Sr Cybersecurity Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

GM Financial · 1 day ago

Sr Cybersecurity Engineer

position220 E Las Colinas blvd, Irving, TX, 75039, US
timeFull-time
remoteHybrid
seniorityMid, Senior Level
date3+ years exp

GM Financial is focused on innovation in the cybersecurity domain, aiming to safeguard enterprise systems and applications against evolving threats. The Cybersecurity Engineer will specialize in Vulnerability Management and Application Security, identifying, assessing, and mitigating vulnerabilities while ensuring compliance with security standards.

Finance
check
Comp. & Benefits
check
H1B Sponsor Likelynote

Responsibilities

Develop and maintain technical security requirements, standards, and documentation for vulnerability management and application security
Design and implement security solutions with emphasis on:
Vulnerability Management (VM) platforms and processes
Application Security tools (SAST, DAST, IAST)
Web Application Firewalls (WAF)
Secure coding practices and CI/CD pipeline integration
Perform vulnerability assessments and penetration testing for applications and systems; analyze findings and drive remediation efforts
Utilize Qualys VMDR to perform automated and on-demand vulnerability scans across infrastructure, applications, and cloud environments
Analyze scan results, assess risk, and collaborate with system owners to prioritize and remediate vulnerabilities
Monitor and analyze system logs and security alerts to detect unauthorized access or anomalies
Create and present remediation progress, security metrics, vulnerability trends, and risk reports to leadership
Participate in incident response activities, providing technical expertise for application-related security incidents
Conduct periodic risk assessments for applications and supporting infrastructure
Evaluate and recommend security tools and technologies to enhance vulnerability detection and remediation capabilities
Stay current on emerging threats, vulnerabilities, and regulatory requirements impacting application security

Qualification

Vulnerability ManagementQualys VMDRApplication SecurityCloud SecurityScriptingAutomationNetworking FundamentalsSecurity FrameworksAnalytical SkillsCI/CD Security IntegrationMicroservices SecurityThreat ModelingCommunication SkillsStrategic Thinking

Required

Deep understanding of vulnerability management processes, CVSS scoring, and remediation strategies
Hands-on experience with Qualys VMDR, including asset discovery, authenticated scanning, vulnerability assessment, and reporting
Strong knowledge of vulnerability lifecycle management
Ability to interpret Qualys findings and translate technical vulnerabilities into actionable remediation guidance for technical and non-technical stakeholders
Familiarity with container security, Kubernetes, and cloud-native application security
Experience securing cloud environments (AWS, Azure, GCP) and implementing IaC security controls (Terraform, CloudFormation)
Proficiency in scripting and automation (Python, Bash, or similar) for vulnerability scanning and remediation workflows
Solid understanding of networking fundamentals, TCP/IP, OSI model, and application layer protocols (HTTP, SSL/TLS, DNS)
Knowledge of security frameworks and standards (NIST CSF, ISO 27001, OWASP Top 10)
Strong analytical skills for interpreting vulnerability data and assessing business impact
Excellent communication skills for collaborating with developers, operations teams, and leadership
Ability to think strategically, innovate, and implement scalable security solutions
Experience with CI/CD security integration and automated vulnerability scanning
Familiarity with microservices architecture and securing APIs
Knowledge of threat modeling and risk assessment methodologies

Preferred

Bachelor's Degree in related field or equivalent work experience strongly preferred
3-5 years of experience in large and complex business environments with a successful track record working directly with senior level management preferred
3-5 years of experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development preferred
Cybersecurity related certifications strongly preferred

Benefits

401K matching
Bonding leave for new parents (12 weeks, 100% paid)
Tuition assistance
Training
GM employee auto discount
Community service pay
Nine company holidays

Company

GM Financial

twittertwittertwitter
Glassdoor3.9
company-logo
GM Financial is the captive finance company and a wholly-owned subsidiary of General Motors Company.
dateFounded in 1992
location
Fort Worth, Texas, USA
people-size5001-10000 employees
web-link
https://www.gmfinancial.com/

H1B Sponsorship

GM Financial has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (101)
2024 (91)
2023 (86)
2022 (81)
2021 (55)
2020 (50)

Funding

Current Stage
Late Stage
Total Funding
unknown
2010-09-29Acquired

Leadership Team

leader-logo
Katie DeGraaf
Senior Vice President, OnStar Insurance, Product & Telematics
linkedin
leader-logo
Ross Reichardt
Chief of Staff; General Motors Insurance
linkedin

Recent News

MEXICONOW
Chevrolet Debuts New Plug-in Hybrid Captiva in Mexico
2025-11-12
PR Newswire
Drivers Can Save Now on Their Buick Model Purchase
2025-11-04
Just-Auto
GM withdraws plan to extend EV tax credits after policy scrutiny – report
2025-10-10
Company data provided by crunchbase