Product Cybersecurity Vulnerability Analyst

Description

Work Arrangement:

Hybrid: This role is categorized as hybrid. This means the successful candidate is expected to report onsite at the Warren Global Tech Center or Austin IT Innovation Center North three (3) times per week minimum, or other frequency dictated by the business.

The Role:

Product Cybersecurity owns the cybersecurity posture protecting all GM products, systems, components, in-vehicle applications, mobile and back-office vehicle-connecting applications globally. As a Product Cybersecurity Vulnerability Analyst, you will play a critical role in ensuring the security of our in-vehicle software development processes by creating and maintaining security policies and their compliance.

What You'll do:

• Utilizing GitHub Advanced Security and/or FOSSA to establish and enforce risk-based security policies
• Socializing security policies across different in-vehicle software development teams, fostering a culture of security awareness and accountability
• Providing remediation guidance and support to in-vehicle, mobile, and connected service software development teams
• Collaborating with cybersecurity specification owners to update and/or create vulnerability compliance requirements
• Developing commensurate process and training materials
• Staying abreast of the latest security threats, vulnerabilities, and attack techniques specific to the automotive industry
• Track the accurate creation and ingestion of security-related SBOMs from internal teams and suppliers
• Coordinate with preferred software composition analysis tooling vendor staff to integrate advanced security scanning features into Product Cybersecurity's vulnerability management program
• Participate in any supply chain security-related activities, as appropriate

Additional Description

Your Skills & Abilities (Required Qualifications)

• Bachelor's degree in Computer Science, Cybersecurity, Software Engineering, or a related field
• 5+ years of relevant experience
• Minimum of 3+ years of post-graduation professional workplace Vulnerability Analyst experience
• Proven experience in developing and implementing security policies within software development environments
• Ability to learn and retain new skills to meet the demands of a rapidly changing technical environment
• Excellent collaboration and communication skills to work effectively with cross-functional teams
• High level of autonomy and ability to work independently, taking ownership of security initiatives
• Strong analytical mindset and problem-solving abilities to identify and address complex challenges

What Will Give You A Competitive Edge (Preferred Skills)

• Interest in the automotive industry with a passion for leveraging technology to enhance vehicle security and safety
• Strong knowledge of GitHub Advanced Security and/or FOSSA for policy enforcement and vulnerability management
• Direct experience in a Security Operations Center or PSIRT
• Deep experience with CVEs, CWEs, CPEs, EPSS, MITRE ATT&CK, FIRST and related industry initiatives
• Dev SecOps experience

• This job may be eligible for relocation benefits.

#LI-DH2

About GM

Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.

Why Join Us

We aspire to be the most inclusive company in the world. We believe we all must make a choice every day - individually and collectively - to drive meaningful change through our words, our deeds and our culture. Every day, we want every employee, no matter their background, ethnicity, preferences, or location, to feel they belong to one General Motors team.

Total Rewards | Benefits Overview

From day one, we're looking out for your well-being-at work and at home-so you can focus on realizing your ambitions. Learn how GM supports a rewarding career that rewards you personally by visiting Total Rewards resources.

Diversity Information

General Motors is committed to being a workplace that is not only free of unlawful discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that workforce diversity creates an environment in which our employees can thrive and develop better products for our customers. We encourage interested candidates to review the key responsibilities and qualifications for each role and apply for any positions that match their skills and capabilities. Applicants in the recruitment process may be required, where applicable, to successfully complete a role-related assessment(s) and/or a pre-employment screening prior to beginning employment. To learn more, visit How we Hire

Equal Employment Opportunity Statement (U.S.)

General Motors is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Accommodations (U.S. and Canada)

General Motors offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us [email protected] or call us at 800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.