Home › Companies › Efds Fa Em5 Oraclecloud Com CX 1 › Cyber Defense Analyst
Cyber Defense Analyst
Efds Fa Em5 Oraclecloud Com CX 1 · Dearborn, MI, United States; FMCC Headquarters Dearborn, Dearborn, MI, US · Hybrid · Active · $99,600–$192,900 / day · Oracle Recruiting Cloud / Fusion HCM
Job facts
| Field | Value |
|---|---|
| Company | Efds Fa Em5 Oraclecloud Com CX 1 |
| Title | Cyber Defense Analyst |
| Normalized title | - |
| Department / team | Enterprise Technology |
| Location | Dearborn, MI, United States |
| Work model | Hybrid / Hybrid |
| Employment type | Full Time |
| Salary | $99,600–$192,900 / day |
| Status | active |
| ATS provider | Oracle Recruiting Cloud / Fusion HCM |
| Posted / first seen | 2026-06-03 / 2026-06-04 |
| Changed / last seen | 2026-06-04 / 2026-06-04 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Efds Fa Em5 Oraclecloud Com CX 1. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Oracle Recruiting Cloud / Fusion HCM. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Dearborn. | Open |
| Department jobs | Active postings in Enterprise Technology. | Open |
| Work model jobs | Active Hybrid postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Efds Fa Em5 Oraclecloud Com CX 1 |
| Source | d8110a61-5510-417b-a74c-f58816339c6b |
| ATS provider | Oracle Recruiting Cloud / Fusion HCM |
Description
Description
Position Duties This position is for a Cyber Defense Center (CDC) Detection Analyst specializing in initial threat triage. The role involves swiftly assessing and prioritizing security incidents to determine their severity and potential impact. You will be responsible for promptly identifying and investigating various threats, initiating timely response actions, and escalating to appropriate teams for further investigation and/or remediation.
Work Schedule & Location
Location: This role is hybrid, with on-site work in Southeast Michigan.
Standard Hours: Standard working hours are typically 8:00 AM – 5:00 PM ET.
Shift Lead Rotation: Candidates must be willing to support a Shift Lead rotation at least once per calendar quarter. During these weeks, the shift is 11:00 AM – 8:00 PM during Eastern Daylight Time (EDT) and 10:00 AM – 7:00 PM during Eastern Standard Time (EST).
Weekend Coverage: Candidates must be willing to work at least one weekend per calendar quarter as part of Shift Lead Rotation.
Responsibilities
Responsibilities:
Perform initial triage and investigation of various security incidents to determine the impact on Ford, including phishing, malicious software, reconnaissance activities (probes/scans), data exfiltration, and policy violations.
Conduct daily analysis using a range of tools, including SIEM, EDR/XDR, SOAR, and Sandbox analysis platforms.
Investigate alerts across multi-cloud (Azure, GCP, AWS) and on-premises environments.
Collaborate with internal business units and technical teams to investigate and contain incidents.
Respond to cybersecurity inquiries received from Ford personnel, providing clear guidance and risk assessment.
Execute and maintain security playbooks and standard operating procedures (SOPs) to ensure consistent, repeatable, and efficient incident resolution.
Effectively document investigation details for both technical peer review and non-technical stakeholders.
Identify and map attacker Tools, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) to the MITRE ATT&CK framework to enhance future detection and prevention.
Support Shift Lead rotation at least once per calendar quarter, managing escalations and team coordination.
Monitor the global threat landscape and stay up-to-date with emerging cybersecurity trends to proactively improve Ford’s security posture.
Utilize AI-driven threat detection tools to enhance triage accuracy, reduce false positives, and accelerate the identification of emerging attack patterns.
Qualifications
Qualifications:
Education: Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related technical field (or equivalent professional experience). Professional Experience: 3+ years of experience in a Security Operations Center (SOC) or Cyber Defense Center (CDC), including: Hands-on experience with SIEM platforms and EDR/XDR tools. Performing data correlation and analysis of system logs (Firewall, Network Flow, IDS/IPS, and Operating System logs). Incident handling and triage, including the resolution of escalations and clear communication during active security events. Foundational Knowledge: In-depth understanding of Operating Systems (Windows, Linux, Mac), network protocols (TCP/IP, DNS, HTTP), and core infrastructure technologies. Soft Skills: Ability to work in a fast-paced, high-stress environment with a strong sense of urgency and attention to detail. Strong deductive reasoning, critical thinking, and prioritization skills. Excellent oral and written communication skills—able to translate technical items into non-technical terms. Professionalism: High level of independent initiative, integrity, and a disciplined approach to adhering to procedures.
