AVP Cybersecurity Architecture - GM Financial
Irving, TX 75039
About the Job
Hybrid work environment; 4 days in office and 1 day remote
Why Cybersecurity at GM Financial?
The GMF Cybersecurity team is tasked with the security engineering, regulatory response, third party risk, and incident response capabilities necessary to secure GM Financial, the captive auto finance subsidiary of General Motors. Reporting directly to the CEO, our Cybersecurity team enjoys unprecedented support to deliver the highest level of security capabilities using cutting edge technologies and automating mundane tasks, allowing our teams to focus on interesting and rewarding security work. As a part of GM, you’ll have the opportunity to work on Cybersecurity projects across financial services, automotive, manufacturing, high-tech, and military industries. We are looking for team players who want the freedom to innovate leading edge capabilities to join our growing Cybersecurity team.
Responsibilities:About the Role:
The AVP Cybersecurity Architecture leads a team of skilled Cyber Architects, overseeing the design and implementation of security controls for new systems and technologies. This team is responsible for ensuring all security requirements are met, aligning with regulatory standards and organizational goals. The AVP collaborates with stakeholders across the business and with Architecture, Engineering, and Operations teams throughout Cyber, IT, and Digital to define security strategies, guide architecture decisions, and assess risks. The ideal candidate will bring expertise in cybersecurity frameworks, cloud and hybrid environments, and a deep understanding of emerging technologies to drive secure innovation and resilient infrastructure through strong leadership and effective team management.
In this role, you will:
- Leads Cybersecurity Operations group and is responsible for engineer talent management
- Coordinate with Senior IT Security leaders to set direction and operation of the group
- Prepares roadmaps, guidelines and direction for the department
- Preparing technical requirements, standards, manage project assignment and delegate tasks as needed
- Identify, engineer and design security technologies including, but not limited to: Security Incident and Event Managers (SIEM) and threat intelligence solutions, Web filtering (proxy, network AV), Intrusion Detection and Prevention Systems (IDS/IPS), Endpoint security solutions, Data Loss Prevention (DLP), Vulnerability Management (VM), Threat Intelligence and Threat Detection, Web Application Firewalls (WAF), Email Gateways, Breach Mitigation, Certificate Management, SSL encryption and decryption, Identity Management, Cloud Security, Database Security, Web Gateways and VPNs and Firewalls
- Communicate critical threats and remediation efforts for the enterprise
- Provide in-depth support for information security incidents including internal violations, hacker attacks, virus and system outages
- Prepare and update information procedures, standards and/or other technical requirement documents
- Act as a technical resource to department management and others within the company who are seeking more information about security
- Develop detailed proposals and plans for new information security systems that would enhance or enable new capabilities for network or host systems
- Perform other duties as assigned and conform with all company policies and procedures
Reporting Structure:
- Vice President Cybersecurity Architecture
What makes you a dream candidate?
- Advanced knowledge in infrastructure design and management, local and wide area networking concepts, principles and protocols
- Strong working knowledge of Intel platforms, iSeries and pSeries servers, IT Service Management (ITSM) best practices and processes, experience with UML Design Tools, TCP/IP, OSI model and imp subnetting
- Understanding of routing and switching protocols as they relate to load balancing
- Strong understanding of application layer protocols including HTTP, SSH, SSL and DNS
- Knowledge and stay abreast on the latest security and privacy legislation, regulations, advisories, alerts and vulnerabilities
- Knowledge of IT security processes and controls as well as IT infrastructure and networking technical knowledge
- Must have demonstrable experience supporting security requirements of a large, global enterprise environment
- Ability to apply structured analysis methods to various types of data to establish trends, determine variability and business impact
- Experience with alternate management methods using SSH, serial connections and the command-line interface TMSH
- Advanced information security standards/frameworks (ie, NIST Cybersecurity Framework, ISO 27001) skills
Experience
- Bachelor’s Degree or equivalent experience preferred
- 6 years of experience in large and complex related business environments with a successful track record working directly with senior level management required
- 5-7 years of experience in one or more of the following domains: Cybersecurity, Information Security, Security Architecture and Design, Security Governance and Risk Management, Security Engineering and Operations, IT or Security Audit, and Security, Legal, and Regulatory Compliance required
- Information Security Certifications preferred
What We Offer: Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), training, GM employee auto discount, community service pay and nine company holidays.
Our Culture: Our team members define and shape our culture. We have an environment that welcomes new ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work — we thrive.
Compensation: Competitive salary and bonus eligibility; this role is eligible for company vehicle program
Work Life Balance: Flexible hybrid work environment with 4 days a week in office and 1 day remote.
LI-JI1
#LI-Hybrid