Associate Cybersecurity Analyst

About The Position

Requirements

• Must have a high level understanding of financial services industry, security, risk and privacy
• Must have current knowledge and stay up-to-date on the latest Cybersecurity legislation, regulations, advisories, alerts and vulnerabilities
• Must have knowledge of Information Security and Cybersecurity frameworks
• Proficiency with MS-Office applications including Word, PowerPoint, Excel, Visio and Project
• Knowledge of security methodologies, policies, standards and industry practices
• Knowledge of information technology systems, infrastructure and operations
• Understanding of cloud technologies and concepts
• Familiarity with DevOps and Agile development process
• Ability to initiate, facilitate and promote Cybersecurity within the organization and monitor adherence to Cybersecurity policies, standards and controls
• Ability to clearly explain and articulate technical concepts using non-technical language
• Strong analytical skills
• Excellent verbal communication skills
• Strong interpersonal skills
• Ability to meet time sensitive deadlines required
• Ability to work collaboratively and build consensus is essential
• Ability to make sound decisions and exercise good judgment
• Ability to manage business and technical relationships with internal and external clients
• Ability to work and achieve goals without constant supervision
• High School Diploma or equivalent required

Nice To Haves

• Information Security Certifications strongly Pref
• 0-2 years of experience in large and complex business environments with a successful track record working directly with senior level management with working knowledge in one or more of the following domains: Access Control, Telecom and Network Security, Cybersecurity Governance, Risk Management, Software Development Security, Cryptography, Security Architecture and Design, Operational Security, Business Continuity & Disaster Recovery, Legal Regulations, Investigations and Compliance, Physical (Environmental) Security, IT or Security Audit, IT or Security Compliance preferred
• 0-2 years of experience in the financial services industry preferred
• 0-2 years of demonstrable experience leading collaborative programs and projects with senior level management required
• Bachelor’s Degree or equivalent experience strongly preferred

Responsibilities

• Develop and update Cybersecurity policies, standards and procedures referencing NIST 800-53 controls and the NIST Cyber Security Framework, including implementing revisions in accordance with updates in relevant regulatory or industry Cybersecurity practices
• Audit management and tracking of remediation items and/or findings to completion
• Collaborate with business partners to manage Cybersecurity needs
• Development of security requirements to protect the company from external and internal threats
• Documentation and reporting of policy or procedure discrepancies and/or change requests
• Initiate, facilitate and promote Cybersecurity within the organization and monitor adherence to Cybersecurity policies, standards and controls
• Advocate for Cybersecurity as an essential business requirement and advocate the business need as the foundation for Cybersecurity program design
• Ensure effective communication and partnership with all departments at GMF and serve as a liaison of Cybersecurity and first point of contact for Cybersecurity concerns
• Represent the Global Cybersecurity organization on projects as needed
• Engage with business partners to translate high-level business requirements into enterprise security initiatives and programs to achieve the GMF's mission, goals and objectives
• Work closely with business stakeholders and project teams to plan, design and check appropriate levels of security governance, resource management and asset management

Benefits

• 401K matching
• bonding leave for new parents (12 weeks, 100% paid)
• tuition assistance
• training
• GM employee auto discount
• community service pay
• nine company holidays