Skip to main content

BrightDrop - Principal Information Security Engineer

  • Palo Alto / WFH_City
  • Engineering
  • Full Time
  • Added
  • JR-000084488

Description

At BrightDrop, we are reshaping e-commerce by developing smarter, greener, and more efficient ways to deliver goods and services to your door, while delivering a brighter future for the cities where we live. We are building an ecosystem of all-electric, zero-emissions delivery solutions – from electric vehicles, to ePallets and software that leverages real-time data to drive intelligent optimizations for e-commerce. To deliver on our mission we are growing fast and building a team, based in Palo Alto, with offices in Atlanta and Detroit, that is customer-focused, agile and passionate about innovating for a more sustainable future. 

From engineering to product management and operations, BrightDrop is looking for people who can combine a passion for technology and sustainability with high doses of curiosity and rigorous thinking to deliver a better future. 

Backed by General Motors, BrightDrop is striving to improve the communities where we live and deliver a better future for generations to come. We hope you’ll join us. 

BrightDrop is seeking a Principal Information Security Engineer to join our Corporate Security team. You will be responsible for providing support for BrightDrop's Corporate Security Program and work with cross-functional teams to identify & drive remediation of security vulnerabilities and threats. As member of the Corporate Security team your priority is protecting BrightDrop's corporate environment by ensuring highest level of security scrutiny.

As a lead member of the Corporate Security Team you will assist in various day to day operational activities such as:  

  • Drive Corporate Security Program based on the NIST CSF – Identify, Detect, Protect, Respond and Recover. 

  • Develop, publish, and maintain a comprehensive organization-wide information privacy and security plans, policies, procedures, and guidelines. 

  • Manage the development, implementation, and maintenance of security policies, standards, and guidelines. 

  • Identify and Monitor BrightDrop's Corporate Networks to determine if there have been any attacks. Analyze network traffic to identify anomalies and test information security controls for weaknesses. 

  • Design and implement safeguards to protect the system with the help of network engineers and other members of the IT Ops team. 

  • Respond to threats by taking mitigating actions to contain the activity and minimize damage. Participate in risk assessments and breach readiness exercises for incident management. 

  • Facilitate forensics analysis to determine the source of the threat. Document lessons learned as well as identify process improvements. 

  • Communicate security issues to management via reports, dashboards. Provide weekly metrics on overall security posture. 

  • Develop detection and response for security events. 

  • Drive the Vulnerability Management program 

  • Implement innovative solutions to scale the program with emphasis on automation where applicable.  


Additional Description

REQUIREMENTS

  • Bachelor's Degree in Business, Computer Science or in a STEM major (Science, Technology, Engineering, or Math). 

  • Minimum of 8 years of experience in Information Security 

  • Knowledge of software development, computer networks and Internet threat activity. 

  • Experience in Continuous and Risk based Vulnerability Management 

  • Experience driving SOC2 compliance and GDPR programs 

  • Data Loss Protection (DLP)

  • Experience of Security Incident and Event Management (SIEM) tools.

  • Experience in Email Security, Endpoint Security (EDR), Data Security, Network Security

  • Previous enterprise or platform/cloud vulnerability management experience and Cloud Security. 

  • Previous experience leading an information security program in a Cloud First enterprise is a plus. 

  • Excellent written and verbal communication skills, including experience engaging with executive and technical audiences. 

  • Programming experience in python, perl and HTML/JS 

  • Must be able to work in a fast paced, high profile environment. 

  • Experience in CASB, SASE is a plus


About GM

Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.

Why Join Us 

We aspire to be the most inclusive company in the world. We believe we all must make a choice every day – individually and collectively – to drive meaningful change through our words, our deeds and our culture. Our Work Appropriately philosophy supports our foundation of inclusion and provides employees the flexibility to work where they can have the greatest impact on achieving our goals, dependent on role needs. Every day, we want every employee, no matter their background, ethnicity, preferences, or location, to feel they belong to one General Motors team.

Benefits Overview

The goal of the General Motors total rewards program is to support the health and well-being of you and your family. Our comprehensive compensation plan incudes, the following benefits, in addition to many others:
• Paid time off including vacation days, holidays, and parental leave for mothers, fathers and adoptive parents;
• Healthcare (including a triple tax advantaged health savings account and wellness incentive), dental, vision and life insurance plans to cover you and your family;
• Company and matching contributions to 401K savings plan to help you save for retirement;
• Global recognition program for peers and leaders to recognize and be recognized for results and behaviors that reflect our company values; 
• Tuition assistance and student loan refinancing;
• Discount on GM vehicles for you, your family and friends.

Diversity Information

General Motors is committed to being a workplace that is not only free of discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that workforce diversity creates an environment in which our employees can thrive and develop better products for our customers.   We understand and embrace the variety through which people gain experiences whether through professional, personal, educational, or volunteer opportunities. GM is proud to be an equal opportunity employer.

We encourage interested candidates to review the key responsibilities and qualifications and apply for any positions that match your skills and capabilities.

Equal Employment Opportunity Statements

The policy of General Motors is to extend opportunities to qualified applicants and employees on an equal basis regardless of an individual's age, race, color, sex, religion, national origin, disability, sexual orientation, gender identity/expression or veteran status. Additionally, General Motors is committed to being an Equal Employment Opportunity (EEO) Employer and offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us at Careers.Accommodations@GM.com or call us at 800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.