective containment, analysis, and resolution for incidents involving SaaS applications.
  • Collaborate effectively with engineering, operations, procurement, legal, and business teams to integrate security throughout the SaaS application lifecycle, from selection and onboarding to offboarding.
  • Develop and present reports on the SaaS security posture, vendor risk, compliance status, and key security initiatives in existing Governance Forums.
  • Stay abreast of the latest security threats, vulnerabilities, and security best practices relevant to SaaS applications and their underlying cloud platforms.

Requirements

  • Bachelor's degree in Computer Science, Software Engineering, or a related field (or equivalent practical experience).
  • Minimum of 5 years of experience in information security, with at least 3 years in a leadership capacity.
  • Demonstrable hands-on experience securing a diverse portfolio of production SaaS applications and managing SaaS vendor security.
  • Strong understanding of core SaaS security concepts, including shared responsibility model, Identity and Access Management (IAM) for SaaS, data protection (DLP, encryption) in SaaS, API security, and secure configuration management.
  • Extensive hands-on experience utilizing and managing SaaS Security Posture Management (SSPM) tools and/or Cloud Access Security Brokers (CASB) for security posture management, threat detection, and compliance assessment.
  • Proven experience conducting security assessments and due diligence for third-party SaaS vendors.
  • Direct experience interpreting, implementing, and documenting controls based on frameworks like NIST 800-53, SOC 2, or ISO 27001 as applied to SaaS environments.
  • Experience with security tools and services relevant to SaaS (e.g., SSPM platforms, CASBs, Identity Providers, vendor risk management platforms, API security gateways).
  • Solid understanding of common security frameworks and standards (e.g., SOC 2, ISO 27001, NIST 800-53, GDPR, CCPA).
  • Excellent leadership, communication, and interpersonal skills, with the ability to effectively articulate technical concepts and security risks to diverse audiences.
Benefits
  • Immediate medical, dental, vision and prescription drug coverage
  • Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more
  • Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more
  • Vehicle discount program for employees and family members and management leases
  • Tuition assistance
  • Established and active employee resource groups
  • Paid time off for individual and team community service
  • A generous schedule of paid holidays, including the week between Christmas and New Year’s Day
  • Paid time off and the option to purchase additional vacation time.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
SaaS securitysecurity controlsAPI securityIdentity and Access Management (IAM)data protectionencryptionsecurity assessmentscompliance assessmentsecurity incident responseconfiguration management
Soft Skills
leadershipcommunicationinterpersonal skillsmentoringcollaborationreportingproblem-solvingarticulating technical conceptsteam performance managementprofessional growth
Certifications
NIST 800-53SOC 2ISO 27001