IAM Engineer, Ford Energy
Glendale, WI - USA
Job Summary
The IAM Engineer will lead the technical design deployment and local governance of IAM frameworks for Ford Energy collaborating with Enterprise Architects for final design approval of identity authentication and authorization systems for Ford Energys grid-scale and commercial BESS ecosystem. Working in close coordination with Ford Enterprise IT Cybersecurity and Ford Energy engineering teams you will be responsible for implementing and designing IAM configurations for Ford Energys BESS aligning with and adhering to established Ford Enterprise IT and Cybersecurity architectural standards.
Responsibilities
What youll do...
- IAM Architecture & Governance
- Lead the technical design deployment and local governance of IAM frameworks for Ford Energy collaborating with Enterprise Architects for final design approval.
- Define and maintain testable IAM requirements for cloud platforms SCADA systems and edge devices ensuring traceability from concept to deployment.
Establish secure identity lifecycle processes (provisioning de-provisioning and transfer) for internal employees external partners and utility customers.
Authentication & Authorization Security
Implement and secure modern authentication (MFA SSO Passwordless) and federation standards (OIDC OAuth 2.0 SAML 2.0).
Design secure machine-to-machine (M2M) authentication and API authorization mechanisms for connected BESS assets and grid controllers.
Deploy and manage Privileged Access Management (PAM) solutions to secure high-risk administrative access to critical infrastructure.
Compliance Auditing & Monitoring
Ensure IAM architectures comply with industrial standards such as NERC CIP NIST SP 800-82 and Fords global cybersecurity policies.
Lead access reviews vulnerability assessments and remediation plans for IAM-related risks.
Develop technical security case materials IAM documentation and evidence for design gates audits and compliance reviews.
Cross-Functional Co-Engineering
Collaborate with software cloud platform OT network and physical security teams to align identity strategies across IT and OT environments.
Partner with global suppliers and Ford Enterprise IAM teams to integrate Ford Energy platforms with corporate identity providers.
Communicate identity risks access governance strategies and technical recommendations to executive-level stakeholders.
Qualifications
Youll have...
Required
- Bachelors degree in Computer Science Cybersecurity Computer Engineering or Information Technology or 5 years of experience in Identity and Access Management (IAM) engineering or architecture.
- Practical experience with enterprise IAM/IdP platforms (e.g. Okta Ping Identity Microsoft Entra ID/Azure AD) and PAM solutions (e.g. CyberArk HashiCorp Vault).
- Demonstrated experience with OAuth 2.0 OIDC SAML LDAP and Active Directory structures.
- Strong communication skills with the ability to navigate cross-functional engineering and IT teams.
Even better you may have...
Preferred
- Masters degree in a relevant technical field.
- Direct experience implementing IAM in industrial control systems (ICS) SCADA or utility-scale OT environments.
- Familiarity with NERC CIP (particularly CIP-004 and CIP-007 access control standards) or NIST SP 800-53/800-82.
- Experience with API gateway security microservices security and securing IoT/edge device identities (PKI certificates).
- Relevant professional certifications (e.g. CISSP CISM Certified Identity and Access Manager - CIAM or vendor-specific IAM certs).
Leadership Attributes
- Collaboration-Minded Partner: Skilled at building trust and driving alignment across enterprise IAM teams OT cybersecurity software engineering groups and external partners to achieve unified security goals.
- Clear Communicator: Able to translate complex identity authentication and compliance concepts into clear actionable business terms for both technical working groups and non-technical stakeholders.
- Proactive Innovator: Highly organized and execution-focused with a passion for identifying automation opportunities (such as scripting and automated workflows) to reduce operational toil and enhance security posture.
- Resilient & Adaptable: Capable of navigating ambiguity making timely risk-based decisions in a fast-paced development environment and knowing when to escalate complex issues.
- Governance & Compliance Steward: Deeply committed to maintaining high standards of security ensuring local IAM configurations strictly align with global Ford policies and industrial regulations (e.g. NERC CIP NIST).
- Continuous Learner & Mentor: Actively shares knowledge coaches team members on IAM best practices and stays ahead of evolving cybersecurity trends and identity technologies.
Location & Travel
- Location: Glendale KY. This position is hybrid-friendly for candidates with a proven ability to deliver results in a flexible environment.
- Travel Expectations: Occasional travel to support suppliers test houses and customer sites
You may not check every box or your experience may look a little different from what weve outlined but if you think you can bring value to Ford Motor Company we encourage you to apply!
As an established global company we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe or keep you close to home Will your career be a deep dive into what you love or a series of new teams and new skills Will you be a leader a changemaker a technical expert a culture builderor all of the above No matter what you choose we offer a work life that works for you including:
- Immediate medical dental vision and prescription drug coverage
- Flexible family care days paid parental leave new parent ramp-up programs subsidized back-up child care and more
- Family building benefits including adoption and surrogacy expense reimbursement fertility treatments and more
- Vehicle discount program for employees and family members and management leases
- Tuition assistance
- Established and active employee resource groups
- Paid time off for individual and team community service
- A generous schedule of paid holidays including the week between Christmas and New Years Day
- Paid time off and the option to purchase additional vacation time.
This position is a salary grade 6 - 7and ranges from $74300-$144900.
Final determination of salary grade will be based on candidates skills and experience and base salary will be set within the applicable range according to job scope responsibility and competitive market value.
For more information on salary and benefits click here: sponsorship is not available for this position.
Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire.
We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race religion color age sex national origin sexual orientation gender identity disability status or protected veteran the United States if you need a reasonable accommodation for the online application process due to a disability please call 1-.
This position is hybrid. Candidates who are in commuting distance to a Ford hub location may be required to be onsite four or more days per week.
Company: As Ford establishes a wholly owned subsidiary focused on Battery Energy Storage Systems this role will initially be employed by Ford and is expected to transition to the subsidiary within one year.
#LI-KF2
#FordEnergy
#LI-Hybrid
Required Experience:
IC
About Company
FordĀ® is Built for America. Discover the latest lineup in new Ford vehicles! Explore hybrid & electric vehicle options, see photos, build & price, search inventory, view pricing & incentives & see the latest technology & news happening at Ford.