Cybersecurity - Incident Response Infrastructure Engineer
2 weeks ago
Opportunity to work in a hybrid model: Potential to work 4 days onsite and 1 day remote
Why GMF Cybersecurity?
Our Cybersecurity team is tasked with the security engineering, regulatory response, third party risk, and incident response capabilities necessary to secure GM Financial, the captive auto finance subsidiary of General Motors. Reporting directly to the CEO, our Cybersecurity team enjoys unprecedented support to deliver the highest level of security capabilities using cutting edge technologies and automating mundane tasks, allowing our teams to focus on interesting and rewarding security work. As a part of GM, you'll have the opportunity to work on Cybersecurity projects across financial services, automotive, manufacturing, high-tech, and military industries. We are looking for team players who want the freedom to innovate leading edge capabilities to join our growing Cybersecurity team.
We are hiring for multiple levels on our Cybersecurity Incident Response team.
Responsibilities:
Incident Response Software Engineer Responsibilities
Candidates with 2 or more years of experience: This position is responsible for on-going maintenance and development of our incident response platform and infrastructure, building/tuning automated response tools, and incident investigation. Applicants should have strong problem-solving skills, experience in an Agile development environment, experience with Linux system administration, and knowledge around AWS environments. Experience with Docker/Podman deployments, SOAR, and Python are a plus.
Candidates with 4 or more years of experience: In addition, you will also be expected to identify additional gaps and opportunities in our processes and applications, that we can build additional tooling and automations to address, and you will be expected to own those projects from proposal to production. Applicants should also be comfortable mentoring and teaching other team members, as our team is at it's strongest when every member is growing.
What makes you a dream candidate?
Advanced knowledge around Linux administration, specifically around maintaining applications and services.
Provides ongoing monitoring and maintenance for our applications and tooling, to ensure minimal downtime and errors for our Incident Response Capabilities.
Builds and deploys applications and services for our Cybersecurity Incident Response Team, primarily on Linux infrastructure.
Understands and be a consultant for cloud-based deployments and architectures, especially in the AWS or Azure ecosystems.
Participates in the review and implementation of security solutions aimed to enhance incident response capabilities.
Provide the corporate network, assets, and users with security monitoring over time, intrusion detection, and incident response capabilities.
Investigate, escalate, and respond to potential security events and user inquiries.
Participates in alert development and tunning efforts.
Performs analysis of various log sources, SIEM alerts, IDS/IPS alerts, host activity, and network traffic to identify suspicious or unauthorized activity.
Participates in emergency response team activities for responding to various cybersecurity incidents.
Advanced knowledge around managing Docker/Podman deployments, including using docker/podman-compose configurations.
Advanced knowledge of the OSI model and security that is associated with each layer.
Knowledge of IT security processes, controls, and infrastructure along with IT core concepts such as Windows & Active Directory, Unix/Linux, management via the command line, Virtualization & Cloud Computing, and Operational best practices
Understanding of incident response processes and procedures including familiarity with NIST framework
Experience in developing custom detections and logic to identify suspicious activity, specific attacks, and exploits.
Understanding of routing and switching protocols as they relate to load balancing.
Strong understanding of application layer protocols including HTTP, SSH, SSL and DNS
Detailed knowledge of declarative Infrastructure-as-Code approaches and immutable infrastructure is a plus
Qualifications:
Education & Experience
Bachelor's Degree in related field or equivalent work experience strongly preferred.
Minimum of 1-5 years of experience in large and complex business environments with a successful track record working directly with senior level management preferred.
Minimum of 1 year experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development preferred.
Cybersecurity related certifications strongly preferred.
What We Offer: Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays.
Our Culture: Our team members define and shape our culture - an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work - we thrive.
Compensation: Competitive pay and bonus eligibility
Work Life Balance: Flexible hybrid work environment, 4-days a week in office.
