Opportunity to work in a hybrid model: Potential to work 4 days onsite and 1 day remote

Why GMF Cybersecurity?

Our Cybersecurity team is tasked with the security engineering, regulatory response, third party risk, and incident response capabilities necessary to secure GM Financial, the captive auto finance subsidiary of General Motors. Reporting directly to the CEO, our Cybersecurity team enjoys unprecedented support to deliver the highest level of security capabilities using cutting edge technologies and automating mundane tasks, allowing our teams to focus on interesting and rewarding security work.  As a part of GM, you’ll have the opportunity to work on Cybersecurity projects across financial services, automotive, manufacturing, high-tech, and military industries.  We are looking for team players who want the freedom to innovate leading edge capabilities to join our growing Cybersecurity team.

What makes you a dream candidate?

Advanced knowledge of local and wide area networking concepts, including TCP/IP, OSI model, routing, switching, and subnettingStrong expertise in infrastructure design and managementAdvanced understanding of IT Service Management (ITSM) best practices and processesProven experience implementing cyber security solutions such as Intrusion Prevention, Database Monitoring and container security toolsSkilled in tuning security tools to optimize alerts and detectionExperience collaborating across cybersecurity teams and management levelsDeep understanding of technology infrastructure, security concepts, and platformsStrong understanding of application layer protocols including HTTP, SSH, SSL, and DNSUp-to-date knowledge of security and privacy legislation, regulations, advisories, alerts, and vulnerabilitiesProven ability to develop custom rule sets for detecting specific attacks and exploitsExperience working with Compliance and Legal teams to define detection requirementsSolid understanding of cloud technologies and conceptsExperience securing cloud deployments on Microsoft Azure, Amazon Web Services (AWS), or Google Cloud Platform (GCP)Experience deploying environments using Infrastructure as Code (IaC)Familiarity with declarative IaC approaches and immutable infrastructure (preferred)Experience securing containerized environments, Kubernetes, and managed Kubernetes PaaS servicesExperience working in Agile and DevOps environmentsExperience managing infrastructure through CI/CD pipelinesProficiency with Linux operating systems and microservice architectureBackground in scripting and automation using Python, Go, Ruby, or similar languages (preferred)Demonstrated success in project management

Additional Skills:

Strategic thinker with a collaborative decision-making approachSkilled in structured data analysis to identify trends, variability, and business impactCommunicates clearly, concisely, and intelligently across all mediumsFosters open communication, listens actively, and writes effectivelyExperience with alternate device management methods using SSH, serial connections, and TMSH CLIExpert-level knowledge of IT security processes, controls, infrastructure, and networkingCreative problem-solver with an open-minded approach to innovationProficient in documentation tools such as Microsoft Visio and Office SuiteAdvanced understanding of security standards and frameworks (e.g., NIST Cybersecurity Framework, ISO 27001)Deep experience with network and VLAN segmentationStrong technical writing skills

Experience and Education:

Minimum of 1 to 5 years of experience in large and complex business environments with a successful track record working directly with senior level management preferredMinimum of 1 year experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development preferredBachelor’s Degree in related field or equivalent work experience strongly preferredCybersecurity related certifications strongly preferred

What We Offer: Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays.

Our Culture: Our team members define and shape our culture — an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work — we thrive.

Compensation: Competitive pay and bonus eligibility

Work Life Balance: Flexible hybrid work environment, 4-days a week in office 
 

#LI-hybrid

#GMFjobs

#LI-KC1
 

About the role:

The Cybersecurity Engineer is responsible for developing, deploying, monitoring, tuning, evaluating, reporting, and maintaining systems and procedures; and to identify and mitigate threats to the corporate network, corporate assets, and corporate users.  This is not limited to on-premises as most activities involves cloud-based infrastructure.  This team member will identify core requirements, design and implement security technologies and work with stakeholders to perform ongoing tuning and alerting on those technologies. Security technologies will include but are not limited to: Building Cloud security guardrails, building Splunk queries and alerts, engineering and tuning policies and alerts, implementing various other cybersecurity related products in an enterprise environment.  This team member will be responsible for both technical implementation of systems and communication of security requirements to management and security leadership.  Additionally, this team member will be responsible, as necessary, with assisting in investigations into security threats.
 

Prepares technical requirements and standardsAssists in the identification, engineering and designing of security technologies including, but not limited to: Security Incident and Event Managers (SIEM) and threat intelligence solutions, Web filtering (proxy, network AV), Intrusion Detection and Prevention Systems (IDS/IPS), Endpoint security solutions, Data Loss Prevention (DLP), Vulnerability Management (VM), Threat Intelligence and Threat Detection, Web Application Firewalls (WAF), Email Gateways, Breach Mitigation, Certificate Management, SSL encryption and decryption, Identity Management, Cloud Security, Database Security, Web Gateways, VPNs and FirewallsPerforms analysis of system logs to identify unauthorized use or accessCreates, analyzes and communicates security metrics to leadershipParticipates in emergency response team activities for responding to various security incidentsProvides in-depth support for information security incidents including internal violations, hacker attacks, virus and system outagesPrepares and updates information procedures, standards and/or other technical requirement documentsParticipates in periodic information systems risk assessmentsDevelops detailed proposals and plans for new information security systems that would enhance or enable new capabilities for network or host systemsRecommends and evaluates security tools to identify more efficient and effective security measures