• Conduct research and analysis in specific areas of expertise targeting client’s key initiatives. • Deliver high quality actionable advice through a variety of media. • Write high quality, clear, actionable, advisory research documents. • Remain ahead of the curve on developments and issues within these specified areas as well as applicable adjacent areas. • Articulate and defend assigned topic positions during discussions, while demonstrating openness to reconsidering viewpoints and accepting consensus decisions. • Respond to client questions, create materials for and deliver to clients in person, via teleconference, video conference or webinar and event presentations. • Maintain the Gartner’s industry leadership reputation by responding to press inquiries. • Proactively work with the wider sales organization and deliver outstanding sales support to retain and grow the business.

Description The Role GM's Cybersecurity Team safeguards the company's global information assets, networks, and infrastructure. Our mission is to proactively defend GM against evolving cyber threats through strategic leadership, technical excellence, and innovative risk management. We seek cybersecurity professionals with advanced expertise, capable of driving enterprise security initiatives and influencing organizational resilience. As a Senior Security Software Engineer, you will design, lead, and deliver secure, scalable integration services that connect our cyber ecosystem (SIEM, EDR, IAM, SSPM, CSPM, ITSM, cloud) and activate AI/LLM capabilities to accelerate detection, response, and risk management. You will drive architecture for critical services, mentor developers, and partner across SecOps, SOC, Platform, and Data teams to ship measurable outcomes. What You'll Do - Own architecture & delivery for complex integration services (APIs, microservices, event-driven workflows) with production SLIs/SLOs. - Build AI-driven workflows (RAG, summarization, classification, agents) that augment investigations, triage, and orchestration. - Create reusable connectors bridging SIEM/EDR/IAM/SSPM/ITDR/ITSM and cloud telemetry with robust error handling, retries, and DLQs. - Implement security automation (SOAR-like playbooks) that enrich alerts and trigger deterministic + AI-assisted responses. - Harden and observe services with CI/CD, automated testing, performance profiling, metrics, and incident runbooks. - Mentor engineers and lead technical design reviews, coding standards, and reference implementations. - Translate requirements into clear epics/roadmaps; align stakeholders and deliver on time with quality. Your Skills & Abilities (Required Qualifications) - 5-7 years in software security engineering; advanced proficiency in modern programming language s . - Expert in API development, microservices, event streaming , and idempotent integration patterns. - Experience deploying software using any modern CI/CD pipeline and automated delivery practices. - Hands-on with security tooling integrations (e.g., SIEM, EDR, SSPM ). - Proven AI integration experience : LLM agents, embeddings, vector databases, RAG, prompt engineering. - Cloud proficiency ( Azure/AWS/GCP ) and IaC ( Terraform/Bicep/ARM/CloudFormation ). - Data engineering fluency : ETL/ELT , schema design, normalization/enrichment; formats ( JSON, YAML, syslog, STIX/TAXII ). - Excellent cross-functional communication; ability to lead small teams through delivery. What Will Give You a Competitive Edge (Preferred Qualifications) - Experience extending vendor SDKs/plugins ; contributions to open-source ( security/AI ). - Security data modeling ( MITRE ATT&CK mappings, entity graphs ) and knowledge stores. - Familiarity with Semantic Kernel/LangChain , feature engineering, or lightweight MLOps . Compensation: The compensation information is a good faith estimate only. It is based on what a successful applicant might be paid in accordance with applicable state laws. The compensation may not be representative for positions located outside of New York, California, or Washington. - The expected base compensation for this role is : $125,200 - $158,600. The actual base compensation within the identified range will vary based on factors relevant to the position. - Bonus Potential: An incentive pay program offers payouts based on company performance, job level, and individual performance. - Benefits: GM offers a variety of health and wellbeing benefit programs. Benefit options include medical, dental, vision, Health Savings Account, Flexible Spending Accounts, retirement savings plan, sickness and accident benefits, life insurance, paid vacation & holidays. GM does not provide immigration-related sponsorship for this role. Do not apply for this role if you will need GM immigration sponsorship now or in the future. This includes direct company sponsorship, entry of GM as the immigration employer of record on a government form, and any work authorization requiring a written submission or other immigration support from the company (e.g., H1-B, OPT, STEM OPT, CPT, TN, J-1, etc.) This role is categorized as remote. This means the selected candidate may be based anywhere in the country of work and is not expected to report to a GM worksite unless directed by their manager. About GM Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all. Why Join Us We believe we all must make a choice every day - individually and collectively - to drive meaningful change through our words, our deeds and our culture. Every day, we want every employee to feel they belong to one General Motors team. Total Rewards | Benefits Overview From day one, we're looking out for your well-being-at work and at home-so you can focus on realizing your ambitions. Learn how GM supports a rewarding career that rewards you personally by visiting Total Rewards resources. Non-Discrimination and Equal Employment Opportunities (U.S.) General Motors is committed to being a workplace that is not only free of unlawful discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that providing an inclusive workplace creates an environment in which our employees can thrive and develop better products for our customers. All employment decisions are made on a non-discriminatory basis without regard to sex, race, color, national origin, citizenship status, religion, age, disability, pregnancy or maternity status, sexual orientation, gender identity, status as a veteran or protected veteran, or any other similarly protected status in accordance with federal, state and local laws. We encourage interested candidates to review the key responsibilities and qualifications for each role and apply for any positions that match their skills and capabilities. Applicants in the recruitment process may be required, where applicable, to successfully complete a role-related assessment(s) and/or a pre-employment screening prior to beginning employment. To learn more, visit How we Hire. Accommodations General Motors offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us [email protected] or call us at 1-800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.

