Back
05/29/2026

Associate Cybersecurity Engineer

Job Description

Opportunity to work in a hybrid model: Potential to work 4 days onsite and 1 day remote

Why GM Financial Cybersecurity?

Innovation isn’t just a talking point at GM Financial, it’s how we operate. By joining our team, you’ll work in a mission-focused environment with specialized teams, including Engineering, Threat Intelligence, Vulnerability Management, Incident Response, Firewall, Governance, Risk, Architecture and Offensive Security. These teams collaborate to identify, manage and respond to threats, all while driving innovation across the environment.

Cybersecurity is central to our strategic vision, so you’ll benefit from exceptional leadership visibility, with direct reporting lines to the CEO. This structure ensures your work is recognized and supported at the highest levels, while also enabling bold innovation and the adoption of cutting-edge technologies.

Shape the future of Cybersecurity at GM Financial, with the freedom to explore, the tools to build and the support to thrive.

This position will be posted until filled.

About the role: 

As an Associate Cybersecurity Engineer specializing in Vulnerability Management and Application Security, you will play a critical role in safeguarding enterprise systems and applications against evolving threats. Your primary focus will be on identifying, assessing, and mitigating vulnerabilities across infrastructure and application layers, while ensuring compliance with security standards and best practices.

In this role you will: 

  • Responsible for maintaining and building upon a fundamental skill set in regards to Cybersecurity triage, investigation and response activities
  • Design and implement security solutions with emphasis on:
    • Vulnerability Management (VM) platforms and processes
    • Application Security tools (SAST, DAST, IAST)
    • Secure coding practices and CI/CD pipeline integration
  • Perform vulnerability assessments and penetration testing for applications and systems; analyze findings and drive remediation efforts.
  • Collaborate with development and operations teams to integrate security controls into DevOps workflows and Infrastructure as Code (IaC).
  • Monitor and analyze system logs and security alerts to detect unauthorized access or anomalies.
  • Create and present security metrics, vulnerability trends, and risk reports to leadership.
  • Participate in incident response activities, providing technical expertise for application-related security incidents.
  • Stay current on emerging threats, vulnerabilities, and regulatory requirements impacting application security.

Apply Now
Apply Now
GM Financial
GM Financial