CrawlJobs Logo
General Motors Logo General Motors · IT - Administration

Third-Party Cybersecurity Incident Analyst

United States, Austin 129400.00 - 212300.00 USD / Year · Job Posted February 18, 2026
Apply Position
Job Link Share

Job Description

This role is categorized as hybrid. This means the successful candidate is expected to report to Warren, MI or Austin, TX three times per week, at minimum [or other frequency dictated by the business if more than 3 days]. GM’s Cybersecurity Team safeguards the company’s global information assets, networks, and infrastructure. Our mission is to proactively defend GM against evolving cyber threats through strategic leadership, technical excellence, and innovative risk management. We seek cybersecurity professionals with advanced expertise, capable of driving enterprise security initiatives and influencing organizational resilience. As a Third-Party Cybersecurity Incident Analyst, you will independently lead high-impact incident response activities involving GM’s third-party partners. This role requires strategic oversight, technical depth, and the ability to guide cross-functional teams through complex cyber investigations. You will serve as a trusted advisor, driving critical decision-making, influencing enterprise risk posture, and ensuring the integrity and continuity of GM’s business operations. You will collaborate with other GM teams and suppliers to assess attack vectors, coordinate containment, and evaluate strategic impacts, including information exposure, operational disruptions, and supply chain risks. The position demands high autonomy, initiative, and the ability to communicate complex technical findings to executive leadership and business stakeholders. This role requires innovative thinking, exceptional judgment, and broad application of cybersecurity principles to solve enterprise-wide challenges.

Job Responsibility

  • Lead the triage, analysis, and escalation of critical third-party cybersecurity incidents, ensuring alignment with GM’s strategy
  • Assess incident impacts and urgency, guide containment actions, and provide expert advice to technical and non-technical stakeholders
  • Oversee investigations, incident tracking, and resolution, ensuring thorough documentation and reporting
  • Collaborate cross-functionally with Cyber Defense, GMIT, Legal, Purchasing, and leadership for effective response operations
  • Engage external partners to determine root causes and shape third-party risk management
  • Provide strategic support during high-priority and after-hours third-party incidents
  • Prepare and deliver executive-level reports and metrics to support informed decision-making
  • Mentor and guide others, fostering skill development across the team
  • Drive continuous improvement of incident response processes, tools, and methods
  • Coordinate communications with stakeholders and executive leadership, maintaining transparency and alignment during incidents
  • Communicate identified 3rd party failed security controls, championing strategic organizational improvements
  • Influence and shape GM’s security policies, standards, and long-term cybersecurity strategy

Requirements

  • Bachelor’s degree in Information Systems, Computer Science, Information Security, or related field
  • At least 7 years in information security with prior incident management, security operations, and cyber event analysis experience
  • Expert in cyber incident detection, investigation, and response, especially third-party and supply chain risk
  • knowledge of application, network, and OS security controls
  • understanding of vulnerability management and risk mitigation
  • Proven ability to lead complex cyber event activities, communicate technical findings to executives, and mentor team members
  • Strong investigative mindset
  • able to translate technical analysis into strategic business recommendations
  • highly detail-oriented and organized
  • Trusted with confidential and sensitive information at the enterprise level
  • Builds trust and influences at all organizational levels
  • familiar with industry-recommended security controls and adoption in third-party ecosystems
  • Comprehensive understanding of attack vectors, threat autonomy, and advanced adversary tactics

Nice to have

  • Advanced degree in Information Systems, Computer Science, Information Security, or related field
  • At least 8+ years in information security with prior incident management, security operations, and cyber event analysis experience
  • Advanced industry certifications (e.g., CISSP, GCIA, GCIH) highly desirable

What we offer

  • medical
  • dental
  • vision
  • Health Savings Account
  • Flexible Spending Accounts
  • retirement savings plan
  • sickness and accident benefits
  • life insurance
  • paid vacation & holidays
  • tuition assistance programs
  • employee assistance program
  • GM vehicle discounts
General Motors - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Third-Party Cybersecurity Incident Analyst

