The Cybersecurity Architect is responsible for the development and delivery of a comprehensive Cybersecurity program for General Motors Financial to assure that information created, acquired or maintained by GMF is used in accordance with its intended purpose and to protect GMF information, applications and infrastructure from external and internal threats. Additionally, the program will comply with all statutory and regulatory requirements for information protection and Cybersecurity. The Cybersecurity Architect is responsible for developing and designing comprehensive security processes and controls into the IT infrastructure. The Cybersecurity Architect is responsible for designing and maintaining a secure development life cycle for General Motors Financial to assure that information created, acquired or maintained by GMF is used in accordance with its intended purpose. Additionally, the secure development life cycle will comply with all statutory and regulatory requirements for information access, Cybersecurity. Other key responsibilities include engaging in the initial requirements definition by analyzing threats and risks, facilitating security reviews to identity vulnerabilities, and testing security requirements. Analysis of threats and risks should consider malware analysis and protocol analysis. This position will work with application teams and IT groups by providing information on Cybersecurity practices, risk assessments and supporting incident response in the investigation of incidents. This position will work with internal and external groups to ensure the proper Cybersecurity policies and standards are effectively operating. This employee has contact with other GMF departments and will assist in articulating and implementing the Cybersecurity strategy.
Work with IT departments, IT Architects, data custodians and governance groups to develop and update GMF Cybersecurity policies, standards and procedures for secure application architecture.
Actively partner with infrastructure, application and other stakeholders to ensure deployed solutions minimize security and privacy risks.
OTHER IMPORTANT DUTIES
Perform other duties as assigned.
Reports to: AVP Cybersecurity Architecture
Direct Reports: None
Normal office environment; subject to stressful situations. Travel approximately 5%