Saltar al contenido principal

Lead Auditor - Cybersecurity Assurance

  • Ubicación
    • Detroit, Michigan
  • Tipo de trabajo Full time
  • Publicado
  • Job Requisition JR-202611926

Descripción

General Motors Audit Services (GMAS) is seeking a Lead Auditor, Cybersecurity Assurance to lead risk-based cybersecurity assurance engagements across a complex global environment. This role is responsible for planning, executing, and reporting on reviews that evaluate the design and operating effectiveness of cybersecurity and technology controls.

This individual will work across a broad range of domains, including enterprise technology, cloud, identity and access management, application security, incident response, and infrastructure security. The role also partners closely with business and technology leaders to communicate risk, drive practical remediation, and help strengthen GM’s overall cybersecurity posture.

This is a strong opportunity for a cybersecurity audit professional who wants exposure to a large-scale, highly connected environment and enjoys combining technical depth, sound judgment, and leadership.

What You'll Do

  • Lead end-to-end cybersecurity assurance engagements, including scoping, planning, fieldwork, issue development, and reporting.

  • Evaluate the effectiveness of cybersecurity controls across key risk areas such as identity and access management, logging and monitoring, vulnerability management, incident response, backup and recovery, and security configuration.

  • Apply a risk-based perspective to identify control gaps, emerging threats, and opportunities to improve cybersecurity resilience.

  • Review testing workpapers and evidence to ensure conclusions are clear, supportable, and aligned to audit standards and methodology.

  • Develop concise, executive-ready reports that clearly articulate risk, root cause, and practical corrective actions.

  • Present results and themes to business and technology leaders, including senior management, and align remediation priorities.

  • Coach and support team members throughout the audit lifecycle, including testing strategy, issue validation, and stakeholder communication.

  • Build strong working relationships with stakeholders across cybersecurity, IT, privacy, compliance, and other relevant functions.

  • Contribute to continuous improvement of the cybersecurity assurance program, including risk assessment, planning, and reusable testing approaches.

  • Monitor remediation activity and validate that agreed actions appropriately address identified risk.

  • Maintain a strong understanding of GM operations and technology landscape to anticipate emerging cyber risks and adapt assurance coverage accordingly.

Your Skills & Abilities (Required Qualifications)

  • Bachelor’s degree in Information Systems, Computer Science, Cybersecurity, or a related field (or equivalent related experience).

  • 5+ years of experience in IT audit, cybersecurity, risk management, or technology assurance, including leading engagements and guiding teams through planning, testing, and reporting.

  • Strong understanding of cybersecurity and technology risk, including evaluating confidentiality, integrity, and availability (CIA) across complex, interconnected systems.

  • Strong knowledge of internal controls and risk frameworks such as NIST CSF, NIST 800-53, COBIT, ISO 27001, or similar frameworks, with the ability to translate requirements into practical test procedures

  • Understanding of technology infrastructure and operations (e.g., endpoint/server hardening, monitoring, backup/recovery, and change/release practices) and how to evaluate control effectiveness.

  • Experience assessing controls across core cybersecurity domains such as Identity & Access Management (IAM), privileged access, logging and monitoring, incident response, backup and recovery, vulnerability management, and security configuration controls.

  • Strong written and verbal communication skills, including the ability to communicate technical risk clearly to non-technical stakeholders and senior leaders

  • Demonstrated ability to work independently, exercise sound judgment, manage multiple priorities, and deliver results in a fast-paced environment.

What Will Give You A Competitive Edge (Preferred Qualifications)

  • Graduate degree in Information Technology, Cybersecurity, or a related field.

  • Professional certification(s) such as CISA, CISSP, CISM, CRISC, CEH, or other relevant security or technology certifications.

  • Big 4 public accounting firm experience and/or a recognized internal audit/assurance program.

  • Working knowledge of networking and security technologies (e.g., routing/switching, ACLs, IDS/IPS, firewalls, and secure remote access).

  • Working knowledge of application security concepts, including secure development practices, vulnerability management, and common testing approaches.

  • Familiarity with operating system platforms (e.g., UNIX/Linux, Windows) and security best practices for each.

