Senior Cybersecurity Engineer - Regulatory Lead

Description
Workplace Status:
Hybrid: Position does not require an employee to be on-site full-time but the general expectation is that the employee be onsite an average of three (3) days each week.
The Role:
This position will lead Product Cybersecurity's UN Regulation No. 155 - Cyber Security and Cyber Security Management System (CSMS) audit preparation and execution.
What You'll Do (Responsibilities):

• Identify, create and maintain required UN R155 work products, such as threat and risk assessment (TARA) reports, validation test case reports, and the CSMS Information Document.
• Support the GRC Staff Engineer in maintaining and/or creating corresponding cybersecurity policies, processes and requirements (e.g., Vehicle Technical Standards, supplier Cybersecurity Interface Agreement).
• Coordinate with the assigned Technical Service and internal GM resources to support required witness testing.
• Enforce threat and risk assessment (TARA) quality control, spanning internal engagement across Product Cybersecurity and Software and Services teams for consistent and accurate execution.
• Support automotive cybersecurity regulatory compliance for joint venture projects as required.
• Collaborate with GM's Regulatory and Engineering teams as needed to fulfill the obligations of the Cybersecurity Vehicle Integration Area (VIA) owner.
• Shape critical industry cybersecurity standards development initiatives (e.g., SAE, NIST, ISO, IEC).
• Support internal and external cybersecurity benchmarking activities (e.g., NIST Scorecard reporting, NIST Privacy Framework adoption, internal and external governance and operational risk management assessments).
• Collaborate with the Product Cybersecurity Security Operations team and technical staff to optimize data acquisition strategies and practices to support automated TARA execution and traceability.
• Support additional CSMS domain activities (e.g., career path development, training, process, supply chain security maturation initiatives).

Additional Description
What You'll Need (Requirements):

• Five years' relevant professional experience
• One years' experience in cybersecurity governance, risk, and compliance (GRC) domain
• Familiarity with/contribution to adversarial attack threat catalog (e.g., MITRE ATT&CK, Automotive Threat Matrix (ATM))
• BA or BS in a technical area of study (e.g., Statistics/Mathematics/ME/EE/CS/CE/Physics/Chemistry/Software Engineering)
• Strong oral, written, and storytelling skills

• This job is not eligible for relocation benefits. Any relocation costs would be the responsibility of the selected candidate.
#LI-DH2
About GM
Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.
Why Join Us
We aspire to be the most inclusive company in the world. We believe we all must make a choice every day - individually and collectively - to drive meaningful change through our words, our deeds and our culture. Every day, we want every employee, no matter their background, ethnicity, preferences, or location, to feel they belong to one General Motors team.
Total Rewards | Benefits Overview
From day one, we're looking out for your well-being-at work and at home-so you can focus on realizing your ambitions. Learn how GM supports a rewarding career that rewards you personally by visiting Total Rewards resources.
Diversity Information
General Motors is committed to being a workplace that is not only free of unlawful discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that workforce diversity creates an environment in which our employees can thrive and develop better products for our customers. We encourage interested candidates to review the key responsibilities and qualifications for each role and apply for any positions that match their skills and capabilities. Applicants in the recruitment process may be required, where applicable, to successfully complete a role-related assessment(s) and/or a pre-employment screening prior to beginning employment. To learn more, visit How we Hire
Equal Employment Opportunity Statement (U.S.)
General Motors is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Accommodations (U.S. and Canada)
General Motors offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us [email protected] or call us at 800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.