Cybersecurity Engineer

About Fisker Inc.

California-based Fisker Inc. is revolutionizing the automotive industry by developing the most emotionally desirable and eco-friendly electric vehicles on Earth. Passionately driven by a vision of a clean future for all, the company is on a mission to become the No. 1 e-mobility service provider with the world’s most sustainable vehicles. To learn more, visit www.FiskerInc.com – and enjoy exclusive content across Fisker’s social media channels: Facebook, Instagram, Twitter, YouTube and LinkedIn. Download the revolutionary new Fisker mobile app from the App Store or Google Play store.

  • Available during US hours (with an opportunity to switch to India hours in 3 months)

Role Overview:

  • The Cybersecurity Engineer will play a key role enabling the Enterprise Information & Cyber Security Management Systems (ISMS/CSMS), responsible for IT security architecture of enterprise applications (including ERP, CRM, HRIS, Cloud, etc.). Additionally, this role will serve as an engineering lead for cybersecurity operations services providing threat monitoring and detection for the enterprise.
  • The Cybersecurity Engineer is a hands-on role touching all enterprise information technologies within the enterprise and working very closely with backend application engineers within ERP, HRIS, CRM, and DevOps teams – enabling the connected vehicle. This role is essential for the daily monitoring of cyber incidents, the architecture and implementation of new security technologies, and the protection of data entrusted to the organization.

Duties and Responsibilities:

  • Serve as a cybersecurity expert and liaison to technical and operational leadership, helping to drive and coordinate cybersecurity integration and controls in the development and implementation of new enterprise services and technologies.
  • Serve as a cybersecurity subject matter expert for enterprise security architecture, asset management, configuration management, identity management, and related domains, including helping to mature security practices and capabilities with respect to technology projects, vendor/outsourcing arrangements, enterprise & cloud applications, and specialized equipment.
  • Use threat analysis to identify opportunities to improve cyber defenses. Identify opportunities for greater integration and automation of enterprise security operations and monitoring capabilities.
  • Use automated tools to identify risks and vulnerabilities in networks, interconnected systems, applications, and code; interpreting the results; and communicating and managing remediation action plans with technical and operational contacts.
  • Evaluate and understand and assist in communicating the benefits of complex and cutting-edge cybersecurity technologies to facilitate integration and augmentation of current systems and affect defense-in-depth strategies.
  • Facilitate and lead incident triage and emerging risk protocols as well as coordinate incident management functions and root-cause analysis.
  • Contribute to organization IT Security risk assessments, assisting with automation of measurement and reporting.
  • Mentor team members and provide educational sessions to improve cybersecurity operations workflows, incident investigative techniques, and system hardening design.

Minimum Qualifications:

  • BA/BS in an engineering or cybersecurity discipline, or relevant IT technical experience.
  • Excellent written and oral communication skills. Must be able to contribute to strategic initiatives.
  • Minimum of3-6 years supporting and developing security for information systems and applications.
  • Minimum of 3 years of experience in IT security architecture and design.
  • Expert understanding of incident management and vulnerability remediation.
  • Excellent technical investigating and problem-solving skills

Knowledge, Skills, Abilities, Competencies:

  • Ability to work alone and in a team setting.
  • Good verbal and written communication skills with a strong customer service orientation. Strong organizational and planning skills, with the ability to juggle multiple tasks and projects simultaneously.
  • Familiarity with cybersecurity industry standard frameworks such as NIST CSF, ISO27001, CSA/STAR/CCM, and Azure Security best practices.
  • Experience with the design and deployment of Microsoft 365 Defender security & Azure Defender security packages such as Azure AD Identity Protection, Defender for Endpoint, Defender for Office 365, Microsoft Defender for Cloud, Azure Sentinel, DLP/Microsoft Purview, Microsoft Cloud App Security, etc.
  • Previous experience working in a Cloud-First environment with Microsoft E5 licenses and Azure AD P2 licenses.
  • Experience within globally distributed, multicultural work environments to ensure cultural awareness and sensitivity of stakeholder ecosystems.

LI-HYBRID

Additional Requirements (if any):

  • Microsoft Azure Security Technologies (AZ-500) Certification is preferred.
  • Professional certification such as a CISSP, CCSP or other automotive security credentials is preferred or ability to obtain within first 6 months of employment.
  • Commitment to Automotive Cybersecurity industry involvement and participation
  • Must be willing to travel both domestically, as well as internationally, up to 10% of the time, as required
Organization: 
Fisker Inc