Product Cybersecurity Vulnerability Analyst
To see similar active jobs please follow this link: Remote Consulting jobs
Job Description
Workplace Classification:
Remote OR Hybrid: Reporting where work can/needs to be performed/collaboration should happen. If the person lives within 50 miles of the designated primary location, they are expected to be onsite a minimum of 3 days/week. If they do not live within 50 miles of a designated GM location, they do not need to report in and would be deemed remote.
The Role:
Product Cybersecurity owns the cybersecurity posture protecting all GM products, systems, components, in-vehicle applications, mobile and back-office vehicle-connecting applications globally. As a Product Cybersecurity Vulnerability Analyst, you will play a critical role in ensuring the security of our in-vehicle software development processes by creating and maintaining security policies and their compliance.
What You’ll do (Responsibilities):
Utilizing GitHub Advanced Security and/or FOSSA to establish and enforce risk-based security policies.
Socializing security policies across different in-vehicle software development teams, fostering a culture of security awareness and accountability.
Providing remediation guidance and support to in-vehicle, mobile, and connected service software development teams.
Collaborating with cybersecurity specification owners to update and/or create vulnerability compliance requirements.
Developing commensurate process and training materials.
Staying abreast of the latest security threats, vulnerabilities, and attack techniques specific to the automotive industry.
Track the accurate creation and ingestion of security-related SBOMs from internal teams and suppliers.
Coordinate with preferred software composition analysis tooling vendor staff to integrate advanced security scanning features into Product Cybersecurity's vulnerability management program.
Participate in any supply chain security-related activities, as appropriate.
Additional Job Description
What You'll Need (Required Qualifications):
Bachelor's degree in Computer Science, Cybersecurity, Software Engineering, or a related field.
5+ years of relevant experience.
Minimum of 3+ years of post-graduation professional workplace Vulnerability Analyst experience.
Proven experience in developing and implementing security policies within software development environments.
Ability to learn and retain new skills to meet the demands of a rapidly changing technical environment.
Excellent collaboration and communication skills to work effectively with cross-functional teams.
High level of autonomy and ability to work independently, taking ownership of security initiatives.
Strong analytical mindset and problem-solving abilities to identify and address complex challenges.
What Will Give You A Competitive Edge (Preferred Skills):
Interest in the automotive industry with a passion for leveraging technology to enhance vehicle security and safety.
Strong knowledge of GitHub Advanced Security and/or FOSSA for policy enforcement and vulnerability management.
Direct experience in a Security Operations Center or PSIRT.
Deep experience with CVEs, CWEs, CPEs, EPSS, MITRE ATT&CK, FIRST and related industry initiatives.
Dev SecOps experience.
Compensation:
The compensation information is a good faith estimate only. It is based on what a successful applicant might be paid in accordance with applicable state laws. The compensation may not be representative for positions located outside of New York, Colorado, California, or Washington.
The salary range for this role is $134,000 to $205,000. The actual base salary a successful candidate will be offered within this range will vary based on factors relevant to the position.
Bonus Potential: An incentive pay program offers payouts based on company performance, job level, and individual performance.
Benefits:
GM offers a variety of health and wellbeing benefit programs. Benefit options include medical, dental, vision, Health Savings Account, Flexible Spending Accounts, retirement savings plan, sickness and accident benefits, life insurance, paid vacation & holidays, tuition assistance programs, employee assistance program, GM vehicle discounts and more.
•This job may be eligible for relocation benefits.
#LI-DH2
About GM
Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.
Why Join Us
We aspire to be the most inclusive company in the world. We believe we all must make a choice every day – individually and collectively – to drive meaningful change through our words, our deeds and our culture. Our Work Appropriately philosophy supports our foundation of inclusion and provides employees the flexibility to work where they can have the greatest impact on achieving our goals, dependent on role needs. Every day, we want every employee, no matter their background, ethnicity, preferences, or location, to feel they belong to one General Motors team.
