GM Financial
Cybersecurity Team Lead (Governance)
GM Financial, Irving, Texas, United States, 75084
Overview
Opportunity to work in a hybrid model: Potential to work 4 days onsite and 1 day remoteWhy GMF Cybersecurity?Our Cybersecurity team is tasked with the security engineering, regulatory response, third party risk, and incident response capabilities necessary to secure GM Financial, the captive auto finance subsidiary of General Motors. Reporting directly to the CEO, our Cybersecurity team enjoys unprecedented support to deliver the highest level of security capabilities using cutting edge technologies and automating mundane tasks, allowing our teams to focus on interesting and rewarding security work. As a part of GM, you’ll have the opportunity to work on Cybersecurity projects across financial services, automotive, manufacturing, high-tech, and military industries. We are looking for team players who want the freedom to innovate leading edge capabilities to join our growing Cybersecurity team.
Responsibilities
About the Role:The Cybersecurity Team Lead is responsible for managing a portion of the GM Financial (GMF) Cybersecurity Program designed to advise the organization on its management of Cybersecurity risk by supporting risk based management decisions; developing, deploying, monitoring, tuning, evaluating, reporting on and maintaining systems and procedures. They are also responsible for identifying and mitigating threats to the corporate network, corporate assets and corporate users to ensure the security of company systems and information assets. This team member is responsible for leading both technical implementation of systems and communication of security requirements to management and security leadership. Additionally, this team member will be responsible, as necessary, with leading investigations into security threats, working with internal and external groups to ensure the Cybersecurity program is operating effectively and efficiently and developing strong partnerships across the enterprise to ensure information assets are protected at the appropriate level.
Qualifications
What makes you a dream candidate?Knowledge of Leadership and Management of a technical team of professional engineersKnowledge of quality and management frameworksStrong presentation expertise, and the ability to coordinate and conduct meetingsFamiliarity with vendors, project expenses and purchasing requisitionsStrong network security knowledge including endpoint monitoring, web content filtering, intrusion detection and wireless securityTechnical understanding and experience in information security as it relates to server security, client security, user security, network communications and data storagePractical experience with database security, anti-malware, log retention, security intrusions, data loss and regulatory requirementsAdvanced knowledge of network protocols such as TCP/IP, DHCP, DNS, and HTTP/SAdvanced knowledge of packet capture methods and analysis of network flowsAdvanced knowledge of the OSI model and security that is associated with each layerAdvanced knowledge of security analytics techniques and practicesLocal and wide area networking concepts, principles and protocolsStrong working knowledge of Intel platforms, iSeries and pSeries serversAdvanced understanding of IT Service Management (ITSM) best practices and processesExperience with UML Design ToolsHigh level understanding of technology infrastructure, security concepts and platformsAdvanced knowledge of IBM pSeries hardware, operating systems and TSM backup infrastructureKnowledge and stay abreast on the latest security and privacy legislation, regulations, advisories, alerts and vulnerabilitiesKnowledge of IT security processes and controls as well as IT infrastructure and networking technical knowledgeKnowledge of Linux operating systems and microservice architecturePossess strong understanding of cloud technologies and conceptsBackground in scripting and automation in widely used languages such as Python, Go, Ruby, etcAdvanced knowledge of Network and VLAN segmentation
ExperienceBachelor’s Degree in related field or equivalent work experience strongly preferred5-7 years of years of experience in large and complex business environments with a successful track record working directly with senior level management with at least 3 years of experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering or Operations, Information Technology, Application Development, Access Control, Security Governance, Risk Management, Software Development Security, Cryptography, Security Architecture and Design, Operational Security, Business Continuity & Disaster Recovery, Legal Regulations, Investigations and Compliance, Physical (Environmental) Security, IT or Security Audit, IT or Security Compliance preferred2-3 years Experience securing cloud deployments on common platforms like Microsoft Azure, Amazon Web Services or Google Cloud Platform preferredExperience with deploying environments by defining infrastructure as code (IaC) preferredExperience with declarative IaC approaches and immutable infrastructure preferredExperience with securing container deployments, Kubernetes, managed Kubernetes PaaS services, Agile environments and DevOps environments preferredExperience with managing infrastructure through CI/CD pipelines preferredExperience in documentation tools such as Visio and Microsoft Office products preferredExperience with alternate management methods using SSH, serial connections and the command-line interface TMSH preferredWhat We Offer:
Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays.Our Culture:
Our team members define and shape our culture — an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work — we thrive.Compensation:
Competitive pay and bonus eligibilityWork Life Balance:
Flexible hybrid work environment, 4- days a week in office
#J-18808-Ljbffr
Opportunity to work in a hybrid model: Potential to work 4 days onsite and 1 day remoteWhy GMF Cybersecurity?Our Cybersecurity team is tasked with the security engineering, regulatory response, third party risk, and incident response capabilities necessary to secure GM Financial, the captive auto finance subsidiary of General Motors. Reporting directly to the CEO, our Cybersecurity team enjoys unprecedented support to deliver the highest level of security capabilities using cutting edge technologies and automating mundane tasks, allowing our teams to focus on interesting and rewarding security work. As a part of GM, you’ll have the opportunity to work on Cybersecurity projects across financial services, automotive, manufacturing, high-tech, and military industries. We are looking for team players who want the freedom to innovate leading edge capabilities to join our growing Cybersecurity team.
