Sr. Cybersecurity Engineer- Controls Assurance Assessor

Job Description

Workplace Status:

Hybrid - This role is categorized as hybrid. This means the successful candidate is expected to report to their primary location three times per week, at minimum, or other frequency dictated by the business.

The Team:

In recent years, GM Information Technology has successfully executed the largest IT transformation in the history of the automotive industry, fully insourcing what once was a nearly completely outsourced IT function.  Today GM IT is a dynamic and fast paced organization that designs, develops and maintains all IT infrastructure, applications and solutions enabling GM’s global operations.  From designing and building the next generation of electric and other vehicles to developing a world-class GM experience for our dealers and customers, GM IT is driving real change in the most iconic automaker on the planet. 

Our team delivers unique enterprise-wide IT solutions in cutting-edge technologies such as mobility, telematics, mission-critical business systems, supercomputing, cloud, vehicle engineering and real-time computing.  We offer challenging positions for passionate professionals looking to advance their careers and be a part of an IT organization focused on innovation, speed and business value.

The Role:

The Sr. Cybersecurity Engineer- Controls Assurance is responsible for conducting and leading, assessments of IT Controls across varying platforms, including mainframe, mid-range, and cloud environments, and associated technology components (e.g. applications, infrastructure, network, middleware, database, etc.). Assessment activities are conducted primarily to ensure compliance with various legal and regulatory requirements, as well as, adherence to various Corporate Policies, Industry Standards / Maturity Models, or other requirements set forth by IT management.

This role also involves leading and executing projects as assigned, and involves interacting with and engaging technical IT personnel outside of the immediate workgroup. All work is performed in a corporate environment, which is global in nature, and involves executing standard auditing methodologies, processes, and tools in the areas of audit planning, field work, data analysis, reporting, work paper documentation, and quality assurance (QA). This role requires advanced Mainframe OS and Security Tool Administrative, as well as very strong data manipulation skills (MS Excel) to extract and evaluate technical information used to perform compliance assessments.

In this role you will perform complex assignments requiring a wider application of security principles, theories and concept. You will interact with senior internal leadership. May lead and provide direction to a team of individuals. Expected to influence without direct control. You will work with independence, though some support and advice is readily available from the manager. During the year, you will set short term objectives and guidelines in support of IT security strategy, which have a direct impact on IT Security's overall results. You will hold yourself and others accountable for demonstrating GMs values and cultural behaviors.

What You'll Do (Responsibilities):

• Develop a high-level understanding of the control environment (e.g. function and design).
• Follow the existing assessment objectives and scope of control testing.
• Execute field work and collect / analyze evidence.
• Conclude on the adequacy of the control design and operating effectiveness.
• Document findings and conclusions.
• Report the status and results of the assessment.
• Understand and maintain compliance with GM standards and industry standard methodology.
• Holds themselves and others accountable for demonstrating GMs values and cultural behaviors.
• Models GM behaviors and crafts a winning culture.

Additional Job Description

What You'll Need (Required Qualifications):

• Bachelors degree in Information Systems, Computer Science, or related field; equivalent technical experience will be considered in lieu of degree
• 3+ years of experience in Mainframe Administration
• 3+ years of formal IT Auditing experience

Basic Proficiencies:

• Assessing Controls Design / Operating Effectiveness
• Assessing Risks
• Evaluating General IT Controls
• Conducting / Facilitating Meetings
• Interviewing auditees / Control Owners
• Analyzing data
• Identifying issues / performing root cause analysis
• Developing presentations & Presenting to Sr. Management
• Documenting results / Report writing

Technical Proficiencies (Mainframe Focus):

• Mainframe Systems (e.g. RACF [IBM Suite], IWS, MF Apps)
• Middleware (e.g. Tidal Batch, Sailpoint, etc)
• Operating Systems (e.g. MF ZOS, UNIX/LINUX, Windows, etc)
• Database Systems (e.g POSTGRES, DB2, INGRES, etc)
• DevOps Pipeline & Cloud environments
• Authentication Systems (e.g LDAP)
• File Transfer Systems (e.g. IIB, Datastage, SeeBeyond, etc.)
• Basic Network (e.g. Firewalls, Network Monitoring Systems, IDS, IPS, etc.)

Communication / Interpersonal Skills:

• Oral / Written Communication skills
• Persuasion / Negotiation skills
• Data mining and analytics
• General IT knowledge
• Business /political acumen
• Time / Resource management
• Developing / Managing Relationships
• Conflict Management
• Strong analytical and problem-solving ability
• Project management skills
• Works independently with accountability for results​

Preferred Qualifications:

• Professional Certifications: CISSP, CISA (preferred), CISM, CIA, CGEIT, CRISC, PMP

GM DOES NOT PROVIDE IMMIGRATION-RELATED SPONSORSHIP FOR THIS ROLE. PLEASE DO NOT APPLY FOR THIS ROLE IF YOU WILL NEED GM IMMIGRATION SPONSORSHIP (e.g., H-1B, TN, STEM OPT, etc.) NOW OR IN THE FUTURE.

• This job is not eligible for relocation benefits. Any relocation costs would be the responsibility of the selected candidate.

#LI-DH2

About GM

Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.

Why Join Us 

We aspire to be the most inclusive company in the world. We believe we all must make a choice every day – individually and collectively – to drive meaningful change through our words, our deeds and our culture. Our Work Appropriately philosophy supports our foundation of inclusion and provides employees the flexibility to work where they can have the greatest impact on achieving our goals, dependent on role needs. Every day, we want every employee, no matter their background, ethnicity, preferences, or location, to feel they belong to one General Motors team.

Benefits Overview

The goal of the General Motors total rewards program is to support the health and well-being of you and your family. Our comprehensive compensation plan incudes, the following benefits, in addition to many others:
• Paid time off including vacation days, holidays, and parental leave for mothers, fathers and adoptive parents;
• Healthcare (including a triple tax advantaged health savings account and wellness incentive), dental, vision and life insurance plans to cover you and your family;
• Company and matching contributions to 401K savings plan to help you save for retirement;
• Global recognition program for peers and leaders to recognize and be recognized for results and behaviors that reflect our company values; 
• Tuition assistance and student loan refinancing;
• Discount on GM vehicles for you, your family and friends.

Diversity Information

General Motors is committed to being a workplace that is not only free of discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that workforce diversity creates an environment in which our employees can thrive and develop better products for our customers.   We understand and embrace the variety through which people gain experiences whether through professional, personal, educational, or volunteer opportunities. GM is proud to be an equal opportunity employer.

We encourage interested candidates to review the key responsibilities and qualifications and apply for any positions that match your skills and capabilities.

Equal Employment Opportunity Statements

GM is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws. GM is committed to providing a work environment free from unlawful discrimination and advancing equal employment opportunities for all qualified individuals. As part of this commitment, all practices and decisions relating to terms and conditions of employment, including, but not limited to, recruiting, hiring, training, promotion, discipline, compensation, benefits, and termination of employment are made without regard to an individual's protected characteristics. For purposes of this policy, “protected characteristics" include an individual's actual or perceived race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth, lactation and related medical conditions), gender identity or gender expression, sexual orientation, weight, height, marital status, military service and veteran status, physical or mental disability, protected medical condition as defined by applicable state or local law, genetic information, or any other characteristic protected by applicable federal, state or local laws and ordinances.  If you need a reasonable accommodation to assist with your job search or application for employment, email us at Careers.Accommodations@GM.com or call us at 800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.​