8 matching positions

Risk & Information Security Associate Analyst

We are looking for a highly organized, detail-oriented Risk & Information Securi...
Location
Location
Cyprus , Nicosia
Salary
Salary:
Not provided
www-ap.albourne.com Logo
Albourne
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2–3 years of professional experience
  • Excellent organizational skills with the ability to manage multiple workstreams and meet deadlines in a dynamic environment
  • Strong written and verbal communication skills, including the ability to prepare concise, well-structured documents and interact professionally across all levels of the business
  • Meticulous attention to detail, particularly in preparing audit materials, compliance documentation, and reviewing access controls
  • Proactive and self-motivated, able to work independently and across time zones without direct daily supervision
  • Comfortable handling sensitive and confidential information with discretion
  • Interest in technology, cybersecurity, and enterprise risk
  • Basic understanding of information security principles and frameworks (e.g., ISO 27001, NIST)
  • Ability to interpret and work with structured information (e.g., policies, risk registers, audit plans)
  • Capable of coordinating inputs from multiple stakeholders and compiling them into coherent outputs (e.g., committee papers, training summaries, client DDQs)
Job Responsibility
Job Responsibility
  • Monitor and report on the effectiveness of information security controls
  • Support the identification, tracking, and resolution of security incidents or weaknesses
  • Assist in maintaining security metrics and dashboards for internal reporting
  • Contribute to the assessment of operational, technology, and third-party risks
  • Assist in evaluating controls and proposing mitigation strategies aligned with risk appetite
  • Participate in internal audits and control testing, ensuring timely remediation of findings
  • Help maintain and enforce security and risk management policies and procedures
  • Support compliance with relevant data protection, privacy, and information security regulations
  • Coordinate periodic user access reviews and assist with awareness initiatives
  • Work across departments to gather risk-related information and support secure business operations
What we offer
What we offer
  • Support for professional qualifications (such as CFA and CAIA)
  • Career growth and tools for ongoing learning and development
  • Medical insurance for you and your dependents
  • Provident fund
  • Yearly bonus dependent upon performance and company growth
  • Opportunity for international travel (i.e., short periods of secondment to other Albourne offices)
  • 5 additional service recognition holidays in surplus to standard annual leave
  • Albourne Training Days (minimum of 40 hours per year)
  • Free office parking
  • A supportive, diverse, and multi-cultural work environment
  • Fulltime
Read More
Arrow Right

Cybersecurity Manager

Hunter Douglas is the world’s leading manufacturer of window coverings and a maj...
Location
Location
United States , Broomfield
Salary
Salary:
144000.00 - 196000.00 USD / Year
hunterdouglas.com Logo
Hunter Douglas
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent in related field
  • Minimum of 5 years’ experience in Information Security Management
  • CISSP, CISM, or GSEC Security Certification required
  • Expert knowledge of security best practices (encryption, data protection, design, privileged access, etc.)
  • Solid knowledge and experience with managing and implementing standard security technologies (DLP, MDM, SIEM, AV, IDS)
  • Solid knowledge and experience with file management tools and can drive data owner entitlement review processes
  • Solid knowledge in compliance management and certification (PCI, GDPR, CCPA)
  • Basic knowledge of network technologies (protocols, design concepts, access control)
  • Solid knowledge to demonstrate excellent written and verbal communications
  • Solid knowledge and proficiency in planning, reporting, establishing goals and objectives, standards, priorities, and schedules
Job Responsibility
Job Responsibility
  • Monitor Hunter Douglas Cybersecurity tools, systems, and processes, including logging, IDS, IPS, endpoint protection, web filtering, MDM, DLP, patch management, vulnerability scanning technologies, etc.
  • Manage security analysts and third-party analyst services to ensure a thorough investigation of all detections and coordinate response activities
  • Investigate alerts in accordance with documented processes and manage incidents in accordance with the Hunter Douglas Incident Response plan
  • Partner with or oversee Cybersecurity Engineers, IT infrastructure, and IT operations teams to help identify gaps, strengthen security controls, and integrate them with IT operations practices
  • Develop and maintain Cybersecurity documentation as appropriate for deployed tools, playbooks, and joint ownership of the Incident Response plan
  • Participate in tabletop and other simulation exercises to practice and improve response capabilities
  • Participate in annual compliance certification and all related controls and documentation management as required
  • Partners with the training and professional development staff to promote security awareness among the user community
  • Review, recommend, and participate in requirements-gathering and operations handoffs for Cybersecurity deployments and projects
  • Identify, collect, analyze, interpret, and assist with reporting Cybersecurity metrics
What we offer
What we offer
  • Generous benefits package including medical, dental, vision, life, disability
  • A company culture that prioritizes internal development and professional growth
  • Time off with pay
  • 401(k) plan with a degree of employer matching
  • Paid parental leave
  • Wellness programs and product discounts
  • Fulltime
Read More
Arrow Right