Preferred Qualifications :
Cloud Security: 2+ years of experience with Google Cloud Platform (GCP) or Microsoft Azure, specifically analyzing cloud-native security logs. AI & Automation: Experience leveraging or tuning Artificial Intelligence (AI) and Machine Learning (ML) tools to improve threat detection or automate manual triage tasks. Scripting: Proficiency in scripting languages such as Python, PowerShell, Bash, or SQL to automate workflows or parse data. Ford Specifics: Familiarity with Ford’s computing infrastructure and the Software Development Methodology (SDM). Certifications: Preferred industry credentials such as GIAC (GCIH, GCIA), CEH or CIISP.
You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply!
As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including:
• Immediate medical, dental, vision and prescription drug coverage
• Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more
• Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more
• Vehicle discount program for employees and family members and management leases
• Tuition assistance
• Established and active employee resource groups
• Paid time off for individual and team community service
• A generous schedule of paid holidays, including the week between Christmas and New Year’s Day
• Paid time off and the option to purchase additional vacation time.
This position is a salary grade 7-8 and ranges from $99,600-$192,900.
Final determination of salary grade will be based on candidate's skills and experience, and base salary will be set within the applicable range according to job scope, responsibility and competitive market value.
For more information on salary and benefits, click here: https://fordcareers.co/GSR
Visa sponsorship is not available for this position.
Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire.
We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call 1-888-336-0660.
This position is hybrid. Candidates who are in commuting distance to a Ford hub location may be required to be onsite four or more days per week.
#LI-Hybrid
#LI-GR1
Organization
We believe that freedom of movement drives human progress. Ford Information Technology (IT) is shaping the future of mobility by redefining the transportation landscape, enhancing the customer experience and improving people’s lives. Join the Ford family as we change the way the world moves.
Company
At Ford Motor Company, we believe freedom of movement drives human progress. With our incredible plans for the future of mobility, we have a wide variety of opportunities for you to accelerate your career and help us define tomorrow’s transportation.
Full job record
| Job ID | feff9f516046e4004a2cefd63f2598757d4d7319 |
| Org ID | fc791186-3bfa-4e9d-8648-0d2f6f66937d |
| Source ID | d8110a61-5510-417b-a74c-f58816339c6b |
| Board ID | d8110a61-5510-417b-a74c-f58816339c6b |
| Provider | oracle_hcm |
| Provider Job Key | 64098 |
| Title | Cyber Defense Analyst |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Dearborn, MI, United States; FMCC Headquarters Dearborn, Dearborn, MI, US |
| Department | Enterprise Technology |
| Team | — |
| Employment Type | full_time |
| Workplace Type | hybrid |
| Remote Policy | hybrid |
| Country | United States |
| Region | MI |
| City | Dearborn |
| Salary Raw | Description Position Duties This position is for a Cyber Defense Center (CDC) Detection Analyst specializing in initial threat triage. The role involves swiftly assessing and prioritizing security incidents to determine their severity and potential impact. You will be responsible for promptly identifying and investigating various threats, initiating timely response actions, and escalating to appropriate teams for further investigation and/or remediation. Work Schedule & Location Location: This role is hybrid, with on-site work in Southeast Michigan. Standard Hours: Standard working hours are typically 8:00 AM – 5:00 PM ET. Shift Lead Rotation: Candidates must be willing to support a Shift Lead rotation at least once per calendar quarter. During these weeks, the shift is 11:00 AM – 8:00 PM during Eastern Daylight Time (EDT) and 10:00 AM – 7:00 PM during Eastern Standard Time (EST). Weekend Coverage: Candidates must be willing to work at least one weekend per calendar quarter as part of Shift Lead Rotation. Responsibilities Responsibilities: Perform initial triage and investigation of various security incidents to determine the impact on Ford, including phishing, malicious software, reconnaissance activities (probes/scans), data exfiltration, and policy violations. Conduct