Opportunity to work in a hybrid model: Potential to work 4 days onsite and 1 day remote
Why GMF Cybersecurity?
Our Cybersecurity team is tasked with the security engineering, regulatory response, third party risk, and incident response capabilities necessary to secure GM Financial, the captive auto finance subsidiary of General Motors. Reporting directly to the CEO, our Cybersecurity team enjoys unprecedented support to deliver the highest level of security capabilities using cutting edge technologies and automating mundane tasks, allowing our teams to focus on interesting and rewards security work. As a part of GM, you'll have the opportunity to work on Cybersecurity projects across financial services, automotive, manufacturing, high-tech, and military industries. We are looking for team players who want the freedom to innovate leading edge capabilities to join our growing Cybersecurity team.
Responsibilities
About the role:
You will identify core requirements, design, and implement security technologies and work with stakeholders to perform ongoing tuning and alerting on those technologies. Security technologies may include but are not limited to: Data Loss Prevention (DLP), Security Incident Event Management (SIEM), User Behavior Analytics, Host Intrusion Prevention (HIPS) and Web/Email Gateway. You will be responsible for both technical implementation of systems and communication of security requirements to management and security leadership. You will be responsible, as necessary, with assisting in investigations into security threats.
Qualifications
What makes you a dream candidate?
Local and wide area networking concepts, principles and protocols
Advanced knowledge in Infrastructure design and management
Advanced understanding of IT Service Management (ITSM) best practices and processes
Advanced knowledge of TCP/IP, OSI model and imp subnetting
High level understanding of technology infrastructure, security concepts and platforms
Strong understanding of application layer protocols including HTTP, SSH, SSL and DNS
Knowledge and stay abreast on the latest security and privacy legislation, regulations, advisories, alerts and vulnerabilities
Proven expertise developing custom rule sets for tools to identify specific attacks and exploits based on feedback and requirements from business stakeholders including Compliance and Legal Counsel
Background in scripting and automation in widely used languages such as Python, Go, Ruby, etc
Experience:
Bachelor's Degree in related field or equivalent work experience strongly preferred
Minimum 1-5 years of experience in large and complex business environments with a successful track record working directly with senior level management preferred
Minimum 1 year experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development preferred
Licenses:
Cybersecurity related certifications strongly preferred
What we offer: Benefits effective your first day, 401K, Bonding leave for new parents (12 weeks, 100% paid), Pet insurance, training, certifications
Our Culture: Our team members define and shape our culture - an environment that welcomes new ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work - we thrive.
Compensation: Competitive Salary
Work Life Balance: Flexible hybrid work environment
