Sr. Cybersecurity Engineer- Controls Assurance Assessor

Description
Workplace Status:
Hybrid - This role is categorized as hybrid. This means the successful candidate is expected to report to their primary location three times per week, at minimum, or other frequency dictated by the business.
The Team:
In recent years, GM Information Technology has successfully executed the largest IT transformation in the history of the automotive industry, fully insourcing what once was a nearly completely outsourced IT function. Today GM IT is a dynamic and fast paced organization that designs, develops and maintains all IT infrastructure, applications and solutions enabling GM's global operations. From designing and building the next generation of electric and other vehicles to developing a world-class GM experience for our dealers and customers, GM IT is driving real change in the most iconic automaker on the planet.
Our team delivers unique enterprise-wide IT solutions in cutting-edge technologies such as mobility, telematics, mission-critical business systems, supercomputing, cloud, vehicle engineering and real-time computing. We offer challenging positions for passionate professionals looking to advance their careers and be a part of an IT organization focused on innovation, speed and business value.
The Role:
The Sr. Cybersecurity Engineer- Controls Assurance is responsible for conducting and leading, assessments of IT Controls across varying platforms, including mainframe, mid-range, and cloud environments, and associated technology components (e.g. applications, infrastructure, network, middleware, database, etc.). Assessment activities are conducted primarily to ensure compliance with various legal and regulatory requirements, as well as, adherence to various Corporate Policies, Industry Standards / Maturity Models, or other requirements set forth by IT management.
This role also involves leading and executing projects as assigned, and involves interacting with and engaging technical IT personnel outside of the immediate workgroup. All work is performed in a corporate environment, which is global in nature, and involves executing standard auditing methodologies, processes, and tools in the areas of audit planning, field work, data analysis, reporting, work paper documentation, and quality assurance (QA). This role requires advanced Mainframe OS and Security Tool Administrative, as well as very strong data manipulation skills (MS Excel) to extract and evaluate technical information used to perform compliance assessments.
In this role you will perform complex assignments requiring a wider application of security principles, theories and concept. You will interact with senior internal leadership. May lead and provide direction to a team of individuals. Expected to influence without direct control. You will work with independence, though some support and advice is readily available from the manager. During the year, you will set short term objectives and guidelines in support of IT security strategy, which have a direct impact on IT Security's overall results. You will hold yourself and others accountable for demonstrating GMs values and cultural behaviors.
What You'll Do (Responsibilities):

• Develop a high-level understanding of the control environment (e.g. function and design).
• Follow the existing assessment objectives and scope of control testing.
• Execute field work and collect / analyze evidence.
• Conclude on the adequacy of the control design and operating effectiveness.
• Document findings and conclusions.
• Report the status and results of the assessment.
• Understand and maintain compliance with GM standards and industry standard methodology.
• Holds themselves and others accountable for demonstrating GMs values and cultural behaviors.
• Models GM behaviors and crafts a winning culture.

Additional Description
What You'll Need (Required Qualifications):

• Bachelors degree in Information Systems, Computer Science, or related field; equivalent technical experience will be considered in lieu of degree
• 3+ years of experience in Mainframe Administration
• 3+ years of formal IT Auditing experience

Basic Proficiencies:

• Assessing Controls Design / Operating Effectiveness
• Assessing Risks
• Evaluating General IT Controls
• Conducting / Facilitating Meetings
• Interviewing auditees / Control Owners
• Analyzing data
• Identifying issues / performing root cause analysis
• Developing presentations & Presenting to Sr. Management
• Documenting results / Report writing

Technical Proficiencies (Mainframe Focus):

• Mainframe Systems (e.g. RACF [IBM Suite], IWS, MF Apps)
• Middleware (e.g. Tidal Batch, Sailpoint, etc)
• Operating Systems (e.g. MF ZOS, UNIX/LINUX, Windows, etc)
• Database Systems (e.g POSTGRES, DB2, INGRES, etc)
• DevOps Pipeline & Cloud environments
• Authentication Systems (e.g LDAP)
• File Transfer Systems (e.g. IIB, Datastage, SeeBeyond, etc.)
• Basic Network (e.g. Firewalls, Network Monitoring Systems, IDS, IPS, etc.)

Communication / Interpersonal Skills:

• Oral / Written Communication skills
• Persuasion / Negotiation skills
• Data mining and analytics
• General IT knowledge
• Business /political acumen
• Time / Resource management
• Developing / Managing Relationships
• Conflict Management
• Strong analytical and problem-solving ability
• Project management skills
• Works independently with accountability for results

Preferred Qualifications:

• Professional Certifications: CISSP, CISA (preferred), CISM, CIA, CGEIT, CRISC, PMP

GM DOES NOT PROVIDE IMMIGRATION-RELATED SPONSORSHIP FOR THIS ROLE. PLEASE DO NOT APPLY FOR THIS ROLE IF YOU WILL NEED GM IMMIGRATION SPONSORSHIP (e.g., H-1B, TN, STEM OPT, etc.) NOW OR IN THE FUTURE.
• This job is not eligible for relocation benefits. Any relocation costs would be the responsibility of the selected candidate.
#LI-DH2
About GM
Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.
Why Join Us
We aspire to be the most inclusive company in the world. We believe we all must make a choice every day - individually and collectively - to drive meaningful change through our words, our deeds and our culture. Every day, we want every employee, no matter their background, ethnicity, preferences, or location, to feel they belong to one General Motors team.
Total Rewards | Benefits Overview
From day one, we're looking out for your well-being-at work and at home-so you can focus on realizing your ambitions. Learn how GM supports a rewarding career that rewards you personally by visiting Total Rewards resources.
Diversity Information
General Motors is committed to being a workplace that is not only free of unlawful discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that workforce diversity creates an environment in which our employees can thrive and develop better products for our customers. We encourage interested candidates to review the key responsibilities and qualifications for each role and apply for any positions that match their skills and capabilities. Applicants in the recruitment process may be required, where applicable, to successfully complete a role-related assessment(s) and/or a pre-employment screening prior to beginning employment. To learn more, visit How we Hire
Equal Employment Opportunity Statement (U.S.)
General Motors is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Accommodations (U.S. and Canada)
General Motors offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us [email protected] or call us at 800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.