Job Specifications
Job Description
Flexible hybrid work environment, 4 days a week in the office.
Why GMF Cybersecurity?
Innovation isn’t just a talking point at GM Financial, it’s how we operate. By joining our team, you’ll work in a mission-focused environment with specialized teams, including Engineering, Threat Intelligence, Vulnerability Management, Incident Response, Firewall, Governance, Risk, Architecture and Offensive Security. These teams collaborate to identify, manage and respond to threats, all while driving innovation across the environment.
Cybersecurity is central to our strategic vision, so you’ll benefit from exceptional leadership visibility, with direct reporting lines to the CEO. This structure ensures your work is recognized and supported at the highest levels, while also enabling bold innovation and the adoption of cutting-edge technologies.
Shape the future of Cybersecurity at GM Financial, with the freedom to explore, the tools to build and the support to thrive.
Responsibilities
About the role:
The Associate Cybersecurity Engineer is responsible for developing, deploying, monitoring, tuning, evaluating, reporting and maintaining systems and procedures; and to identify and mitigate threats to the corporate network, corporate assets, and corporate users. This team member will identify core requirements, design and implement security technologies, and work with stakeholders to perform ongoing tuning and alerting on those technologies. Security technologies may include, but are not limited to: Data Loss Prevention (DLP), Security Incident Event Management (SIEM), User Behavior Analytics, Host Intrusion Prevention (HIPS), Web Application Firewall (WAF), Information Rights Management (IRM), Cloud Access Security Broker (CASB), and Web/Email Gateway. This team member will be responsible for both technical implementation of systems and communication of security requirements to management and security leadership. Additionally, this team member will be responsible, as necessary, with assisting in investigations into security threats.
In This Role You Will
Track and own security incidents from detection to resolution, engaging in any containment, eradication and recovery actions as needed
Attention to detail and ability to formulate decisions based on evidence gathering
Ability to triage alerts and incidents of various technical levels
Exposure to DNS, TCP, TLS, Networking, Certificates, Troubleshooting, and Cybersecurity principles
Familiarity with network and host-based best-practices for securing and protecting data and assets
What Makes You An Ideal Candidate
Strong technical skills and hands on experience in information security as it relates to server security, client security, user security, network communications and data storage
Practical experience implementing security solutions and performing initial tuning and monitoring in the environment
Demonstrated expertise developing custom rule sets for tools to identify specific attacks and exploits based on feedback and requirements from business stakeholders including Compliance and Legal Counsel is a plus
Practical experience scaling solutions to meet enterprise sizing requirements and performing tuning to manage the amount of alerting that occurs is a plus
Strong knowledge of core Information Technology concepts such as DNS, TCP/IP networking, Windows & Active Directory, Linux, and filesystems.
Strong knowledge of IT technologies and methods to secure them
Strong knowledge of the OSI model and security that is associated with each layer
Possess understanding of cloud technologies and concepts
Understanding of Agile and DevOps environments is a plus
Experience with scripting languages such as Python, Go, Ruby, etc is a plus
Familiarity with infrastructure as code (IaC), Linux operating systems, and immutable infrastructure is a plus
Strong technical skills and hands on experience in information security as it relates to server security, client security, user security, network communications and data storage is a plus
Practical experience implementing security solutions and performing initial tuning and monitoring in the environment is a plus
Experience
QUALIFICATIONS
Bachelor’s Degree or equivalent experience strongly preferred
0-2 years of experience in large and complex business environments with a successful track record working directly with senior level management with working knowledge in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development preferred
0-2 years of hands on experience supporting requirements of a large, global enterprise environment preferred
Licenses
Cybersecurity related Certifications strongly preferred
What We Offer: Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, c