daily analysis using a range of tools, including SIEM, EDR/XDR, SOAR, and Sandbox analysis platforms. Investigate alerts across multi-cloud (Azure, GCP, AWS) and on-premises environments. Collaborate with internal business units and technical teams to investigate and contain incidents. Respond to cybersecurity inquiries received from Ford personnel, providing clear guidance and risk assessment. Execute and maintain security playbooks and standard operating procedures (SOPs) to ensure consistent, repeatable, and efficient incident resolution. Effectively document investigation details for both technical peer review and non-technical stakeholders. Identify and map attacker Tools, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) to the MITRE ATT&CK framework to enhance future detection and prevention. Support Shift Lead rotation at least once per calendar quarter, managing escalations and team coordination. Monitor the global threat landscape and stay up-to-date with emerging cybersecurity trends to proactively improve Ford’s security posture. Utilize AI-driven threat detection tools to enhance triage accuracy, reduce false positives, and accelerate the identification of emerging attack patterns. Qualifications Qualifications: Education: Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related technical field (or equivalent professional experience). Professional Experience: 3+ years of experience in a Security Operations Center (SOC) or Cyber Defense Center (CDC), including: Hands-on experience with SIEM platforms and EDR/XDR tools. Performing data correlation and analysis of system logs (Firewall, Network Flow, IDS/IPS, and Operating System logs). Incident handling and triage, including the resolution of escalations and clear communication during active security events. Foundational Knowledge: In-depth understanding of Operating Systems (Windows, Linux, Mac), network protocols (TCP/IP, DNS, HTTP), and core infrastructure technologies. Soft Skills: Ability to work in a fast-paced, high-stress environment with a strong sense of urgency and attention to detail. Strong deductive reasoning, critical thinking, and prioritization skills. Excellent oral and written communication skills—able to translate technical items into non-technical terms. Professionalism: High level of independent initiative, integrity, and a disciplined approach to adhering to procedures. Preferred Qualifications : Cloud Security: 2+ years of experience with Google Cloud Platform (GCP) or Microsoft Azure, specifically analyzing cloud-native security logs. AI & Automation: Experience leveraging or tuning Artificial Intelligence (AI) and Machine Learning (ML) tools to improve threat detection or automate manual triage tasks. Scripting: Proficiency in scripting languages such as Python, PowerShell, Bash, or SQL to automate workflows or parse data. Ford Specifics: Familiarity with Ford’s computing infrastructure and the Software Development Methodology (SDM). Certifications: Preferred industry credentials such as GIAC (GCIH, GCIA), CEH or CIISP. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including: • Immediate medical, dental, vision and prescription drug coverage • Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more • Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more • Vehicle discount program for employees and family members and management leases • Tuition assistance • Established and active employee resource groups • Paid time off for individual and team community service • A generous schedule of paid holidays, including the week between Christmas and New Year’s Day • Paid time off and the option to purchase additional vacation time. This position is a salary grade 7-8 and ranges from $99,600-$192,900. Final determination of salary grade will be based on candidate's skills and experience, and base salary will be set within the applicable range according to job scope, responsibility and competitive market value. For more information on salary and benefits, click here: https://fordcareers.co/GSR Visa sponsorship is not available for this position. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call 1-888-336-0660. This position is hybrid. Candidates who are in commuting distance to a Ford hub location may be required to be onsite four or more days per week. #LI-Hybrid #LI-GR1 Organization We believe that freedom of movement drives human progress. Ford Information Technology (IT) is shaping the future of mobility by redefining the transportation landscape, enhancing the customer experience and improving people’s lives. Join the Ford family as we change the way the world moves. Company At Ford Motor Company, we believe freedom of movement drives human progress. With our incredible plans for the future of mobility, we have a wide variety of opportunities for you to accelerate your career and help us define tomorrow’s transportation. |
