Sr Global Infrastructure Vulnerability Remediation Engineer
13 hours ago
Why GMF Technology?
GM Financial is set to change the auto finance industry and is leading the path of embarking on tech modernization – we have a startup mindset, and preserve our small company culture, in a public company environment with financial stability and intense growth over a decade-plus history. We are data junkies and trust in data and insights to advance our business objectives. We take our goal of zero emission, zero collision, zero congestion, and zero friction very seriously. We believe as an auto finance market leader we are in the driver's seat to lead us in the GM EV mission to change the world. We are building global platforms, in LATAM, Europe, China, U.S. and Canada– and we are looking to grow our high-performing team. GMF is comprised of over 10,000 team members globally. Join our fintech culture within a Blue-Chip company where we are changing the way we use technology to support our customers, dealers and business.
Flexible hybrid work environment (onsite 2 days a week/3 days remote) at our Arlington, TX office.
Note: Please note we are not able to consider candidates who require visa sponsorship for this position.
Responsibilities:
The Global Infrastructure Vulnerability Remediation Engineer will contribute to critical tasks including defining, assessing, and implementing the organization's vulnerability remediation strategy, researching and analyzing remediations for detected vulnerabilities, and sustaining and improving processes intended to enforce desired state configurations for infrastructure, in collaboration with other IT teams, Cybersecurity, and vendors as needed. This person must possess strong analytics, planning and coordination skills. An energetic, solution minded personality with drive, attention to details and excellent communication skills will be needed for success in this position.
JOB DUTIES
Uses a broad and deep understanding of technical concepts to troubleshoot and resolve security vulnerabilities and remediation related issues as required, and analyze, propose and implement changes aimed at continuous system-wide improvements
Act as a technical expert across a broad range of infrastructure, network, applications development, cloud, and third-party vendors to ensure solutions meet the operational and security policies and standards
Work to maintain global security standards, guidelines, metrics, and implement processes and procedures to ensure an acceptable risk level is maintained with adherence to a recognized framework
Review daily vulnerability data to identify and prioritize vulnerabilities and exposures
Utilize data collected in analysis tool to rank, identify severity level and plan short-term and long-term remediation and proactive countermeasures and controls
Research capabilities with intellectual curiosity and critical thinking to determine the best ways to prioritize and remediate vulnerabilities and threats
Continuously drive to improve remediation processes and team skill sets via automation for maximum efficiency and reliability
Assist other engineers with performance analysis, process improvement and task automation
Perform other duties as assigned
Conform with all company policies and procedures
Qualifications:
What makes you a dream candidate?
Knowledge
Familiarity with vulnerability assessment tools like PrismaCloud, Qualys, Kenna, Checkmarx, Veracode, Tainium, Nexpose, and Nessus or similar technologies
Familiarity with industry-standard vulnerability frameworks and databases such as CVE and CVSS and Experience with CSPM, CCM, and cloud security guardrails tools
Proficiency in analyzing large datasets using statistical methods and data visualization techniques to identify patterns related to vulnerabilities
Understanding of the configuration management database (CMDB), IT Service Management (ITSM) processes and their value/relevance to Security solutions
Experience analyzing cloud infrastructure vulnerability data as well as experience working with AWS/Azure VMs, Containers, and image security scanning
Knowledge of IT security processes and controls as well as IT infrastructure, cloud, and networking technical knowledge
Experience designing, implementing and troubleshooting automated solutions in a complex environment using Chef, SCCM or other automation and configuration management platforms
Skills
Excellent presentation, written, oral, and relationship-building skills, including the ability to communicate technical information to non-technical stakeholders
Strong technical writing and technical editing skills needed to produce clear documentation of remediation activities
Advanced information security standards/frameworks (ie, NIST Cybersecurity Framework, CIS, ISO 27001) skills
Strong analytical skills needed to combine information from various sources and find innovative solutions
Ability to thrive in an Agile and collaborative work environment
Experience and Education
6-8 years of experience managing servers, desktops, and/or related infrastructure required
5-7 years of experience leading technical projects and implementations in an IT environment preferred
Experience with DevOps CI/CD pipeline automation strongly preferred
Experience with Azure environments preferred
Expereince with Docker, Terraform and Kubernetes strongly preferred
Experience with Cloud Vulnerability Remediation preferred
What We Offer: Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays.
