Cyber Security Engineer

Latitude AI (lat.ai) develops automated driving technologies, including L3, for Ford vehicles at scale. We’re driven by the opportunity to reimagine what it’s like to drive and make travel safer, less stressful, and more enjoyable for everyone.

When you join the Latitude team, you’ll work alongside leading experts across machine learning and robotics, cloud platforms, mapping, sensors and compute systems, test operations, systems and safety engineering – all dedicated to making a real, positive impact on the driving experience for millions of people. 

As a Ford Motor Company subsidiary, we operate independently to develop automated driving technology at the speed of a technology startup. Latitude is headquartered in Pittsburgh with engineering centers in Dearborn, Mich., and Palo Alto, Calif.

Meet the team:

The Enterprise Cyber Security team is focused on ensuring the resilience of our corporate environment with focus on protection of our corporate systems, IP, and employee data. We are a close-knit team with strong cross-functional roles in the company.

As a Cyber Security Engineer, you will be the hands-on technical lead securing our Infrastructure and assets (Servers, Client Endpoints, VMs, etc…) with a focus on Data Protection/Loss Prevention (DLP/CASB/MDM, etc…), and Identity Management Solutions (Entra/AD/LDAP/MFA). You will be backing up others on the team including Incident Response and Vulnerability Management. You should have a deep understanding of infrastructure and solutions that support management of assets and the operations depending on it, including our software/hardware/network engineering, fleet operations requirements, and administrative functions. You will use your knowledge and experience to design, implement, measure, and continuously improve our security posture and tooling. 

What you’ll do: 

• Plan for, execute, and follow through on projects and engagements independently or with little guidance
• Manage and audit our Identity Provider Solutions (Entra, LDAP preferred)
• Apply best practices in software engineering, delivering projects on time, on budget, and with excellent quality and security configurations
• Create new deployments and architecture designs and review existing ones looking for design flaws, security improvements, and advocating for stronger security controls that meet functional and operational needs
• Work hand-in-hand with the IT and Product teams to review, research, design and develop security solutions that enable productivity, but maintain security
• Engage actively in software selection and deployment initiatives to assess and onboard security and other technical solutions for endpoints, development and production environments 
• Perform Security Assessments and Audits - Documenting findings, implementing remediation, or drafting Action Plans for remediation/mitigation
• Implement automation and orchestration aspects of security processes and tooling to integrating with APIs and applications/workflows across the organization and in our SIEM (Splunk and Apigee experience preferred)
• Identify, Develop, and deliver dashboards and report metrics on the status of the Cyber Security posture, and develop dashboards, reports, and define metrics for cross-functional teams
• Moderate and contribute to deployments and administrative controls that contribute to:
• Proactive monitoring, analysis, and correcting system security issues
• Development of scripts to automate, perform security checks, and develop tools to enhance support of the infrastructure and endpoint systems
• Implement and deploy solutions to protect infrastructure and Intellectual Property
• Developing playbooks/runbooks, operational and troubleshooting documentation for use internally and with external MDR providers
• Manage and deploy solutions for Data Protection consisting of MDM, EDR, DLP, CASB, and system hardening/compliance
• Provide ongoing support for various Incident, Vulnerability, and Security event workflows

What you'll need to succeed:

• Minimum requirements Bachelor's degree in Computer Engineering, Computer Science, Cyber Security or a related field and 2+ years of relevant experience, Master's degree, or PhD
• Relevant hands-on experience deploying and administering solutions as a Cyber Security Engineer and Operational Administrator
• 2+ years of related experience Incident Response management and assessing the risk/severity rating of incidents and exposures
• 2+ years Hands-on experience with tooling in the Entra, Intune, EDR, DLP, CASB, and Splunk SOAR/Enterprise Security and Logging/Alerting tools and Compliance/Response space
• Experience with MacOS, Linux, and Windows Systems Administration using configuration management software and tooling to manage systems across a large and distributed environments
• Strong understanding of Cyber Security Standards (ISO27001, NIST 800-53, CIS Benchmarks)
• Ability and experience with automation of Security Standards and Compliance scanning and configuration hardening, and detections for non-compliance
• Must have demonstrated proficiency and strength in verbal, written, presentation, and communications skills, including technical diagramming, interactions cross-functionally with teams outside of the Cyber Security Team
• High proficiency in Tooling for Identity Management and Authentication Solutions, Mobile Device Management, and Data Protection Tooling (Entra, Intune, Endpoint Agents)
• Proficiency in scripting languages, including Bash, Python, Go, or Java to create production level services and tools
• Proficiency in using Infrastructure as Code (IaC) to automate the deployment of Cyber Security Solutions. E.g. Terraform, Ansible, or others
• Ability to grasp new technologies quickly, prioritize and multitask on multiple responsibilities
• Hands-on Experience with patching and hardening Linux, MacOS, and Windows Systems (clients and servers) using standards such as the Center for Internet Security (CIS) Critical Security Controls 
• Proficient in Network Protocols and Host Firewall Management, with hands-on experience in configuration and optimization to ensure infrastructure network security at the host level and at perimeters
• Critical thinking and a holistic view of Cyber Security with ability to balance security requirements with mission needs and collaboration across teams
• Exceptional organizational and time management skills demonstrated through adept autonomy, creation of timelines, scope and priorities,  independent work, collaborative teamwork, and a professional demeanor
• Strong experience with architecting/deploying scalable security services and workloads in the infrastructure and endpoint space. Minimizing impact with regard to functional impact on compute workloads running on CPUs, GPUs, and Memory utilization
• Understand engineering design limitations and provide guidance for teams to secure their deployments to achieve desired performance in budget and on time
• An Independent take-charge attitude while being open-minded, creatively thinking, willing to take calculated risks, and make informed decisions
• A sense of comradery, compassion, and unparalleled passion/energy

What we offer you:

• Competitive compensation packages
• High-quality individual and family medical, dental, and vision insurance
• Health savings account with available employer match
• Employer-matched 401(k) retirement plan with immediate vesting
• Employer-paid group term life insurance and the option to elect voluntary life insurance
• Paid parental leave
• Paid medical leave
• Unlimited vacation
• 15 paid holidays
• Daily lunches, snacks, and beverages available in all office locations
• Pre-tax spending accounts for healthcare and dependent care expenses
• Pre-tax commuter benefits
• Monthly wellness stipend
• Adoption/Surrogacy support program
• Backup child and elder care program
• Professional development reimbursement
• Employee assistance program
• Discounted programs that include legal services, identity theft protection, pet insurance, and more
• Company and team bonding outlets: employee resource groups, quarterly team activity stipend, and wellness initiatives

Learn more about Latitude’s team, mission and career opportunities at lat.ai!

The expected base salary range for this full-time position in California is $133,280 - $199,920 USD. Actual starting pay will be based on job-related factors, including exact work location, experience, relevant training and education, and skill level. Latitude employees are also eligible to participate in Latitude’s annual bonus programs, equity compensation, and generous Company benefits program, subject to eligibility requirements.

Candidates for positions with Latitude AI must be legally authorized to work in the United States on a permanent basis. Verification of employment eligibility will be required at the time of hire.

We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status.