| Salary Min | 99,600 |
| Salary Max | 192,900 |
| Salary Currency | USD |
| Salary Period | day |
| Source URL | https://efds.fa.em5.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX_1/job/64098 |
| Apply URL | https://efds.fa.em5.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX_1/job/64098 |
| First Seen At | 2026-06-04 10:57:56Z |
| Last Seen At | 2026-06-04 10:57:56Z |
| Last Checked At | 2026-06-04 10:57:56Z |
| Last Changed At | 2026-06-04 10:57:56Z |
| Inactive At | — |
| Source Posted At | 2026-06-03 18:39:49Z |
| Source Updated At | — |
| Raw Payload Uri | s3://bluework-jobs-prod-raw-590183727216/raw/provider=oracle_hcm/board=efds.fa.em5.oraclecloud.com|CX_1/date=2026-06-04/2026-06-04T10-56-23-246Z-dd523cdcd472316ed2debe3c6671673075cf9f84326da39fd678c84dd8906f35.json |
Event Fields
{
"content_hash": "7dddb595039bee90db65dd407ec57b3fc89f2cc7b8e57c228d2a3893bc2a40ee",
"source_hash": "116f531bf7472d5f566dee7040c8c947314edc4df7db3ce37673d66bc339f38a",
"last_changed_at": "2026-06-04T10:57:56.115Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Dearborn, MI, United States",
"city": "Dearborn",
"region": "MI",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"salary_max": 192900,
"salary_min": 99600,
"inferred_at": "2026-06-04T10:57:54.564Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Dearborn, MI, United States",
"city": "Dearborn",
"region": "MI",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"countries": [
"United States"
]
},
"remote_policy": "hybrid",
"salary_period": "day",
"workplace_type": "hybrid",
"salary_currency": "USD"
}Extensions
{}Native Structured
{
"detail": {
"Id": "64098",
"Title": "Cyber Defense Analyst",
"media": [],
"skills": [],
"JobType": null,
"Category": "Enterprise Technology",
"JobGrade": null,
"JobLevel": null,
"JobShift": null,
"WorkDays": null,
"WorkHours": null,
"WorkYears": null,
"Department": null,
"HotJobFlag": false,
"StudyLevel": "Bachelor's Degree or equivalent",
"WorkMonths": null,
"WorkerType": null,
"GeographyId": 300000009182319,
"JobFamilyId": 300002487990164,
"JobFunction": "Enterprise Technology",
"JobSchedule": "Full time",
"BusinessUnit": null,
"ContractType": null,
"Organization": null,
"TrendingFlag": true,
"workLocation": [
{
"Country": "US",
"Region1": "Wayne",
"Region2": "MI",
"Region3": null,
"Building": "FMCC",
"Latitude": "42.32771",
"Longitude": "-83.18658",
"LocationId": 300000005663580,
"PostalCode": "48126",
"TownOrCity": "Dearborn",
"AddressLine1": "1 American Rd",
"AddressLine2": null,
"AddressLine3": null,
"AddressLine4": null,
"LocationName": "FMCC Headquarters Dearborn"
}
],
"ContentLocale": "en",
"HiringManager": null,
"LegalEmployer": null,
"RequisitionId": 300007361281932,
"WorkplaceType": "Hybrid",
"BusinessUnitId": 300000004335154,
"OrganizationId": 300000004335154,
"GeographyNodeId": 100036559723376,
"JobFunctionCode": "ITS",
"LegalEmployerId": 300000004907524,
"PrimaryLocation": "Dearborn, MI, United States",
"RequisitionType": "Salary/Ford Full Time",
"NumberOfOpenings": null,
"WorkplaceTypeCode": "ORA_HYBRID",
"BeFirstToApplyFlag": false,
"otherWorkLocations": [],
"secondaryLocations": [],
"ExternalContactName": null,
"ShortDescriptionStr": "Cyber Defense Analyst",
"ExternalContactEmail": null,
"ExternalPostedEndDate": null,
"OtherRequisitionTitle": null,
"requisitionFlexFields": [
{
"Value": "Bachelor of Technology",
"Prompt": "Preferred Degree",
"ControlType": "SingleChoiceList",
"SequenceNumber": 1
}
],
"ApplyWhenNotPostedFlag": true,
"DomesticTravelRequired": null,
"ExternalDescriptionStr": "<p style=\"margin-bottom: 0in; margin-top: 0in\"> </p>\n<p style=\"margin-bottom: 0in; margin-top: 0in\"><span><strong>Position Duties</strong> This position is for a Cyber Defense Center (CDC) Detection Analyst specializing in initial threat triage. The role involves swiftly assessing and prioritizing security incidents to determine their severity and potential impact. You will be responsible for promptly identifying and investigating various threats, initiating timely response actions, and escalating to appropriate teams for further investigation and/or remediation.