-
Cybersecurity Engineer
1 week ago
Arlington, Texas, United States GM Financial Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Engineer to join our Incident Response team at GM Financial. As a key member of our team, you will be responsible for maintaining and developing our incident response platform and infrastructure, building and tuning automated response tools, and conducting incident investigations.Key...
-
Cybersecurity Incident Response Specialist
2 weeks ago
Arlington, Virginia, United States Nodel Full timeJob OverviewPosition: Cybersecurity Incident Response SpecialistLocation: Arlington, VASecurity Clearance: Active Top Secret RequiredA prominent organization is in search of a proficient Cybersecurity Incident Response Specialist to assist Government entities and critical infrastructure owners affected by cyber incidents. This position entails examining...
-
Cybersecurity Incident Response Lead
2 weeks ago
Arlington, Virginia, United States Ampcus Full timeCybersecurity Incident Response Lead - III - IMG03 Hybrid Role - Multi-Year Contract At Ampcus, we are committed to supporting U.S. Government initiatives by providing top-tier cybersecurity vulnerability analysis services aimed at minimizing the risks and effects of vulnerabilities across Federal Civilian Executive Branch (FCEB) entities and Critical...
-
Cybersecurity Incident Response Specialist
2 weeks ago
Arlington, Virginia, United States Nodel Full timePosition: Cybersecurity Incident Response SpecialistLocation: RemoteSecurity Clearance: Active Top Secret Security Clearance requiredNode is dedicated to providing exceptional support to U.S. Government entities in addressing cybersecurity incidents. Our team is tasked with delivering prompt investigation and resolution services to civilian agencies and...
-
Cybersecurity Incident Response Manager
2 weeks ago
Arlington, Virginia, United States Farfield Systems Full timeJob OverviewFarfield Systems is dedicated to assisting U.S. Government entities by providing expert support for on-site incident response to civilian agencies and critical asset proprietors facing cyber threats. Our mission involves immediate investigation and resolution of cyber incidents. We are currently seeking a Cyber Incident Manager to play a pivotal...
-
Cybersecurity Incident Response Manager
2 weeks ago
Arlington, Virginia, United States Farfield Systems Full timeJob OverviewFarfield Systems is dedicated to providing expert support to U.S. Government entities, focusing on incident response for civilian agencies and critical infrastructure owners facing cyber threats. We are currently seeking a Cyber Incident Manager to play a pivotal role in our mission to deliver immediate investigation and resolution of cyber...
-
Cybersecurity Incident Response Specialist
2 weeks ago
Arlington, Virginia, United States Peraton Full timePeraton is seeking a skilled Cybersecurity Incident Response Specialist to contribute to national cybersecurity and resilience efforts in partnership with the Cybersecurity and Infrastructure Security Agency (CISA). In this role, you will be a vital part of the CISA 24x7 Operations Center, ensuring the timely and effective response to cyber threats. Your...
-
Cybersecurity Incident Response Manager II
1 week ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob OverviewArgo Cyber Systems is actively seeking a Cyber Incident Manager to play a pivotal role in supporting our mission to assist U.S. Government entities and critical infrastructure owners in the event of cyber incidents.This position demands a High-Level Security Clearance and involves the following key responsibilities:Analyzing incident data to...
-
Cybersecurity Incident Response Manager II
1 week ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob OverviewArgo Cyber Systems is seeking a Cyber Incident Manager to support vital operations for a U.S. Government client. This role involves providing expert assistance in managing incidents related to cyber threats affecting civilian government agencies and critical infrastructure.Key Responsibilities:Analyzing incident data to identify trends and...
-
Cybersecurity Incident Response Manager
1 week ago
Arlington, Virginia, United States Nodel Full timeJob OverviewPosition: Cybersecurity Incident Response ManagerLocation: Arlington, VASecurity Clearance: Active Top Secret RequiredNode is dedicated to supporting U.S. Government entities by providing essential assistance for on-site incident response to civilian agencies and critical asset owners facing cyber threats. Our team conducts immediate...