• Use KQL for data analysis and development of security logic • Build security automations with PowerShell and GitHub Actions • Work closely with security analysts and develop reusable detection patterns • Optimize CI/CD processes and integrate DevSecOps

• Responsible for engineering, implementing, and operating various security services within the Enterprise Privileged Access Management (ePAM) platform. • Work directly with customers to on-board credentials/applications/roles into various PAM solutions within the platform. • Identify and mitigate threats, handle Identity Access Management (IAM) release engineering, provisioning and maintenance of platform infrastructure, system administration, and security tools. • Apply Site Reliability Engineering (SRE) principles to ensure the highest Quality of Service and Incident Response for the ePAM platform. • Conduct change management with a continuous integration and continuous delivery (CI/CD) mindset, providing application infrastructure engineering and global platform operations support for solutions like BeyondTrust Password Safe, Microsoft LAPS, EPM, and PIM in our EntraID/Azure AD Tenant. • Design, implement, and maintain robust monitoring and observability solutions (including metrics, logs, and traces) to ensure maximum availability, instant detection of issues, and deep insights into system behavior, performance, and security events. Utilize detection and monitoring tools (e.g., Dynatrace) to analyze system health, proactively detect suspicious activity, and develop/maintain comprehensive alerts, dashboards, and reporting. • Develop and leverage Standard Operating Procedures (SOPs), conduct risk assessments, and respond to internal, external, and customer audits, ensuring all actions comply with Security, Auditor, and Ford IT policies/best practices. • Provide hands-on engineering/support experience with a broad range of Operating Systems (e.g., Windows Server/Client, Unix/Linux) and Database Platforms (e.g., MS SQL, Oracle, Teradata), including virtualization technologies like vSphere/ESX and Red Hat OpenShift. • Collaborate with the Global ePAM team, IT service teams, customers, and vendors to triage and resolve operational incidents within target Service Level Agreements (SLAs). • Develop and maintain Disaster Recovery (DR) and Business Continuity (BCP) plans; perform DR and BC testing in compliance with Ford IT Policy and Auditor requirements. • Maintain documentation of all administrative processes, procedures, and configurations. • Interact with team members to improve tools, technology stack, and application performance and stability. • Resolve issues and concerns through collaboration with customers, engineering Subject Matter Experts (SMEs), and product vendors. • Propose, configure, and implement enterprise solutions (covering both process and technical aspects) according to established standards and industry best practices. • Participate in the design, implementation, integration, and maintenance of software, technical infrastructure, and services (covering all aspects of the technology lifecycle). • Develop implementation requirements for technical infrastructure and services. • Develop project charters and/or project requirements (cost, timing, scope, contingency, and risks). • Develop support and deployment plans for technical infrastructure and services. • Conduct rigorous testing and deployment of vendor product updates with robust change control processes, aiming for 99.99% uptime. • Identify and mitigate bugs/security risks with vendor products while delivering enhancements and integrations that meet/exceed customer expectations. • In-depth understanding of Enterprise Security, with a strong emphasis on Identity and Access Management and PAM solutions like BeyondTrust, CyberArk (prem and SaaS) and Azure/Google Cloud IAM (Identity and Access Management) including Entra PIM (Privileged Identity Management), InTune suite • Experience with designing, supporting and implementing solutions with an SRE (Site Reliability Engineering) approach and utilizing Monitoring, Alerting and Observability tools such as Dynatrace and Splunk. • Experience with CI/CD development, DevSecOps, Infrastructure as code. • Basic experience with utilizing scripting and automation tools (e.g., Perl, Python, BASH, PowerShell) and API workflows. • Experience with the investigation, response, and resolution of security and reliability incidents, applying SRE practices and focusing on minimizing Mean Time To Detect (MTTD) and Mean Time To Recover (MTTR). • Highly motivated individual with strong Information Security Controls, Policy and Assurance and Shift Left, and Compliance experience/skills. • Demonstrable ability to collaborate with other skills teams to rapidly identify and resolve problems in a complex enterprise environment with multiple technical interdependencies. • Strong written and verbal communication skills with a high degree of attention to detail. • A curious mindset, with the ability to learn new technology quickly and train others. • Demonstrable ability to work within a globally dispersed team environment. • Proven track record to develop and document requirements. • Ability to solve complex technical issues in a prem/hybrid/cloud enterprise Security environment. • Experience with Agile planning tools such as JIRA.