Apply on Employer Site

GM Financial · 6 hours ago

Senior Principal Cybersecurity Engineer, Threat and Vulnerability

Arlington, TX

Full-time

Hybrid

Senior Level, Lead/Staff

12+ years exp

GM Financial is committed to innovation in Cybersecurity, providing a mission-focused environment with specialized teams. The Senior Principal Cybersecurity Engineer will be responsible for managing and mitigating security vulnerabilities across IT infrastructure and applications, ensuring effective communication of risks and remediation strategies.

Finance

Comp. & Benefits

H1B Sponsor Likely

Responsibilities

Support and influence technical direction for vulnerability and scanning supporting technology

Architect, build and maintain scalable vulnerability detection rules, alerts, scripts, and triage pipelines

Monitor and assess the company’s cybersecurity risks and implement mitigation strategies to address vulnerabilities

Conduct continuous discovery and vulnerability assessment of enterprise-wide assets , including vulnerability scans in support of operational matters (non-scheduled)

Serve as a technical escalation point for vulnerability management and remediation efforts

Define, build and apply protective mitigations and work with engineering and infrastructure teams to integrate fixes upstream, and to support remediation efforts to close vulnerability exposure to new threats

Interpret complex data from vulnerability scans to pinpoint potential security risks and weaknesses

Examine disclosed vulnerabilities, threat scenarios, and mitigating controls to understand the potential impact on the organization

Provide specific recommendations for addressing and mitigating identified vulnerabilities, prioritizing effort based on factors such as risk, exposure, business impact, threat intelligence, and contextual data

Perform technical analysis of all scan results and provide a report of analysis as required

Qualification

Vulnerability ManagementThreat ModelingRisk AssessmentCloud SecurityPythonDevSecOpsSecure CodingData VisualizationAnalytical SkillsCommunication Skills

Required

Experience with leading cross-functional and/or global initiatives from start to finish

Advanced knowledge of business acumen and a deep understanding of business implications of decisions

In-depth understanding of company values, mission, vision and strategic direction

Comprehensive knowledge of GM Financial's business operations

Recognized as an expert across the business unit

Strong experience in threat modeling, secure design, and code review processes

Strong knowledge of Windows, Linux, Unix, and other operating system's vulnerabilities and ways to stop them

Demonstrated knowledge in methods to protect against ransomware threats

Deep experience building and utilizing highly scalable platforms and tools (e.g., Vulnerability scanners, detection pipelines, analytics systems)

Independent ability to aggregate and report on data, utilizing data visualization techniques

Robust experience securing hybrid/multi cloud environments (Azure, AWS)

Proven and verifiable record of building vulnerability tooling and automations integrated into workflows

Deep understanding of the vulnerability risk landscape and its impact on cyber threats

Strategic understanding and practical experience with vulnerability remediation priority

Demonstrated experience performing risk assessments of vulnerabilities and evaluating compensating and mitigating controls in large, complex infrastructures

Knowledge of secure coding practices and application security testing (SAST, DAST, SCA, IaC, etc)

Strong experience building and operating Vulnerability Management, Threat Intelligence, or other security programs

Experience with Python, REST, Node, SWL, and other popular coding languages

Strong familiarity with computer networking operations, TCP/IP networking, network fabrics, OSI layers, and corporate networking devices and their operating systems

Demonstrated experience with DevSecOps and CI/CD methodologies

Strong understanding with securing container-based systems (Docker, Kuberntes, etc)

Working understanding of CVE, CWE, CVSS scoring, MitRE ATT&CK Framework, threat intelligence, and CISA

Possess excellent analytical, written, and verbal communication and documentation skills

Bachelor's Degree or Associate Degree plus 2 years of relevant experience required

12 years minimum experience in related functions

5-7 years experience leading through mentorship in a related field

5-7 years experience driving thought leadership and innovation across products

Preferred

Relevant certifications or licenses preferred

Benefits

401K matching

Bonding leave for new parents (12 weeks, 100% paid)

Training

GM employee auto discount

Community service pay

Nine company holidays

Company

GM Financial

Glassdoor3.9

GM Financial is the captive finance company and a wholly-owned subsidiary of General Motors Company.

Founded in 1992

Fort Worth, Texas, USA

5001-10000 employees

https://www.gmfinancial.com/

H1B Sponsorship

GM Financial has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (101)

2024 (91)

2023 (86)

2022 (81)

2021 (55)

2020 (50)

Funding

Current Stage

Late Stage

Total Funding

unknown

2010-09-29Acquired

Leadership Team

Katie DeGraaf

Senior Vice President, OnStar Insurance, Product & Telematics

Ross Reichardt

Chief of Staff; General Motors Insurance

Recent News

MEXICONOW

Chevrolet Debuts New Plug-in Hybrid Captiva in Mexico

2025-11-12

PR Newswire

Drivers Can Save Now on Their Buick Model Purchase

2025-11-04

Just-Auto

GM withdraws plan to extend EV tax credits after policy scrutiny – report

2025-10-10

Company data provided by crunchbase