</span></p>\n<p style=\"margin-bottom: 0in; margin-top: 0in\"><span><strong>Work Schedule & Location</strong></span></p>\n<ul style=\"list-style-type: disc\">\n <li style=\"margin-bottom: 0in; margin-top: 0in\"><span><strong>Location:</strong> This role is hybrid, with on-site work in Southeast Michigan. </span></li>\n <li style=\"margin-bottom: 0in; margin-top: 0in\"><span><strong>Standard Hours:</strong> Standard working hours are typically 8:00 AM – 5:00 PM ET.</span></li>\n <li style=\"margin-bottom: 0in; margin-top: 0in\"><span><strong>Shift Lead Rotation:</strong> Candidates must be willing to support a Shift Lead rotation at least once per calendar quarter. During these weeks, the shift is 11:00 AM – 8:00 PM during Eastern Daylight Time (EDT) and 10:00 AM – 7:00 PM during Eastern Standard Time (EST).</span></li>\n <li style=\"margin-bottom: 0in; margin-top: 0in\"><span><strong>Weekend Coverage:</strong> Candidates must be willing to work at least one weekend per calendar quarter as part of Shift Lead Rotation.</span></li>\n</ul>",
"ObjectVerNumberProfile": null,
"PrimaryLocationCountry": "US",
"CorporateDescriptionStr": "<span>At Ford Motor Company, we believe freedom of movement drives human progress. With our incredible plans for the future of mobility, we have a wide variety of opportunities for you to accelerate your career and help us define tomorrow’s transportation.</span>",
"ExternalPostedStartDate": "2026-06-03T18:39:49+00:00",
"ExternalQualificationsStr": "<p style=\"margin-bottom: 0in; margin-top: 0in;\"><span style=\"font-size: 10pt; line-height: 115%;\"><strong> Qualifications: </strong></span></p><ul style=\"list-style-type: disc;\"><li style=\"margin-bottom: 0in; margin-top: 0in;\"><strong>Education:</strong> Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related technical field (or equivalent professional experience).</li><li style=\"margin-bottom: 0in; margin-top: 0in;\"><strong>Professional Experience:</strong> 3+ years of experience in a Security Operations Center (SOC) or Cyber Defense Center (CDC), including: <ul style=\"list-style-type: circle;\"><li style=\"margin-bottom: 0in; margin-top: 0in;\">Hands-on experience with SIEM platforms and EDR/XDR tools.</li><li style=\"margin-bottom: 0in; margin-top: 0in;\">Performing data correlation and analysis of system logs (Firewall, Network Flow, IDS/IPS, and Operating System logs).</li><li style=\"margin-bottom: 0in; margin-top: 0in;\">Incident handling and triage, including the resolution of escalations and clear communication during active security events.</li></ul></li><li style=\"margin-bottom: 0in; margin-top: 0in;\"><strong>Foundational Knowledge:</strong> In-depth understanding of Operating Systems (Windows, Linux, Mac), network protocols (TCP/IP, DNS, HTTP), and core infrastructure technologies.</li><li style=\"margin-bottom: 0in; margin-top: 0in;\"><strong>Soft Skills:</strong> <ul style=\"list-style-type: circle;\"><li style=\"margin-bottom: 0in; margin-top: 0in;\">Ability to work in a fast-paced, high-stress environment with a strong sense of urgency and attention to detail.</li><li style=\"margin-bottom: 0in; margin-top: 0in;\">Strong deductive reasoning, critical thinking, and prioritization skills.</li><li style=\"margin-bottom: 0in; margin-top: 0in;\">Excellent oral and written communication skills—able to translate technical items into non-technical terms.</li></ul></li><li style=\"margin-bottom: 0in; margin-top: 0in;\"><strong>Professionalism:</strong> High level of independent initiative, integrity, and a disciplined approach to adhering to procedures.</li></ul><p style=\"margin-bottom: 0in; margin-top: 0in;\"> </p><p style=\"margin-bottom: 0in;\"><strong>Preferred Qualifications</strong>:</p><ul style=\"list-style-type: disc;\"><li style=\"margin-bottom: 0in;\"><strong>Cloud Security: </strong>2+ years of experience with Google Cloud Platform (GCP) or Microsoft Azure, specifically analyzing cloud-native security logs.</li><li style=\"margin-bottom: 0in;\"><strong>AI & Automation: </strong>Experience leveraging or tuning Artificial Intelligence (AI) and Machine Learning (ML) tools to improve threat detection or automate manual triage tasks.</li><li style=\"margin-bottom: 0in;\"><strong>Scripting:</strong> Proficiency in scripting languages such as Python, PowerShell, Bash, or SQL to automate workflows or parse data.</li><li style=\"margin-bottom: 0in;\"><strong>Ford Specifics:</strong> Familiarity with Ford’s computing infrastructure and the Software Development Methodology (SDM).</li><li style=\"margin-bottom: 0in;\"><strong>Certifications: </strong>Preferred industry credentials such as GIAC (GCIH, GCIA), CEH or CIISP.