Principal Cybersecurity Incident Analyst

The Principal Analyst Cybersecurity Incident is a key role responsible for manag...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Technology or Computer Science preferred
  • Relevant certifications such as SANS GIAC Security Essentials (GSEC)
  • At least 5 years of experience in the technology information security industry
  • Hands-on experience in administering & managing SIEM platforms Palo Alto XSIAM, Splunk, Microsoft Sentinel etc.
  • Hands-on experience to Analyse logs/events from SIEM solution, wireshark and other infrastructure
  • Deep knowledge of cybersecurity concepts, technologies, and best practices
  • Experience in working in Security Operation Centre and Network Security operations
  • Hands-on experience in administering & managing Vulnerability Management solutions like Qualys, Tenable etc.
  • Hands-on experience in administering & managing SOAR Palo Alto Cortex XSOAR or other SOAR solutions
  • Expertise in writing new and interpreting query language SPL, KQL, XQL
Job Responsibility
Job Responsibility
  • Act like a SIEM consultant who provides expertise and guidance to organizations in setting up, managing, and improving their SOC capabilities
  • Look over dashboards, and reports from the previous day or shift, including checking for any new threats and identifying malware
  • Prepare for and respond to system breaches or attacks
  • Respond to hacks or network insecurities and working to prevent new ones
  • Participate in a shift roster which may comprise of shifts business hours and after hours
  • Assessing SIEM maturity: Evaluating the existing SIEM setup and capabilities of an organization
  • Developing or refining the SIEM infrastructure, the architecture, tools, processes, and workflows of a SOC
  • Implementing security technologies when necessary: Assessing, selecting, and implementing various security technologies such as SIEM, SOAR systems, intrusion detection systems, threat intelligence platforms, and incident response tools
  • Support the Security Management Lifecycle including: monitoring, investigation, research, correlation, trend analysis, remediation and siem configuration
  • Developing security policies and procedures: Assisting in developing, documenting, maintaining SOC standard operating procedures (SOPs), incident response plans, playbooks, and other security policies
  • Fulltime
Read More
Arrow Right

Manager, IT Cybersecurity

The Cybersecurity Manager leads and coordinates cybersecurity operations, govern...
Location
Location
United States , Tucker
Salary
Salary:
164800.00 - 206000.00 USD / Year
gasoc.com Logo
Georgia System Operations
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor Degree in Cybersecurity, Computer Science, IT, Information Systems, or related field
  • 10 years in the area of Cybersecurity, IT Security, Network Security, IT Infrastructure, Cloud infrastructure, Virtualization, Business Analyst, IT, or Technology
  • Associates Degree in Computer Science, Business Administration, IT, Engineering, or related field with at least 14 years of experience with Cybersecurity, IT Security, Network Security, IT Infrastructure, Cloud infrastructure, Virtualization, Business Analyst, IT, or Technology with at least 5 years of experience in a supervisory or leadership role
  • Eighteen (18) years of direct experience in the experience areas defined above in addition to at least 5 years of experience in a supervisory or leadership role
  • Certified Information Systems Security Professional (CISSP) and Certified Information Security Manager (CISM) desired
  • Strong verbal and written communication skills
  • Excellent organization and time management skills
  • Analytical and creative problem-solving skills
  • Ability to establish and maintain effective working relationships as necessitated by the work
Job Responsibility
Job Responsibility
  • Strategic Management: Works closely with IT and business stakeholders to understand their IT security needs and aligns these needs with strategic initiatives
  • Develops and maintains IT security policies and processes
  • Identifies, prioritizes, and develops new solution ideas and leads the implementation of chosen initiatives that integrate company strategy and best practices
  • Ensures the department's ability to manage change based on evolving business needs and security requirements
  • Relationship Management: Builds and maintains positive relationships with IT peers and business stakeholders, ensuring a high level of customer satisfaction
  • Understands stakeholders' requirements and stays apprised of their operating environments to ensure accuracy and value in the security services rendered
  • Communicates clearly, effectively, and on a timely basis, fostering an environment where stakeholders feel comfortable bringing issues, concerns, and opportunities for exploration
  • Financial Management: Manages the budget for IT Cybersecurity, ensuring adherence to budgets and strategic plans
  • Directs the preparation, review, and consolidation of department budgets, projections, and variance analysis
  • Develops and manages annual budget, performs monthly forecasts, and oversees routine cost-management duties, such as overseeing expenditures and developing and administering contracts and purchase orders
What we offer
What we offer
  • Comprehensive medical, dental, and vision coverage
  • A strong retirement program
  • Career development
  • Flexible work schedules
  • Fulltime
Read More
Arrow Right