Our Culture: Our team members define and shape our culture — an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work — we thrive.
Compensation: Competitive pay and bonus eligibility.
Work Life Balance: Flexible hybrid work environment (onsite 2 days a week/3 days remote) at our Irving, TX office (Las Colinas Blvd)
Note: Please note we are not able to consider candidates who require visa sponsorship for this position.
#LI-Hybrid
#LI-SG1
-
Arlington, United States GM Financial Full timeOverview:Why GMF Technology?GM Financial is set to change the auto finance industry and is leading the path of embarking on tech modernization – we have a startup mindset, and preserve our small company culture, in a public company environment with financial stability and intense growth over a decade-plus history. We are data junkies and trust in data and...
-
Arlington, Texas, United States GM Financial Full timeAbout GM FinancialGM Financial is a leading provider of auto finance solutions, committed to innovation and excellence in the industry. Our team is dedicated to delivering exceptional results and driving growth through technology modernization.Job SummaryWe are seeking a highly skilled Global Infrastructure Vulnerability Remediation Engineer to join our...
-
Global Infrastructure Security Engineer
3 weeks ago
Arlington, Texas, United States GM Financial Full timeAbout the RoleWe are seeking a highly skilled Global Infrastructure Security Engineer to join our team at GM Financial. As a key member of our IT organization, you will play a critical role in defining, assessing, and implementing our organization's vulnerability remediation strategy.Key ResponsibilitiesDefine and implement vulnerability remediation...
-
Global Infrastructure Security Engineer
3 weeks ago
Arlington, Texas, United States GM Financial Full timeAbout GM FinancialGM Financial is a leading provider of auto finance solutions, committed to innovation and excellence in the industry. As a company, we value data-driven decision making, and our team of experts is dedicated to leveraging technology to drive business growth and customer satisfaction.Job SummaryWe are seeking a highly skilled Global...
-
Comcast Cybersecurity: Remediation Engineer 3
15 hours ago
Philadelphia, PA, United States Comcast Corporation Full timeMake your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide. Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and...
-
Comcast Cybersecurity: Remediation Engineer 3
12 hours ago
Philadelphia, PA, United States Comcast Corporation Full timeMake your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide. Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and...
-
Infrastructure Engineer
1 week ago
, CO, United States Raytheon Full timeJob Title: Infrastructure EngineerWe are seeking an experienced Infrastructure Engineer to join our team at Raytheon Technologies. As a key member of our Software Infrastructure team, you will be responsible for leading a multi-faceted infrastructure team supporting our project modernization efforts.Key Responsibilities:Lead a team of professionals in Linux...
-
Infrastructure Engineer
1 week ago
, CO, United States Raytheon Full timeJob Title: Infrastructure EngineerWe are seeking an experienced Infrastructure Engineer to join our team at Raytheon Technologies. As a key member of our Software Infrastructure team, you will be responsible for leading a multi-faceted infrastructure team supporting our project modernization efforts.Key Responsibilities:Lead a team of professionals in Linux...
-
Azure DevOps Security Engineer
2 weeks ago
Arlington, Texas, United States GM Financial Full timeAbout GM FinancialGM Financial is a leading auto finance company that is revolutionizing the industry through technology modernization. With a startup mindset and a commitment to innovation, we are shaping the future of finance. Our team is passionate about using data and insights to drive business growth and improve customer experiences.Job SummaryWe are...
-
Infrastructure Engineer
3 days ago
, CO, United States Raytheon Full timeJob Title: Infrastructure EngineerWe are seeking an experienced Infrastructure Engineer to join our team at Raytheon Technologies. As a key member of our Software Infrastructure team, you will be responsible for leading a multi-faceted infrastructure team supporting our project modernization efforts.Key Responsibilities:Lead a team of professionals in Linux...