</li></ul><p> </p><p><br>You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply!</p><p>As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including:<br>• Immediate medical, dental, vision and prescription drug coverage<br>• Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more<br>• Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more<br>• Vehicle discount program for employees and family members and management leases<br>• Tuition assistance<br>• Established and active employee resource groups<br>• Paid time off for individual and team community service<br>• A generous schedule of paid holidays, including the week between Christmas and New Year’s Day<br>• Paid time off and the option to purchase additional vacation time.</p><p>This position is a salary grade 7-8 and ranges from $99,600-$192,900. <br> </p><p>Final determination of salary grade will be based on candidate's skills and experience, and base salary will be set within the applicable range according to job scope, responsibility and competitive market value.</p><p>For more information on salary and benefits, click here: https://fordcareers.co/GSR</p><p>Visa sponsorship is not available for this position.</p><p>Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire.</p><p>We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call 1-888-336-0660.</p><p>This position is hybrid. Candidates who are in commuting distance to a Ford hub location may be required to be onsite four or more days per week.</p><p> #LI-Hybrid</p><p> #LI-GR1 </p><p style=\"margin-bottom: 0in;\"> </p><p style=\"margin-bottom: 0in;\"> </p>",
"InternalQualificationsStr": "<p style=\"margin-bottom: 0in; margin-top: 0in;\"><span style=\"font-size: 10pt; line-height: 115%;\"><strong> Qualifications: </strong></span></p><ul style=\"list-style-type: disc;\"><li style=\"margin-bottom: 0in; margin-top: 0in;\"><strong>Education:</strong> Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related technical field (or equivalent professional experience).</li><li style=\"margin-bottom: 0in; margin-top: 0in;\"><strong>Professional Experience:</strong> 3+ years of experience in a Security Operations Center (SOC) or Cyber Defense Center (CDC), including: <ul style=\"list-style-type: circle;\"><li style=\"margin-bottom: 0in; margin-top: 0in;\">Hands-on experience with SIEM platforms and EDR/XDR tools.</li><li style=\"margin-bottom: 0in; margin-top: 0in;\">Performing data correlation and analysis of system logs (Firewall, Network Flow, IDS/IPS, and Operating System logs).</li><li style=\"margin-bottom: 0in; margin-top: 0in;\">Incident handling and triage, including the resolution of escalations and clear communication during active security events.</li></ul></li><li style=\"margin-bottom: 0in; margin-top: 0in;\"><strong>Foundational Knowledge:</strong> In-depth understanding of Operating Systems (Windows, Linux, Mac), network protocols (TCP/IP, DNS, HTTP), and core infrastructure technologies.</li><li style=\"margin-bottom: 0in; margin-top: 0in;\"><strong>Soft Skills:</strong> <ul style=\"list-style-type: circle;\"><li style=\"margin-bottom: 0in; margin-top: 0in;\">Ability to work in a fast-paced, high-stress environment with a strong sense of urgency and attention to detail.</li><li style=\"margin-bottom: 0in; margin-top: 0in;\">Strong deductive reasoning, critical thinking, and prioritization skills.</li><li style=\"margin-bottom: 0in; margin-top: 0in;\">Excellent oral and written communication skills—able to translate technical items into non-technical terms.</li></ul></li><li style=\"margin-bottom: 0in; margin-top: 0in;\"><strong>Professionalism:</strong> High level of independent initiative, integrity, and a disciplined approach to adhering to procedures.</li></ul><p style=\"margin-bottom: 0in; margin-top: 0in;\"> </p><p style=\"margin-bottom: 0in;\"><strong>Preferred Qualifications</strong>:</p><ul style=\"list-style-type: disc;\"><li style=\"margin-bottom: 0in;\"><strong>Cloud Security: </strong>2+ years of experience with Google Cloud Platform (GCP) or Microsoft Azure, specifically analyzing cloud-native security logs.</li><li style=\"margin-bottom: 0in;\"><strong>AI & Automation: </strong>Experience leveraging or tuning Artificial Intelligence (AI) and Machine Learning (ML) tools to improve threat detection or automate manual triage tasks.</li><li style=\"margin-bottom: 0in;\"><strong>Scripting:</strong> Proficiency in scripting languages such as Python, PowerShell, Bash, or SQL to automate workflows or parse data.