Cybersecurity Engineer – Vulnerability Management

at GM Financial
Published November 23, 2022
Location Arlington, TX
Category Default  
Job Type Full-time  

Description

Overview

Why GMF Cybersecurity?

Our Cybersecurity team is tasked with the security engineering, regulatory response, third party risk, and incident response capabilities necessary to secure GM Financial, the captive auto finance subsidiary of General Motors. Reporting directly to the CEO, our Cybersecurity team enjoys unprecedented support to deliver the highest level of security capabilities using cutting edge technologies and automating mundane tasks, allowing our teams to focus on interesting and rewards security work. As a part of GM, you'll have the opportunity to work on Cybersecurity projects across financial services, automotive, manufacturing, high-tech, and military industries. We are looking for team players who want the freedom to innovate leading edge capabilities to join our growing Cybersecurity team.

Responsibilities

About the role:

You will identify core requirements, design, and implement security technologies and work with stakeholders to perform ongoing tuning and alerting on those technologies. Security technologies may include but are not limited to: Data Loss Prevention (DLP), Security Incident Event Management (SIEM), User Behavior Analytics, Host Intrusion Prevention (HIPS) and Web/Email Gateway. You will be responsible for both technical implementation of systems and communication of security requirements to management and security leadership. You will be responsible, as necessary, with assisting in investigations into security threats.

Qualifications

What makes you a dream candidate?

* Assists in the identification, engineering and designing of security technologies including, but not limited to: Security Incident and Event Managers (SIEM) and threat intelligence solutions, Web filtering (proxy, network AV), Intrusion Detection and Prevention Systems (IDS/IPS), Endpoint security solutions, Data Loss Prevention (DLP), Vulnerability Management (VM), Threat Intelligence and Threat Detection, Web Application Firewalls (WAF), Email Gateways, Breach Mitigation, Certificate Management, SSL encryption and decryption, Identity Management, Cloud Security, Database Security, Web Gateways, VPNs and Firewalls
* Experience with alternate management methods using SSH, serial connections and the command-line interface TMSH
* Strong working knowledge of Intel platforms, iSeries and pSeries servers
* Advanced understanding of IT Service Management (ITSM) best practices and processes
* Experience with UML Design Tools
* Advanced knowledge of TCP/IP, OSI model and imp subnetting
* Advanced knowledge of IBM pSeries hardware, operating systems and TSM backup infrastructure
* Advanced knowledge of the OSI model and security that is associated with each layer
* Knowledge of IT security processes and controls as well as IT infrastructure and networking technical knowledge
* Experience securing cloud deployments on common platforms like Microsoft Azure, Amazon Web Services, or Google Cloud Platform
* Experience with deploying environments by defining infrastructure as code (IaC)
* Experience with securing container deployments, Kubernetes, managed Kubernetes PaaS services, Agile environments, and DevOps environments
* Background in scripting and automation in widely used languages such as Python, Go, Ruby, etc
* Detailed knowledge of declarative IaC approaches and immutable infrastructure is a plus

Experience:

* Bachelor's Degree or equivalent experience strongly preferred
* A minimum of 1-5 years of experience in large and complex business environments with a successful track record working directly with senior level management with at least 1 year of experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development.
* A minimum of 1 - 3 years of code development in one or more of the following: PHP, Python, Node.js, React, Express.
* Hands on experience supporting security requirements of a large, global enterprise environment.
* Cybersecurity related certifications strongly preferred

Licenses:

* Cybersecurity related certifications strongly preferred

What we offer: Benefits effective your first day, 401K, Bonding leave for new parents (12 weeks and 100% paid), Pet insurance, training, certifications

Our Culture: Our team members define and shape our culture - an environment that welcomes new ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work - we thrive.

Compensation: Competitive Salary

Work Life Balance: Flexible hybrid work environment

Benefits Package: Generous benefits package

#LI-HH1

#Hybrid

Drop files here browse files ...