[Skip To Content]

Sr. Cybersecurity Engineer- Controls Assurance Assessor

  • Emplacement
    • Austin, Texas
    • Roswell, Georgia
    • Warren, Michigan
  • Horaire Full time
  • Posté

Description

Workplace Status:

Hybrid - This role is categorized as hybrid. This means the successful candidate is expected to report to their primary location three times per week, at minimum, or other frequency dictated by the business.

The Team:

In recent years, GM Information Technology has successfully executed the largest IT transformation in the history of the automotive industry, fully insourcing what once was a nearly completely outsourced IT function.  Today GM IT is a dynamic and fast paced organization that designs, develops and maintains all IT infrastructure, applications and solutions enabling GM’s global operations.  From designing and building the next generation of electric and other vehicles to developing a world-class GM experience for our dealers and customers, GM IT is driving real change in the most iconic automaker on the planet. 

Our team delivers unique enterprise-wide IT solutions in cutting-edge technologies such as mobility, telematics, mission-critical business systems, supercomputing, cloud, vehicle engineering and real-time computing.  We offer challenging positions for passionate professionals looking to advance their careers and be a part of an IT organization focused on innovation, speed and business value.

The Role:

The Sr. Cybersecurity Engineer- Controls Assurance is responsible for conducting and leading, assessments of IT Controls across varying platforms, including mainframe, mid-range, and cloud environments, and associated technology components (e.g. applications, infrastructure, network, middleware, database, etc.). Assessment activities are conducted primarily to ensure compliance with various legal and regulatory requirements, as well as, adherence to various Corporate Policies, Industry Standards / Maturity Models, or other requirements set forth by IT management.

This role also involves leading and executing projects as assigned, and involves interacting with and engaging technical IT personnel outside of the immediate workgroup. All work is performed in a corporate environment, which is global in nature, and involves executing standard auditing methodologies, processes, and tools in the areas of audit planning, field work, data analysis, reporting, work paper documentation, and quality assurance (QA). This role requires advanced Mainframe OS and Security Tool Administrative, as well as very strong data manipulation skills (MS Excel) to extract and evaluate technical information used to perform compliance assessments.

In this role you will perform complex assignments requiring a wider application of security principles, theories and concept. You will interact with senior internal leadership. May lead and provide direction to a team of individuals. Expected to influence without direct control. You will work with independence, though some support and advice is readily available from the manager. During the year, you will set short term objectives and guidelines in support of IT security strategy, which have a direct impact on IT Security's overall results. You will hold yourself and others accountable for demonstrating GMs values and cultural behaviors.

What You'll Do (Responsibilities):

  • Develop a high-level understanding of the control environment (e.g. function and design).
  • Follow the existing assessment objectives and scope of control testing.
  • Execute field work and collect / analyze evidence.
  • Conclude on the adequacy of the control design and operating effectiveness.
  • Document findings and conclusions.
  • Report the status and results of the assessment.
  • Understand and maintain compliance with GM standards and industry standard methodology.
  • Holds themselves and others accountable for demonstrating GMs values and cultural behaviors.
  • Models GM behaviors and crafts a winning culture.

[Additional Description]

What You'll Need (Required Qualifications):

  • Bachelors degree in Information Systems, Computer Science, or related field; equivalent technical experience will be considered in lieu of degree
  • 3+ years of experience in Mainframe Administration
  • 3+ years of formal IT Auditing experience

Basic Proficiencies:

  • Assessing Controls Design / Operating Effectiveness
  • Assessing Risks
  • Evaluating General IT Controls
  • Conducting / Facilitating Meetings
  • Interviewing auditees / Control Owners
  • Analyzing data
  • Identifying issues / performing root cause analysis
  • Developing presentations & Presenting to Sr. Management
  • Documenting results / Report writing

Technical Proficiencies (Mainframe Focus):

  • Mainframe Systems (e.g. RACF [IBM Suite], IWS, MF Apps)
  • Middleware (e.g. Tidal Batch, Sailpoint, etc)
  • Operating Systems (e.g. MF ZOS, UNIX/LINUX, Windows, etc)
  • Database Systems (e.g POSTGRES, DB2, INGRES, etc)
  • DevOps Pipeline & Cloud environments
  • Authentication Systems (e.g LDAP)
  • File Transfer Systems (e.g. IIB, Datastage, SeeBeyond, etc.)
  • Basic Network (e.g. Firewalls, Network Monitoring Systems, IDS, IPS, etc.)

Communication / Interpersonal Skills:

  • Oral / Written Communication skills
  • Persuasion / Negotiation skills
  • Data mining and analytics
  • General IT knowledge
  • Business /political acumen
  • Time / Resource management
  • Developing / Managing Relationships
  • Conflict Management
  • Strong analytical and problem-solving ability
  • Project management skills
  • Works independently with accountability for results​

Preferred Qualifications:

  • Professional Certifications: CISSP, CISA (preferred), CISM, CIA, CGEIT, CRISC, PMP

GM DOES NOT PROVIDE IMMIGRATION-RELATED SPONSORSHIP FOR THIS ROLE. PLEASE DO NOT APPLY FOR THIS ROLE IF YOU WILL NEED GM IMMIGRATION SPONSORSHIP (e.g., H-1B, TN, STEM OPT, etc.) NOW OR IN THE FUTURE.

• This job is not eligible for relocation benefits. Any relocation costs would be the responsibility of the selected candidate.

#LI-DH2

Renseignements sur la diversité

General Motors est résolue à être un lieu de travail qui est non seulement exempt de discrimination illégale, mais aussi un endroit qui favorise véritablement l'inclusion et l'appartenance. Nous sommes convaincus que la diversité de la main-d'œuvre permet de créer un environnement dans lequel nos employés peuvent s'épanouir et développer de meilleurs produits pour nos clients. Nous encourageons les candidats intéressés à consulter les principales responsabilités et compétences requises pour chaque rôle et à postuler à tout poste qui leur correspond. Dans le cadre du processus de recrutement, les candidats peuvent devoir, le cas échéant, réussir une évaluation liée au poste ou une présélection d'emploi avant d'être embauchés.  Pour en savoir plus, consultez notre processus de recrutement.

Déclaration concernant l'égalité d'accès à l'emploi (É.-U.)

General Motors est fière d'être un employeur souscrivant au principe de l'égalité d'accès à l'emploi.  Tous les candidats qualifiés seront pris en compte, sans égard à la race, à la couleur, à la religion, au sexe, à l'orientation sexuelle, à l'identité de genre, à l'origine ethnique, aux situations de handicap ou au statut protégé d'ancien combattant. 

Aménagements (É.-U. et Canada)

General Motors offre des occasions à tous les chercheurs d'emploi, y compris les personnes handicapées. Si vous avez besoin d'un accommodement raisonnable pour vous aider dans votre recherche d'emploi ou la soumission de votre candidature, envoyez-nous un courriel à l'adresse Careers.Accommodations@GM.com ou appelez-nous au 800 865-7580. Veuillez inclure dans votre courriel une description spécifique du type d'accommodement demandé, ainsi que le titre d'emploi et le numéro de demande du poste auquel vous postulez.