Lead Cybersecurity Engineer - Continuous Control Monitoring

The Lead Cybersecurity Engineer will be responsible for the development of a platform that will continuously monitor and report on the state of Cox Automotive’s critical cyber controls. The scope of this role is Cox Automotive wide and includes both enterprise and product technologies as well as both domestic and international business units.

This role will directly report to the Director of Continuous Control Monitoring.

Responsibilities

• Design and build consumable and audience appropriate reporting of the state of critical cyber controls for consumption by engineering teams, engineering team managers and directors, cybersecurity leaders, and senior technology and business leaders.

• Partner with cybersecurity, enterprise and product technology teams on the development of appropriate scoring algorithms and measurement criteria.

• Build and maintain data model that supports overall critical cybersecurity objectives and priorities.

• Lead requirements, backlog management and design discussions.

• Collaborate with technical partners to create a data stack that can be used to deliver end-user insights.

• Construct complex database queries and create engaging dashboards and visualizations that support data aggregation and reporting on actionable insights.

• Partner with stakeholders to understand the problem at hand, help generate hypothesis and problem formulation and the selection of an appropriate methodology to solve the problem.

• Lead user acceptance testing to ensure high-level data availability and data quality.

• Develop a training program to ensure ongoing education of continuous control monitoring resources.

• Mentor Continuous Control Monitoring team members.

Minimum Qualifications

• Bachelor’s degree in a related discipline and 6 years’ experience in a related field. The right candidate could also have a different combination, such as a master's degree and 4 years’ experience; a Ph.D. and 1 years’ experience in a related field; or 18 years’ experience in a related field.

• Excellent interpersonal, leadership, presentation, and collaborative skills to work effectively with teams throughout organization.

• Strong ability to interpret data and develop actionable data-based visualizations to "tell the story".

• Strong knowledge and experience in data analysis and data visualization.

• Strong programming skills and ability to utilize a variety of data, analytic software, languages and tools (SQL, Python, Power BI, GitHub, Snowflake, etc.).

• Demonstrated track record of both project and operational delivery.

Preferred Qualifications:

• Demonstrated knowledge and expertise in governance, risk management, and cybersecurity frameworks and standards (e.g., NIST, ISO, CIS, OWASP).

• At least one relevant industry certification – CISSP, SANS GIAC, C|EH, CISM, CRISC, CISA.