  • Hands-on experience with scripting, automation, or data analysis to enable more efficient testing (e.g., PowerShell, Python, SQL)

  • Strong interpersonal skills and demonstrated people leadership (e.g., coaching, delegation, conflict resolution, and stakeholder management).

  • Strong analytical, problem-solving, and professional judgment skills, with the ability to prioritize and make risk-based decisions.

Location: Hybrid. This role is categorized as hybrid. This means the successful candidate is expected to report to the - Global HQ Detroit, MI three times per week, at minimum [or other frequency dictated by the business]

Relocation: This role is NOT eligible for relocation benefits.

GM DOES NOT PROVIDE IMMIGRATION-RELATED SPONSORSHIP FOR THIS ROLE. DO NOT APPLY FOR THIS ROLE IF YOU WILL NEED GM IMMIGRATION SPONSORSHIP NOW OR IN THE FUTURE. THIS INCLUDES DIRECT COMPANY SPONSORSHIP, ENTRY OF GM AS THE IMMIGRATION EMPLOYER OF RECORD ON A GOVERNMENT FORM, AND ANY WORK AUTHORIZATION REQUIRING A WRITTEN SUBMISSION OR OTHER IMMIGRATION SUPPORT FROM THE COMPANY (e.g., H-1B, OPT, STEM OPT, CPT, TN, J-1, etc.)

Información sobre diversidad

General Motors se compromete a ser un lugar de trabajo en el cual no solo no haya discriminación indebida, sino que fomente con sinceridad la inclusión y el sentido de pertenencia. Creemos firmemente que la diversidad del personal crea un entorno en el cual nuestros empleados pueden prosperar y desarrollar mejores productos para nuestros clientes. Instamos a los candidatos interesados a que revisen las responsabilidades y aptitudes clave para cada puesto y se postulen para los puestos que coincidan con sus habilidades y capacidades. Es posible que, cuando corresponda, se les pida a los solicitantes que están en el proceso de contratación que completen satisfactoriamente una o más evaluaciones relacionadas con su función y/o una evaluación previa al empleo antes de comenzar a trabajar.  Para obtener más información, visite Cómo contratamos.

Declaración de igualdad de oportunidades en el empleo (EE.UU.)

General Motors se enorgullece de ser un empleador que ofrece igualdad de oportunidades.  Todos los solicitantes calificados serán tenidos en cuenta para el empleo sin distinción de raza, color, religión, sexo, orientación sexual, identidad de género, nacionalidad, discapacidad o condición de veterano protegido. 

Adecuaciones (EE.UU. y Canadá)

General Motors ofrece oportunidades a todos los solicitantes de empleo, incluyendo las personas con discapacidades. Si necesita una adecuación razonable para ayudarle con su búsqueda o solicitud de empleo, envíenos un correo electrónico a [email protected] o llámenos al 800-865-7580. En su correo electrónico, incluya una descripción del puesto específico que está solicitando, así como el título del empleo y el número de solicitud del puesto que está solicitando.

 

Quienes somos

Two GM employees talking in hallway

Our Culture

Working at GM

Driven by innovation and creating an environment to inspire, we embrace the responsibility to make our world better, safer and more equitable for all

A mother and two children spend quality time together in their backyard after work

Total Rewards

A better tomorrow begins with you

From day one, we’re looking out for your well-being— at work and at home— so you can focus on realizing your ambitions

Únete a la comunidad de talentos

Conozca las próximas oportunidades profesionales y eventos en Pendulum

Únete ahora
A scene of people in an office

Únete a la comunidad de talentos

Somos ambiciosos. Estamos comprometidos. Y traemos la pasión de la vida al trabajo. Comuníquese con nosotros para obtener más información sobre cómo comenzar su carrera en GM.

Buscar Oportunidades de Carrera Únete a nuestra Comunidad de Talento
Join Talent Community
645E57fc Fd25 46Bf Bfa8 Dc117a78bd0a Copy Of Top Companies 26 Country Logos (2) Builtin Best Places To Work 2026 White Badge Designer (1)