Cybersecurity Architect - Embedded Security Mitigations

As an Architect for Embedded Security Mitigations within the Office of Cybersecurity, you will serve as the primary technical authority for the design, development, and maintenance of production-ready embedded security implementations that will be used across vehicle controllers. This is a high-impact, hands-on role where you will be expected to produce high-quality, production-grade code while providing technical leadership to Embedded Security Engineers (GSR). You will work closely with cross-functional and functional teams—including ECU software, systems engineering, validation, and platform teams—to translate cybersecurity requirements into standardized, reusable embedded implementations. You will bridge high-level cybersecurity requirements and low-level embedded implementation, ensuring our vehicle platforms are resilient against evolving threats.

This team’s deliverables include source code libraries, prebuilt libraries, and a complete automated test suite intended for broad adoption by ECU programs across the vehicle.

What you’ll do…

• Standardized Implementation: Architect and implement production-ready security mitigations within Classic AUTOSAR, proactively collaborating with controller teams to gather requirements and technical constraints and drive a unified, standard implementation across platforms.
• Hands-on Code Production: Maintain a high level of hands-on involvement by writing and reviewing complex embedded code in C and C++, ensuring it meets Ford quality, performance, and maintainability expectations.
• Technical Leadership: Partner with and guide Embedded Security Engineers (GSR) to execute technical roadmaps and deliver robust, reusable software components.
• Deliverables & Reuse: Drive creation of reusable deliverables (source libraries, prebuilt artifacts, and test suites) with clear APIs, versioning strategy, and integration guidance for ECU teams.
• Lifecycle Management: Own the full software development lifecycle (SDLC) for mitigation implementations, from initial design through production support, maintenance, and hardening.
• Standards Alignment: Ensure implementations align with ISO/SAE 21434 cybersecurity engineering needs and incorporate diagnostic/security considerations aligned to UDS (ISO 14229-1); demonstrate familiarity with UNECE R155 expectations.
• Workflow: Use GitHub for version control, pull requests, and code reviews.
• Tooling: Experience with at least 2 of the following AUTOSAR implementation/tool ecosystems: Vector, eTAS, Elektrobit.
• Agile Execution: Manage technical debt, feature backlogs, and sprint planning productively within Jira.
• Cross-Functional Collaboration: Coordinate with systems engineering, validation, and platform teams to enable seamless integration of security controls across a diverse set of ECUs.
• Testing / V&V: Collaborate with Verification & Validation teams to develop and execute security focused test plans to ensure robust, secure solutions