Benefits Overview
The goal of the General Motors total rewards program is to support the health and well-being of you and your family. Our comprehensive compensation plan incudes, the following benefits, in addition to many others: • Paid time off including vacation days, holidays, and parental leave for mothers, fathers and adoptive parents; • Healthcare (including a triple tax advantaged health savings account and wellness incentive), dental, vision and life insurance plans to cover you and your family; • Company and matching contributions to 401K savings plan to help you save for retirement; • Global recognition program for peers and leaders to recognize and be recognized for results and behaviors that reflect our company values; • Tuition assistance and student loan refinancing; • Discount on GM vehicles for you, your family and friends.
Diversity Information
General Motors is committed to being a workplace that is not only free of discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that workforce diversity creates an environment in which our employees can thrive and develop better products for our customers. We understand and embrace the variety through which people gain experiences whether through professional, personal, educational, or volunteer opportunities. GM is proud to be an equal opportunity employer.
We encourage interested candidates to review the key responsibilities and qualifications and apply for any positions that match your skills and capabilities.
Equal Employment Opportunity Statements
GM is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws. GM is committed to providing a work environment free from unlawful discrimination and advancing equal employment opportunities for all qualified individuals. As part of this commitment, all practices and decisions relating to terms and conditions of employment, including, but not limited to, recruiting, hiring, training, promotion, discipline, compensation, benefits, and termination of employment are made without regard to an individual's protected characteristics. For purposes of this policy, “protected characteristics' include an individual's actual or perceived race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth, lactation and related medical conditions), gender identity or gender expression, sexual orientation, weight, height, marital status, military service and veteran status, physical or mental disability, protected medical condition as defined by applicable state or local law, genetic information, or any other characteristic protected by applicable federal, state or local laws and ordinances. If you need a reasonable accommodation to assist with your job search or application for employment, email us at Careers.Accommodations@GM.com or call us at 800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.
About the job
Product Cybersecurity Vulnerability Analyst
To see similar active jobs please follow this link: Remote Consulting jobs
Job Description
Workplace Classification:
Remote OR Hybrid: Reporting where work can/needs to be performed/collaboration should happen. If the person lives within 50 miles of the designated primary location, they are expected to be onsite a minimum of 3 days/week. If they do not live within 50 miles of a designated GM location, they do not need to report in and would be deemed remote.
The Role:
Product Cybersecurity owns the cybersecurity posture protecting all GM products, systems, components, in-vehicle applications, mobile and back-office vehicle-connecting applications globally. As a Product Cybersecurity Vulnerability Analyst, you will play a critical role in ensuring the security of our in-vehicle software development processes by creating and maintaining security policies and their compliance.
What You’ll do (Responsibilities):
Utilizing GitHub Advanced Security and/or FOSSA to establish and enforce risk-based security policies.
Socializing security policies across different in-vehicle software development teams, fostering a culture of security awareness and accountability.
Providing remediation guidance and support to in-vehicle, mobile, and connected service software development teams.
Collaborating with cybersecurity specification owners to update and/or create vulnerability compliance requirements.
Developing commensurate process and training materials.
Staying abreast of the latest security threats, vulnerabilities, and attack techniques specific to the automotive industry.
Track the accurate creation and ingestion of security-related SBOMs from internal teams and suppliers.
Coordinate with preferred software composition analysis tooling vendor staff to integrate advanced security scanning features into Product Cybersecurity's vulnerability management program.
Participate in any supply chain security-related activities, as appropriate.
Additional Job Description
What You'll Need (Required Qualifications):
Bachelor's degree in Computer Science, Cybersecurity, Software Engineering, or a related field.
5+ years of relevant experience.
Minimum of 3+ years of post-graduation professional workplace Vulnerability Analyst experience.
Proven experience in developing and implementing security policies within software development environments.