</li><li style=\"margin-bottom: 0in;\"><strong>Ford Specifics:</strong> Familiarity with Ford’s computing infrastructure and the Software Development Methodology (SDM).</li><li style=\"margin-bottom: 0in;\"><strong>Certifications: </strong>Preferred industry credentials such as GIAC (GCIH, GCIA), CEH or CIISP.</li></ul><p> </p><p><br>You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply!</p><p>As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including:<br>• Immediate medical, dental, vision and prescription drug coverage<br>• Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more<br>• Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more<br>• Vehicle discount program for employees and family members and management leases<br>• Tuition assistance<br>• Established and active employee resource groups<br>• Paid time off for individual and team community service<br>• A generous schedule of paid holidays, including the week between Christmas and New Year’s Day<br>• Paid time off and the option to purchase additional vacation time.</p><p>This position is a salary grade 7-8 and ranges from $99,600-$192,900. <br> </p><p>Final determination of salary grade will be based on candidate's skills and experience, and base salary will be set within the applicable range according to job scope, responsibility and competitive market value.</p><p>For more information on salary and benefits, click here: https://fordcareers.co/GSR</p><p>Visa sponsorship is not available for this position.</p><p>Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire.</p><p>We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call 1-888-336-0660.</p><p>This position is hybrid. Candidates who are in commuting distance to a Ford hub location may be required to be onsite four or more days per week.</p><p> #LI-Hybrid</p><p> #LI-GR1 </p><p style=\"margin-bottom: 0in;\"> </p><p style=\"margin-bottom: 0in;\"> </p>",
"OrganizationDescriptionStr": "We believe that freedom of movement drives human progress. Ford Information Technology (IT) is shaping the future of mobility by redefining the transportation landscape, enhancing the customer experience and improving people’s lives. Join the Ford family as we change the way the world moves.",
"primaryLocationCoordinates": [
{
"Latitude": "42.32207",
"Longitude": "-83.17629",
"CountryCode": "US",
"GeographyId": 300000009182319,
"GeographyNodeId": 100036559723376
}
],
"ExternalResponsibilitiesStr": "<p style=\"margin-bottom: 0in;\"><strong>Responsibilities:</strong></p><ul style=\"list-style-type: disc;\"><li><p style=\"margin-bottom: 0in;\">Perform initial triage and investigation of various security incidents to determine the impact on Ford, including phishing, malicious software, reconnaissance activities (probes/scans), data exfiltration, and policy violations.</p><ul style=\"list-style-type: circle;\"><li><p style=\"margin-bottom: 0in; margin-right: 0in; margin-top: 0in;\">Conduct daily analysis using a range of tools, including SIEM, EDR/XDR, SOAR, and Sandbox analysis platforms.</p></li><li><p style=\"margin-bottom: 0in; margin-right: 0in; margin-top: 0in;\">Investigate alerts across multi-cloud (Azure, GCP, AWS) and on-premises environments.</p></li><li><p style=\"margin-bottom: 0in; margin-right: 0in; margin-top: 0in;\">Collaborate with internal business units and technical teams to investigate and contain incidents.</p></li></ul></li><li><p style=\"margin-bottom: 0in;\">Respond to cybersecurity inquiries received from Ford personnel, providing clear guidance and risk assessment.</p></li><li><p style=\"margin-bottom: 0in;\">Execute and maintain security playbooks and standard operating procedures (SOPs) to ensure consistent, repeatable, and efficient incident resolution.</p></li><li><p style=\"margin-bottom: 0in;\">Effectively document investigation details for both technical peer review and non-technical stakeholders.</p></li><li><p style=\"margin-bottom: 0in;\">Identify and map attacker Tools, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) to the MITRE ATT&CK framework to enhance future detection and prevention.</p></li><li><p style=\"margin-bottom: 0in;\">Support Shift Lead rotation at least once per calendar quarter, managing escalations and team coordination.</p></li><li><p style=\"margin-bottom: 0in;\">Monitor the global threat landscape and stay up-to-date with emerging cybersecurity trends to proactively improve Ford’s security posture.</p></li><li><p style=\"margin-bottom: 0in;\">Utilize AI-driven threat detection tools to enhance triage accuracy, reduce false positives, and accelerate the identification of emerging attack patterns.</p></li></ul><p style=\"margin-bottom: 0in;\"> </p>",