-
Cyber Vulnerability Assessment Analyst
4 weeks ago
Arlington, United States ANALYGENCE Inc Full timeDescription ANALYGENCE is seeking an experienced Cyber Vulnerability Assessment Analyst (SME) to supportour federal customer who plays a key role in enhancing the security, resiliency, and reliability of the nation's cyber and communications infrastructure. This role directly supports the customer Mission Engineering (ME) Information Security Branch (ISB)...
-
AWS Security Vulnerability Analyst
4 weeks ago
Arlington, Virginia, United States Amazon Full timeAbout the Role:The AWS Proactive Security's Bug Bounty team is expanding and is in search of a dedicated security analyst to enhance our efforts. Key Responsibilities:This role involves collaborating with customers, AWS teams, and Amazon divisions to fortify AWS public-facing services, applications, and websites. You will be an integral part of a talented...
-
Manager, Vulnerability Management
4 weeks ago
Atlanta, GA, United States Delta Air Lines, Inc. Full timeJob DescriptionHow you'll help us Keep Climbing (overview & key responsibilities) Join Delta IT on our journey to becoming the best IT organization in the airline industry. Delta IT is on a journey of transformation. We are changing the way we do business from top to bottom. As thought leaders within Delta, we strive to create meaningful and innovative...
-
Manager, Vulnerability Management
4 weeks ago
Atlanta, GA, United States Delta Air Lines, Inc. Full timeHow you'll help us Keep Climbing (overview & key responsibilities) Join Delta IT on our journey to becoming the best IT organization in the airline industry. Delta IT is on a journey of transformation. We are changing the way we do business from top to bottom. As thought leaders within Delta, we strive to create meaningful and innovative solutions and are...
-
Manager, Vulnerability Management
5 days ago
Atlanta, GA, United States Delta Air Lines, Inc. Full timeHow you'll help us Keep Climbing (overview & key responsibilities) Join Delta IT on our journey to becoming the best IT organization in the airline industry. Delta IT is on a journey of transformation. We are changing the way we do business from top to bottom. As thought leaders within Delta, we strive to create meaningful and innovative solutions and are...
-
Environmental Remediation Expert
3 weeks ago
Arlington, Virginia, United States AECOM Full timeAbout AECOMAECOM is a leading global infrastructure consulting firm, delivering professional services throughout the project lifecycle from advisory, planning, design and engineering to program and construction management.Our teams are driven by a common purpose to deliver a better world through our unrivaled technical and digital expertise, a culture of...
-
Azure DevOps Security Engineer
3 days ago
Arlington, Texas, United States GM Financial Full timeOverviewGM Financial is a leading auto finance company that is revolutionizing the industry through technology modernization. We are a startup-minded company with a small company culture, operating in a public company environment with financial stability and intense growth over a decade-plus history.We are data-driven and rely on insights to drive our...
-
Arlington, Virginia, United States Amazon Full timeAbout the RoleAmazon Web Services (AWS) Security is in search of a dedicated and innovative Cloud Security Specialist to join our AWS Vulnerability Oversight (AVO) team. In our organization, security is paramount, and the AVO team is at the forefront of safeguarding our cloud offerings.We are committed to enhancing security standards by integrating...
-
Arlington, United States General Motors Full timeOverview Opportunity to work in a hybrid model: Potential to work 4 days onsite and 1 day remote Why GMF Cybersecurity? Our Cybersecurity team is tasked with the security engineering, regulatory response, third party risk, and incident response capabilities necessary to secure GM Financial, the captive auto finance subsidiary of General Motors. Reporting...
-
DevSecOps Engineer
4 hours ago
Arlington, Virginia, United States Innovative Defense Technologies Full timeJob Title: DevSecOps EngineerWe are seeking a highly skilled DevSecOps Engineer to join our team at Innovative Defense Technologies. As a DevSecOps Engineer, you will play a critical role in ensuring the security and efficiency of our software products' development and deployment processes.Responsibilities:Develop and maintain automation for provisioning and...