Analyst, Information Security

The Information Security Analyst safeguards the organization by monitoring and t...
Location
Location
United States , Naperville
Salary
Salary:
78210.00 - 114708.00 USD / Year
kehe.com Logo
KeHE Distributors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, Information Systems or equivalent experience
  • 3+ years in cybersecurity roles, Security Operations, Incident Response, threat detection, or related information security roles
  • Demonstrated experience triaging and investigating security alerts in one or more of: EDR/XDR, email security, identity systems (AD/Entra ID), network security tools, cloud security monitoring (AWS/Azure), and/or SIEM platforms
  • Strong understanding of attacker tactics and common enterprise threat scenarios (phishing, credential compromise, malware/ransomware, lateral movement, privilege escalation)
  • Ability to analyze logs and telemetry
  • experience writing or modifying queries/rules (e.g., KQL/SPL/SQL-like queries) is strongly preferred
  • Experience executing incident response activities: investigation, containment coordination, eradication support, recovery validation, and post-incident documentation
  • Strong understanding of vulnerability and exposure workflows, including validation and remediation verification
  • Ability to create and maintain runbooks/playbooks and operational documentation
  • Familiarity with security frameworks (e.g., CIS, NIST CSF, ISO 27001) and regulatory standards (e.g., PCI, GDPR, HIPAA)
Job Responsibility
Job Responsibility
  • Proactively monitor and triage security alerts across endpoint, identity, network, cloud, email, vulnerability, and SIEM platforms
  • Detect, investigate, and respond to security incidents
  • coordinate containment, remediation, root cause analysis, and post-incident reviews
  • Develop, tune, and maintain security detections, alerts, and response playbooks to improve threat visibility and response effectiveness
  • Conduct proactive threat hunting using endpoint, identity, network, and cloud telemetry
  • Manage and support vulnerability and exposure management activities, including risk-based prioritization, remediation tracking, and reporting
  • Maintain and support cybersecurity risk management activities, including risk registers, assessments, and mitigation planning
  • Support governance, risk, and compliance efforts by assisting with audits, control documentation, evidence collection, and third-party risk assessments
  • Administer and optimize security tools and platforms to ensure effectiveness, coverage, and operational reliability
  • Develop and deliver cybersecurity awareness training, including phishing simulations and targeted education initiatives
What we offer
What we offer
  • Health/Rx
  • Dental
  • Vision
  • Flexible and health spending accounts (FSA/HSA)
  • Supplemental life insurance
  • 401(k)
  • Paid time off
  • Paid sick time
  • Short term & long term disability coverage (STD/LTD)
  • Employee stock ownership (ESOP)
  • Fulltime
Read More
Arrow Right

Incident Response Technician - Bilingual English/Japanese

The Incident Response Technician - Bilingual English/Japanese role involves anal...
Location
Location
United States , Jersey City
Salary
Salary:
117000.00 - 156000.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience working in Cybersecurity Operations or Information Security
  • Bilingual English/Japanese
  • Bachelor's degree in Information Technology, Cyber Security, Computer Science, or related discipline
  • Relevant technical and industry certifications, such as CISSP, ISSMP, SANS, GIAC, GCIA, CISM, CEH, GCFA, GCFE, GCIH, or GSEC are preferred
  • Experience in one or more security domains including Incident Response and Forensics, Security Governance and Oversight, Security Risk Management, Network Security, or Threat and Vulnerability Management preferred
  • Experience with information security risk management, including information security audits, reviews, and risk assessments
  • Strong Incident Response knowledge and experience
  • Theoretical and practical knowledge with Mac OS, Linux, Windows operating systems and clouds
  • Experience with security data collection, analysis and correlation
  • Well-developed analytic, qualitative, and quantitative reasoning skills
Job Responsibility
Job Responsibility
  • Conduct analysis of artifacts to determine methods of intrusion and best course of resolution while driving security improvement
  • Investigate potential cybersecurity events across multiple environments using various tools and techniques
  • Development of information security policies, standards, and procedures
  • Support inquiries from compliance teams such as IT risk management and internal and external auditors to ensure documentation is complete and processes are in compliance with information security policies
  • Create reports analyzing activities or trends both within and outside of the organization
  • Support the development of security operations detections, playbooks, and automations to ensure threat detection, monitoring, response, and forensics activities align with best practices, minimize gaps in detection and response, and provide comprehensive mitigation of threats
  • Reviews internal logs and alerts to identify potential cybersecurity events
  • Triage cases based on output from automated alerts, and determine when to escalate to other teams
  • Monitors external service provider activity to detect potential cybersecurity events
  • Analyzes security data from all systems in real time to spot and thwart potential threats, attacks, and other violations
What we offer
What we offer
  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Flexible spending or health savings account
  • Life and AD&D insurance
  • Short and long term disability coverage
  • Paid time off
  • Employee assistance
  • Participation in a 401k program with company match
  • Additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right

