Senior Cyber Security Engineer - Cloud & Multifactor Authentication

Description
Workplace Status:
Hybrid - This role is categorized as hybrid. This means the successful candidate is expected to report to their primary location three times per week, at minimum, or other frequency dictated by the business.
The Role:
In this role as an IAM Cloud Authentication Security Engineer, you will be responsible for the overall strategy, planning, development, execution and support of GM's cloud Authentication and MFA solutions and their associated processes. The individual in this role will provide overall implementation and direction into Authentication, MFA and IAM functions across the organization, including areas such as mobile authentication, federation, policy creation and validation, access management, authentication and authorization, security, and provisioning identity data.
This individual will work closely with Cyber Defense, Service Desk, Network Security, Security Audit, Business leads, Application Developers and System Administrators in creating scalable and secure cloud authentication and MFA solutions and operations.
Job Duties:

• Identify, evaluate, and participate in decision making around new and emerging Cloud Authentication and MFA technologies, and must be able to support other areas of IAM and Information Security as needed.
• Demonstrate an advanced understanding of troubleshooting and configuring Cloud Authentication and MFA policies for applications and API integrations.
• Participate in installing, upgrading, configuring, and evaluating new MFA products including mobile and biometrics; Administer Cloud Multifactor Authentication as well as Smartcard/Biometric technologies.
• Partner with Cyber Security teams to ensure implementations meet internal policies and security standards; Create and support authentication, access policies, and single sign-on use cases relating to Windows, *nix, MacOS, and Ubuntu. Responsible for end-to-end security testing of existing and new Cloud MFA implementations.
• Provide expert level security consultation on internal projects focusing on business needs, security's role in change management, and how data is transmitted internally and externally.
• Troubleshoot and diagnose system failures in timely fashion; Must be available for on call rotations.
• Assist with creation and updates of knowledge articles, scripts, or other resources required for helpdesk and operations teams.

Additional Description
Minimum Qualifications:

• Bachelor's degree in computer science or related field.
• 6+ years Identity and Access Management or Information Security experience with at least 3-5 years focused on Cloud or Multifactor Authentication solutions.
• Experience architecting Identity and Access Management (IAM), Authentication, and Multifactor Authentication (MFA) solutions in cloud environments; B2C focus strongly preferred. Experience with administration and implementation of large-scale IAM deployments in public and private cloud environments.
• Ability to effectively prioritize and execute tasks in a fast-paced environment; Ability to learn and apply new technologies quickly.
• Ability to solve complex problems and effectively communicating technical concepts to business leads.

Additional Qualifications:

• Strong understanding of Authentication and MFA constructs within Cloud environments; Extensive experience with securing, hardening, and maintaining systems using Cloud Authentication and Multifactor capabilities.
• Exposure to working in large-scale Azure B2B, Azure B2C, Azure Government Community Cloud (GCC high/Defense) and/or Azure China 21V environments preferred; Experience working in Microsoft Azure, Google Cloud and/or Amazon Web Services, Kubernetes & Open-Source Cloud Foundry.
• Access policy creation, validation and testing experience and understanding of Azure Conditional Access Policies and Single Sign-On. Technical skills, include but are not limited to SAML, OIDC, OAUTH, RADIUS, Certificate based authentication, FIDO2 keys, Smartcards, and Biometrics.
• Practical experience with SSL certificates, databases, Active Directory, application servers, operating systems, and network infrastructure; Knowledge of DevOps tools (e.g. Jenkins, Ansible, Vault, Terraform, ADO, GitHub) with CICD capabilities, including automation experience and programming languages like Java, JavaScript, Python, KQL, Powershell scripting are a must.
• Experience working with Mobile solutions preferred.

GM DOES NOT PROVIDE IMMIGRATION-RELATED SPONSORSHIP FOR THIS ROLE. PLEASE DO NOT APPLY FOR THIS ROLE IF YOU WILL NEED GM IMMIGRATION SPONSORSHIP (e.g., H-1B, TN, STEM OPT, etc.) NOW OR IN THE FUTURE.
Compensation:
The compensation information is a good faith estimate only. It is based on what a successful applicant might be paid in accordance with applicable state laws. The compensation may not be representative for positions located outside of New York, Colorado, California, or Washington.
The salary range for this role is $110,200 to $176,100. The actual base salary a successful candidate will be offered within this range will vary based on factors relevant to the position.
Bonus Potential: An incentive pay program offers payouts based on company performance, job level, and individual performance.
Benefits:
GM offers a variety of health and wellbeing benefit programs. Benefit options include medical, dental, vision, Health Savings Account, Flexible Spending Accounts, retirement savings plan, sickness and accident benefits, life insurance, paid vacation & holidays, tuition assistance programs, employee assistance program, GM vehicle discounts and more.
• This job is not eligible for relocation benefits. Any relocation costs would be the responsibility of the selected candidate.
#LI-DH2
About GM
Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.
Why Join Us
We aspire to be the most inclusive company in the world. We believe we all must make a choice every day - individually and collectively - to drive meaningful change through our words, our deeds and our culture. Every day, we want every employee, no matter their background, ethnicity, preferences, or location, to feel they belong to one General Motors team.
Total Rewards | Benefits Overview
From day one, we're looking out for your well-being-at work and at home-so you can focus on realizing your ambitions. Learn how GM supports a rewarding career that rewards you personally by visiting Total Rewards resources.
Diversity Information
General Motors is committed to being a workplace that is not only free of unlawful discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that workforce diversity creates an environment in which our employees can thrive and develop better products for our customers. We encourage interested candidates to review the key responsibilities and qualifications for each role and apply for any positions that match their skills and capabilities. Applicants in the recruitment process may be required, where applicable, to successfully complete a role-related assessment(s) and/or a pre-employment screening prior to beginning employment. To learn more, visit How we Hire
Equal Employment Opportunity Statement (U.S.)
General Motors is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Accommodations (U.S. and Canada)
General Motors offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us [email protected] or call us at 800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.