The job has been added to the Job cart.

Lead Penetration Tester - INF0019434

  • Detroit, Michigan, US
  • Warren (Tech Ctr), Michigan, US
  • Austin, Texas, US
  • Roswell (GA IT Innovation Center), Georgia, US
  • Chandler (AZ IT Innovation Center), Arizona, US
Add to job cart button Apply now button

Position summary

 

PLEASE ONLY APPLY IF YOU DO NOT NEED SPONSORSHIP TO WORK IN THE UNITED STATES NOW OR IN THE FUTURE.  WE ARE UNABLE TO CONSIDER CANDIDATES WHO REQUIRE SPONSORSHIP.
 
 
 
Location:
Strong preference for candidates in Detroit, MI but will also consider candidates in Austin, Chandler, AZ and Atlanta
 
About the General Motors IT Security Team:
GM’s Information Security and Risk Management Team protects and defends the company’s information, networks and infrastructure.  We are looking for talented Information Security and Risk Management Professionals in the fields of incident response, cyber-intelligence, enterprise security architecture, digital forensics, application security and compliance with the passion and expertise to perform in a complex, global environment amidst today’s evolving threat landscape.
 
 
About the role:
This role supports the activities of the Security Assurance team which is responsible for identifying, prioritizing and eradicating vulnerabilities in computer systems and networks throughout the GM environment.  This role will be responsible for testing the design and effectiveness of security controls of Internet systems, networks and applications within the GM environment. This role will be required to perform hands-on, technical penetration and ethical hacking tests of all facets of the GM environment.
 
Major Duties and Responsibilities:
  • Passion for identifying security weaknesses across a variety computer systems
  • Perform complex security related testing, creating test cases, performing manual and automated tests, reporting on problems encountered and documenting test results for follow-up.
  • Analyze security test results, draw conclusions from results and develop targeted testing as deemed necessary.
  • Proven ability to communicate technical issues to technical and non-technical business area representatives.
  • Experience in large scale information technology implementations and operations preferred.
  • Design, interpret & communicate information security policies & controls
  • Analyze operational IT processes to identify systemic risk issues
  • Develop processes and implement tools and techniques to perform ongoing security assessments of the environment
  • Implement tools and techniques to identify and prevent unauthorized IT asset deployments
  • Keep current on industry security testing best practices and industry security risks
 
Minimum Qualifications:
  • Bachelor’s degree in Information Systems or related field with adequate experience in the field of information security is acceptable.
  • 3-5 years hands-on experience in either: security assurance, penetration testing, or vulnerability management
  • Programming experience in Java, C++, Perl or Python
  • Experience with white-box or gray-box testing
  • Experience with application security source code reviews
  • Advanced knowledge of operating system and database security (Windows, Unix, Linux, SQL, and Oracle etc.)
  • Experience in the security aspects of multiple platforms, operating systems, software, communications, and network protocols
  • Hands-on experience with commercial and open-source network and application security testing tools
  • Demonstrated sound written and verbal communication skills.
  • Extensive ability to transform technical concepts into usable documented material for non-technical users
  • Work on multiple projects simultaneously, set priorities and meet deadlines
  • Work independently and manage workload with organization to meet expectations and objectives.
  • Absorb, retain and organize information gathered from multiple sources and in a variety of formats.
  • High level of integrity in dealing with confidential and sensitive information.
 
 
Preferred Qualifications:
  • Master’s degree in a relevant field
  • Experience developing exploits
  • Obtained certifications in one or more of the following preferred:
  • CISSP, GIAC, CEH
 
 
Why General Motors?
At GM, we’ve charged ourselves with one mission: to design, build and sell the world’s best vehicles. And to achieve our goals, we’re currently undergoing one of the largest information technology transformations in the history of the automotive industry.
GM IT is a leader in cutting edge technologies such as Mobility, Telematics, Mission-Critical Business Systems, Supercomputing, Vehicle Engineering, and Real-time Computing. We offer challenging growth oriented positions for passionate professionals looking to get in on the ground-floor of a growing “Fortune 5” firm that is re-inventing IT with a laser focus on innovation, speed, and business value.
 
The policy of General Motors is to extend opportunities to qualified applicants and employees on an equal basis regardless of an individual's age, race, color, sex, religion, national origin, disability, sexual orientation, gender identity/expression or veteran status. Additionally, General Motors is committed to being an Equal Employment Opportunity Employer and offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us at Careers.Accommodations@GM.com. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.
 

Job Alerts

backToTop