Ability to learn and retain new skills to meet the demands of a rapidly changing technical environment.
Excellent collaboration and communication skills to work effectively with cross-functional teams.
High level of autonomy and ability to work independently, taking ownership of security initiatives.
Strong analytical mindset and problem-solving abilities to identify and address complex challenges.
What Will Give You A Competitive Edge (Preferred Skills):
Interest in the automotive industry with a passion for leveraging technology to enhance vehicle security and safety.
Strong knowledge of GitHub Advanced Security and/or FOSSA for policy enforcement and vulnerability management.
Direct experience in a Security Operations Center or PSIRT.
Deep experience with CVEs, CWEs, CPEs, EPSS, MITRE ATT&CK, FIRST and related industry initiatives.
Dev SecOps experience.
Compensation:
The compensation information is a good faith estimate only. It is based on what a successful applicant might be paid in accordance with applicable state laws. The compensation may not be representative for positions located outside of New York, Colorado, California, or Washington.
The salary range for this role is $134,000 to $205,000. The actual base salary a successful candidate will be offered within this range will vary based on factors relevant to the position.
Bonus Potential: An incentive pay program offers payouts based on company performance, job level, and individual performance.
Benefits:
GM offers a variety of health and wellbeing benefit programs. Benefit options include medical, dental, vision, Health Savings Account, Flexible Spending Accounts, retirement savings plan, sickness and accident benefits, life insurance, paid vacation & holidays, tuition assistance programs, employee assistance program, GM vehicle discounts and more.
•This job may be eligible for relocation benefits.
#LI-DH2
About GM
Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.
Why Join Us
We aspire to be the most inclusive company in the world. We believe we all must make a choice every day – individually and collectively – to drive meaningful change through our words, our deeds and our culture. Our Work Appropriately philosophy supports our foundation of inclusion and provides employees the flexibility to work where they can have the greatest impact on achieving our goals, dependent on role needs. Every day, we want every employee, no matter their background, ethnicity, preferences, or location, to feel they belong to one General Motors team.
Benefits Overview
The goal of the General Motors total rewards program is to support the health and well-being of you and your family. Our comprehensive compensation plan incudes, the following benefits, in addition to many others: • Paid time off including vacation days, holidays, and parental leave for mothers, fathers and adoptive parents; • Healthcare (including a triple tax advantaged health savings account and wellness incentive), dental, vision and life insurance plans to cover you and your family; • Company and matching contributions to 401K savings plan to help you save for retirement; • Global recognition program for peers and leaders to recognize and be recognized for results and behaviors that reflect our company values; • Tuition assistance and student loan refinancing; • Discount on GM vehicles for you, your family and friends.
Diversity Information
General Motors is committed to being a workplace that is not only free of discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that workforce diversity creates an environment in which our employees can thrive and develop better products for our customers. We understand and embrace the variety through which people gain experiences whether through professional, personal, educational, or volunteer opportunities. GM is proud to be an equal opportunity employer.
We encourage interested candidates to review the key responsibilities and qualifications and apply for any positions that match your skills and capabilities.
Equal Employment Opportunity Statements
GM is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws. GM is committed to providing a work environment free from unlawful discrimination and advancing equal employment opportunities for all qualified individuals. As part of this commitment, all practices and decisions relating to terms and conditions of employment, including, but not limited to, recruiting, hiring, training, promotion, discipline, compensation, benefits, and termination of employment are made without regard to an individual's protected characteristics. For purposes of this policy, “protected characteristics' include an individual's actual or perceived race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth, lactation and related medical conditions), gender identity or gender expression, sexual orientation, weight, height, marital status, military service and veteran status, physical or mental disability, protected medical condition as defined by applicable state or local law, genetic information, or any other characteristic protected by applicable federal, state or local laws and ordinances. If you need a reasonable accommodation to assist with your job search or application for employment, email us at Careers.Accommodations@GM.com or call us at 800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.