-
Cybersecurity Incident Response Manager
2 weeks ago
Arlington, Virginia, United States Nodel Full timePosition Title: Cybersecurity Incident Response ManagerLocation: Arlington, VASecurity Clearance: Must possess an active Top Secret Security ClearanceNode is dedicated to supporting U.S. Government clients by providing expert assistance in incident response for civilian agencies and critical asset owners facing cyber threats. Our team is responsible for...
-
Cybersecurity Incident Response Manager II
1 week ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob OverviewArgo Cyber Systems is actively seeking a skilled Cyber Incident Manager Level II to enhance our mission in supporting U.S. Government clients. This role is crucial for delivering on-site incident response services to various civilian agencies and critical asset owners facing cyber threats.Key Responsibilities:Analyze incident data to uncover...
-
Arlington, Virginia, United States BCMC Full timeJob DescriptionBCMC is seeking a highly skilled Principal Cybersecurity Incident Response Technical Leader to support our customer in leading a technical team through the detection, response, mitigation, and reporting of cyber threats affecting the client networks.Key Responsibilities:Oversight and supervision of a 24 x 7 watch supporting continuous...
-
Cybersecurity Incident Management Specialist
1 week ago
Arlington, Virginia, United States Peraton Full timeJob OverviewPeraton is seeking a proficient Cyber Case Management/Service Desk Agent to enhance our cybersecurity efforts. This role is pivotal in collaborating with the Cybersecurity and Infrastructure Security Agency (CISA) to deliver essential support and resources. The successful candidate will possess a strong background in cyber incident management and...
-
Cybersecurity Incident Response Manager
2 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob OverviewArgo Cyber Systems specializes in delivering both remote and onsite advanced technical support, proactive threat hunting, rapid incident response, and immediate investigation and resolution through host-based, network-based, and cloud-based cybersecurity analysis capabilities. Our team members are at the forefront of digital forensics and...
-
Cybersecurity Incident Management Specialist
2 weeks ago
Arlington, Virginia, United States Peraton Full timeJob OverviewPeraton is seeking a proficient Cyber Case Management/Service Desk Agent to contribute to national cybersecurity efforts. This role involves collaboration with the Cybersecurity and Infrastructure Security Agency (CISA) to deliver essential support and resources. The successful candidate will possess a strong background in cyber incident...
-
Cybersecurity Incident Management Specialist
2 weeks ago
Arlington, Virginia, United States Peraton Full timeJob OverviewPeraton is seeking a dedicated Cyber Case Management/Service Desk Agent to enhance our cybersecurity initiatives. This role is pivotal in collaborating with the Cybersecurity and Infrastructure Security Agency (CISA) to deliver essential support and resources. The successful candidate will possess a strong background in cyber incident management...
-
Cybersecurity Incident Management Specialist
2 weeks ago
Arlington, Virginia, United States Peraton Full timeJob OverviewPeraton is seeking a proficient Cyber Case Management/Service Desk Agent to contribute to our mission of enhancing national cybersecurity and resilience. This role involves close collaboration with the Cybersecurity and Infrastructure Security Agency (CISA) to deliver essential support and resources. The ideal candidate will possess a solid...
-
Cybersecurity Incident Management Specialist
2 weeks ago
Arlington, Virginia, United States Peraton Full timeJob OverviewPeraton is seeking a proficient Cyber Case Management/Service Desk Agent to enhance our cybersecurity initiatives. This role is pivotal in fortifying the nation's defenses against cyber threats, collaborating closely with the Cybersecurity and Infrastructure Security Agency (CISA) to deliver essential support and resources. The ideal candidate...
-
Social Scientist
1 day ago
Arlington, Virginia, United States Cybersecurity and Infrastructure Security Agency Full timeAbout the RoleWe are seeking a highly skilled Social Scientist to join our team at the Cybersecurity and Infrastructure Security Agency. As a Social Scientist, you will play a critical role in developing, carrying out, and overseeing evaluation activities and analyses to further the mission of our agency.Key ResponsibilitiesDevelop methodologies and...