Logo
GM Financial

GM Financial is hiring: Cybersecurity Team Lead (Governance) in Arlington

GM Financial, Arlington, TX, United States, 76014


Overview:

Opportunity to work in a hybrid model: Potential to work 4 days onsite and 1 day remote

Why GMF Cybersecurity?

Our Cybersecurity team is tasked with the security engineering, regulatory response, third party risk, and incident response capabilities necessary to secure GM Financial, the captive auto finance subsidiary of General Motors. Reporting directly to the CEO, our Cybersecurity team enjoys unprecedented support to deliver the highest level of security capabilities using cutting edge technologies and automating mundane tasks, allowing our teams to focus on interesting and rewarding security work. As a part of GM, youll have the opportunity to work on Cybersecurity projects across financial services, automotive, manufacturing, high-tech, and military industries. We are looking for team players who want the freedom to innovate leading edge capabilities to join our growing Cybersecurity team.



Responsibilities:

About the Role:

The Cybersecurity Team Lead is responsible for managing a portion of the GM Financial (GMF) Cybersecurity Program designed to advise the organization on its management of Cybersecurity risk by supporting risk based management decisions; developing, deploying, monitoring, tuning, evaluating, reporting on and maintaining systems and procedures. They are also responsible for identifying and mitigating threats to the corporate network, corporate assets and corporate users to ensure the security of company systems and information assets. This team member is responsible for leading both technical implementation of systems and communication of security requirements to management and security leadership. Additionally, this team member will be responsible, as necessary, with leading investigations into security threats, working with internal and external groups to ensure the Cybersecurity program is operating effectively and efficiently and developing strong partnerships across the enterprise to ensure information assets are protected at the appropriate level.



Qualifications:

What makes you a dream candidate?

  • Knowledge of Leadership and Management of a technical team of professional engineers
  • Knowledge of quality and management frameworks
  • Strong presentation expertise, and the ability to coordinate and conduct meetings
  • Familiarity with vendors, project expenses and purchasing requisitions
  • Strong network security knowledge including endpoint monitoring, web content filtering, intrusion detection and wireless security
  • Technical understanding and experience in information security as it relates to server security, client security, user security, network communications and data storage
  • Practical experience with database security, anti-malware, log retention, security intrusions, data loss and regulatory requirements
  • Advanced knowledge of network protocols such as TCP/IP, DHCP, DNS, and HTTP/S
  • Advanced knowledge of packet capture methods and analysis of network flows
  • Advanced knowledge of the OSI model and security that is associated with each layer
  • Advanced knowledge of security analytics techniques and practices
  • Local and wide area networking concepts, principles and protocols
  • Strong working knowledge of Intel platforms, iSeries and pSeries servers
  • Advanced understanding of IT Service Management (ITSM) best practices and processes
  • Experience with UML Design Tools
  • High level understanding of technology infrastructure, security concepts and platforms
  • Advanced knowledge of IBM pSeries hardware, operating systems and TSM backup infrastructure
  • Knowledge and stay abreast on the latest security and privacy legislation, regulations, advisories, alerts and vulnerabilities
  • Knowledge of IT security processes and controls as well as IT infrastructure and networking technical knowledge
  • Knowledge of Linux operating systems and microservice architecture
  • Possess strong understanding of cloud technologies and concepts
  • Background in scripting and automation in widely used languages such as Python, Go, Ruby, etc
  • Advanced knowledge of Network and VLAN segmentation


Experience

  • Bachelors Degree in related field or equivalent work experience strongly preferred
  • 5-7 years of years of experience in large and complex business environments with a successful track record working directly with senior level management with at least 3 years of experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering or Operations, Information Technology, Application Development, Access Control, Security Governance, Risk Management, Software Development Security, Cryptography, Security Architecture and Design, Operational Security, Business Continuity & Disaster Recovery, Legal Regulations, Investigations and Compliance, Physical (Environmental) Security, IT or Security Audit, IT or Security Compliance preferred
  • 2-3 years Experience securing cloud deployments on common platforms like Microsoft Azure, Amazon Web Services or Google Cloud Platform preferred
  • Experience with deploying environments by defining infrastructure as code (IaC) preferred
  • Experience with declarative IaC approaches and immutable infrastructure preferred
  • Experience with securing container deployments, Kubernetes, managed Kubernetes PaaS services, Agile environments and DevOps environments preferred
  • Experience with managing infrastructure through CI/CD pipelines preferred
  • Experience in documentation tools such as Visio and Microsoft Office products preferred
  • Experience with alternate management methods using SSH, serial connections and the command-line interface TMSH preferred

What We Offer: Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays.

Our Culture: Our team members define and shape our culture an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work we thrive.

Compensation: Competitive pay and bonus eligibility

Work Life Balance: Flexible hybrid work environment, 4- days a week in office