Responsibilities
About the Role:The Cybersecurity Team Lead is responsible for managing a portion of the GM Financial (GMF) Cybersecurity Program designed to advise the organization on its management of Cybersecurity risk by supporting risk based management decisions; developing, deploying, monitoring, tuning, evaluating, reporting on and maintaining systems and procedures. They are also responsible for identifying and mitigating threats to the corporate network, corporate assets and corporate users to ensure the security of company systems and information assets. This team member is responsible for leading both technical implementation of systems and communication of security requirements to management and security leadership. Additionally, this team member will be responsible, as necessary, with leading investigations into security threats, working with internal and external groups to ensure the Cybersecurity program is operating effectively and efficiently and developing strong partnerships across the enterprise to ensure information assets are protected at the appropriate level.
Qualifications
What makes you a dream candidate?Knowledge of Leadership and Management of a technical team of professional engineersKnowledge of quality and management frameworksStrong presentation expertise, and the ability to coordinate and conduct meetingsFamiliarity with vendors, project expenses and purchasing requisitionsStrong network security knowledge including endpoint monitoring, web content filtering, intrusion detection and wireless securityTechnical understanding and experience in information security as it relates to server security, client security, user security, network communications and data storagePractical experience with database security, anti-malware, log retention, security intrusions, data loss and regulatory requirementsAdvanced knowledge of network protocols such as TCP/IP, DHCP, DNS, and HTTP/SAdvanced knowledge of packet capture methods and analysis of network flowsAdvanced knowledge of the OSI model and security that is associated with each layerAdvanced knowledge of security analytics techniques and practicesLocal and wide area networking concepts, principles and protocolsStrong working knowledge of Intel platforms, iSeries and pSeries serversAdvanced understanding of IT Service Management (ITSM) best practices and processesExperience with UML Design ToolsHigh level understanding of technology infrastructure, security concepts and platformsAdvanced knowledge of IBM pSeries hardware, operating systems and TSM backup infrastructureKnowledge and stay abreast on the latest security and privacy legislation, regulations, advisories, alerts and vulnerabilitiesKnowledge of IT security processes and controls as well as IT infrastructure and networking technical knowledgeKnowledge of Linux operating systems and microservice architecturePossess strong understanding of cloud technologies and conceptsBackground in scripting and automation in widely used languages such as Python, Go, Ruby, etcAdvanced knowledge of Network and VLAN segmentation
ExperienceBachelor’s Degree in related field or equivalent work experience strongly preferred5-7 years of years of experience in large and complex business environments with a successful track record working directly with senior level management with at least 3 years of experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering or Operations, Information Technology, Application Development, Access Control, Security Governance, Risk Management, Software Development Security, Cryptography, Security Architecture and Design, Operational Security, Business Continuity & Disaster Recovery, Legal Regulations, Investigations and Compliance, Physical (Environmental) Security, IT or Security Audit, IT or Security Compliance preferred2-3 years Experience securing cloud deployments on common platforms like Microsoft Azure, Amazon Web Services or Google Cloud Platform preferredExperience with deploying environments by defining infrastructure as code (IaC) preferredExperience with declarative IaC approaches and immutable infrastructure preferredExperience with securing container deployments, Kubernetes, managed Kubernetes PaaS services, Agile environments and DevOps environments preferredExperience with managing infrastructure through CI/CD pipelines preferredExperience in documentation tools such as Visio and Microsoft Office products preferredExperience with alternate management methods using SSH, serial connections and the command-line interface TMSH preferredWhat We Offer:
Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays.Our Culture:
Our team members define and shape our culture — an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work — we thrive.Compensation:
Competitive pay and bonus eligibilityWork Life Balance:
Flexible hybrid work environment, 4- days a week in office
#J-18808-Ljbffr