Incident Response Technician - Bilingual English/Japanese

We are currently seeking a Incident Response Technician - Bilingual English/Japa...
Location
Location
United States , Tempe
Salary
Salary:
97000.00 - 130000.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience working in Cybersecurity Operations or Information Security
  • Bilingual English/Japanese
  • Bachelor's degree in Information Technology, Cyber Security, Computer Science, or related discipline
  • Relevant technical and industry certifications, such as CISSP, ISSMP, SANS, GIAC, GCIA, CISM, CEH, GCFA, GCFE, GCIH, or GSEC are preferred
  • Experience in one or more security domains including Incident Response and Forensics, Security Governance and Oversight, Security Risk Management, Network Security, or Threat and Vulnerability Management preferred
  • Experience with information security risk management, including information security audits, reviews, and risk assessments
  • Strong Incident Response knowledge and experience
  • Theoretical and practical knowledge with Mac OS, Linux, Windows operating systems and clouds
  • Experience with security data collection, analysis and correlation
  • Well-developed analytic, qualitative, and quantitative reasoning skills
Job Responsibility
Job Responsibility
  • Conduct analysis of artifacts to determine methods of intrusion and best course of resolution while driving security improvement
  • Investigate potential cybersecurity events across multiple environments using various tools and techniques
  • Development of information security policies, standards, and procedures
  • Support inquiries from compliance teams such as IT risk management and internal and external auditors to ensure documentation is complete and processes are in compliance with information security policies
  • Create reports analyzing activities or trends both within and outside of the organization
  • Support the development of security operations detections, playbooks, and automations to ensure threat detection, monitoring, response, and forensics activities align with best practices, minimize gaps in detection and response, and provide comprehensive mitigation of threats
  • Reviews internal logs and alerts to identify potential cybersecurity events. Triage cases based on output from automated alerts, and determine when to escalate to other teams
  • Monitors external service provider activity to detect potential cybersecurity events
  • Analyzes security data from all systems in real time to spot and thwart potential threats, attacks, and other violations
  • Analyzes compromised systems and remediates to a clean state
What we offer
What we offer
  • medical insurance
  • dental insurance
  • vision insurance with an employer contribution
  • flexible spending or health savings account
  • life and AD&D insurance
  • short and long term disability coverage
  • paid time off
  • employee assistance
  • participation in a 401k program with company match
  • additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right

Systems Director, Population Health Service Organizations

The System Director of IT Population Health Services Organization (PHSO) is a le...
Location
Location
United States , Phoenix
Salary
Salary:
67.92 - 101.02 USD / Hour
americannursingcare.com Logo
American Nursing Care
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelors Of Science - Information Technology, Health Informatics, or related field required
  • Masters Of Science - Information Technology, Health Informatics, or related field preferred
  • 10+ years in healthcare IT, with 5+ years in a leadership role
  • Experience with managed care models (Medicare Advantage, ACO, Medicaid), HIE integration, and population health tools (e.g., Epic EZCap, QNext, Healthy Planet, Innovaccer,)
  • Experience with FHIR, HL7, CCD, APIs, and other interoperability standards
  • Familiarity with ACO, CIN, and value-based care models
Job Responsibility
Job Responsibility
  • Lead the design and implementation of IT systems that support managed care and population health objectives
  • Align systems architecture with organizational strategies related to value-based care, ACOs, Medicare Advantage, Medicaid, and commercial payer programs
  • Oversee integration of clinical and claims data to support whole-person care
  • Ensure systems support care coordination workflows, care management documentation, and chronic condition tracking
  • Manage platforms that support risk stratification, predictive modeling, and attribution logic
  • Collaborate with clinical leadership to build technology-enabled pathways for preventive care, care gaps, and patient engagement
  • Lead and mentor the End User Services team, ensuring excellent IT support for clinicians, case managers, analysts, and administrative staff
  • Develop and monitor SLAs, support KPIs, incident response times, and user satisfaction metrics
  • Oversee help desk operations, ticketing systems, desktop support, hardware/software provisioning, and user access governance
  • Direct the architecture and scalability of population health IT platforms and managed care applications
What we offer
What we offer
  • medical
  • prescription drug
  • dental
  • vision plans
  • life insurance
  • paid time off (full-time benefit eligible team members may receive a minimum of 14 paid time off days, including holidays annually)
  • tuition reimbursement
  • retirement plan benefit(s) including, but not limited to, 401(k), 403(b), and other defined benefits offerings
  • Fulltime
Read More
Arrow Right