"InternalResponsibilitiesStr": "<p style=\"margin-bottom: 0in;\"><strong>Responsibilities:</strong></p><ul style=\"list-style-type: disc;\"><li><p style=\"margin-bottom: 0in;\">Perform initial triage and investigation of various security incidents to determine the impact on Ford, including phishing, malicious software, reconnaissance activities (probes/scans), data exfiltration, and policy violations.</p><ul style=\"list-style-type: circle;\"><li><p style=\"margin-bottom: 0in; margin-right: 0in; margin-top: 0in;\">Conduct daily analysis using a range of tools, including SIEM, EDR/XDR, SOAR, and Sandbox analysis platforms.</p></li><li><p style=\"margin-bottom: 0in; margin-right: 0in; margin-top: 0in;\">Investigate alerts across multi-cloud (Azure, GCP, AWS) and on-premises environments.</p></li><li><p style=\"margin-bottom: 0in; margin-right: 0in; margin-top: 0in;\">Collaborate with internal business units and technical teams to investigate and contain incidents.</p></li></ul></li><li><p style=\"margin-bottom: 0in;\">Respond to cybersecurity inquiries received from Ford personnel, providing clear guidance and risk assessment.</p></li><li><p style=\"margin-bottom: 0in;\">Execute and maintain security playbooks and standard operating procedures (SOPs) to ensure consistent, repeatable, and efficient incident resolution.</p></li><li><p style=\"margin-bottom: 0in;\">Effectively document investigation details for both technical peer review and non-technical stakeholders.</p></li><li><p style=\"margin-bottom: 0in;\">Identify and map attacker Tools, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) to the MITRE ATT&CK framework to enhance future detection and prevention.</p></li><li><p style=\"margin-bottom: 0in;\">Support Shift Lead rotation at least once per calendar quarter, managing escalations and team coordination.</p></li><li><p style=\"margin-bottom: 0in;\">Monitor the global threat landscape and stay up-to-date with emerging cybersecurity trends to proactively improve Ford’s security posture.</p></li><li><p style=\"margin-bottom: 0in;\">Utilize AI-driven threat detection tools to enhance triage accuracy, reduce false positives, and accelerate the identification of emerging attack patterns.</p></li></ul><p style=\"margin-bottom: 0in;\"> </p>",
"InternationalTravelRequired": null
},
"list_job": {
"Id": "64098",
"Title": "Cyber Defense Analyst",
"JobType": null,
"Distance": 1780444800000,
"JobShift": null,
"Language": "US",
"WorkDays": null,
"JobFamily": null,
"Relevancy": 9,
"WorkHours": null,
"Department": null,
"HotJobFlag": false,
"PostedDate": "2026-06-03",
"StudyLevel": null,
"WorkerType": null,
"GeographyId": 300000009182319,
"JobFunction": null,
"JobSchedule": null,
"BusinessUnit": null,
"ContractType": null,
"ManagerLevel": null,
"Organization": null,
"TrendingFlag": true,
"workLocation": [
{
"Country": "US",
"Region1": "Wayne",
"Region2": "MI",
"Region3": null,
"Building": "FMCC",
"Latitude": 42.32771,
"Longitude": -83.18658,
"LocationId": 300000005663580,
"PostalCode": "48126",
"TownOrCity": "Dearborn",
"AddressLine1": "1 American Rd",
"AddressLine2": null,
"AddressLine3": null,
"AddressLine4": null,
"LocationName": "FMCC Headquarters Dearborn"
}
],
"LegalEmployer": null,
"MediaThumbURL": null,
"WorkplaceType": "Hybrid",
"BusinessUnitId": 300000004335154,
"OrganizationId": 300000004335154,
"PostingEndDate": null,
"LegalEmployerId": 300000004907524,
"PrimaryLocation": "Dearborn, MI, United States",
"WorkDurationYears": null,
"WorkplaceTypeCode": "ORA_HYBRID",
"BeFirstToApplyFlag": false,
"WorkDurationMonths": null,
"otherWorkLocations": [],
"secondaryLocations": [],
"ShortDescriptionStr": "Cyber Defense Analyst",
"requisitionFlexFields": [],
"DomesticTravelRequired": null,
"PrimaryLocationCountry": "US",
"ExternalQualificationsStr": null,
"ExternalResponsibilitiesStr": null,
"InternationalTravelRequired": null
},
"detail_meta": {
"url": "https://efds.fa.em5.oraclecloud.com/hcmRestApi/resources/latest/recruitingCEJobRequisitionDetails?expand=all&onlyData=true&finder=ById;Id=%2264098%22,siteNumber=CX_1",
"http_status": 200,
"content_type": "application/json",
"response_bytes": 22149
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/feff9f516046e4004a2cefd63f2598757d4d7319?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/fc791186-3bfa-4e9d-8648-0d2f6f66937dJSONGET https://api.bluedoor.sh/job-postings/v1/sources/d8110a61-5510-417b-a74c-f58816339c6bJSONGET https://api.bluedoor.sh/job-postings/v1/jobs/feff9f516046e4004a2cefd63f2598757d4d7319/eventsJSON