CrawlJobs Logo

Third-Party Cybersecurity Incident Analyst

United States, Austin 129400.00 - 212300.00 USD / Year · Job Posted February 18, 2026
Apply Position
Job Link Share

Job Description

This role is categorized as hybrid. This means the successful candidate is expected to report to Warren, MI or Austin, TX three times per week, at minimum [or other frequency dictated by the business if more than 3 days]. GM’s Cybersecurity Team safeguards the company’s global information assets, networks, and infrastructure. Our mission is to proactively defend GM against evolving cyber threats through strategic leadership, technical excellence, and innovative risk management. We seek cybersecurity professionals with advanced expertise, capable of driving enterprise security initiatives and influencing organizational resilience. As a Third-Party Cybersecurity Incident Analyst, you will independently lead high-impact incident response activities involving GM’s third-party partners. This role requires strategic oversight, technical depth, and the ability to guide cross-functional teams through complex cyber investigations. You will serve as a trusted advisor, driving critical decision-making, influencing enterprise risk posture, and ensuring the integrity and continuity of GM’s business operations. You will collaborate with other GM teams and suppliers to assess attack vectors, coordinate containment, and evaluate strategic impacts, including information exposure, operational disruptions, and supply chain risks. The position demands high autonomy, initiative, and the ability to communicate complex technical findings to executive leadership and business stakeholders. This role requires innovative thinking, exceptional judgment, and broad application of cybersecurity principles to solve enterprise-wide challenges.

Job Responsibility

  • Lead the triage, analysis, and escalation of critical third-party cybersecurity incidents, ensuring alignment with GM’s strategy
  • Assess incident impacts and urgency, guide containment actions, and provide expert advice to technical and non-technical stakeholders
  • Oversee investigations, incident tracking, and resolution, ensuring thorough documentation and reporting
  • Collaborate cross-functionally with Cyber Defense, GMIT, Legal, Purchasing, and leadership for effective response operations
  • Engage external partners to determine root causes and shape third-party risk management
  • Provide strategic support during high-priority and after-hours third-party incidents
  • Prepare and deliver executive-level reports and metrics to support informed decision-making
  • Mentor and guide others, fostering skill development across the team
  • Drive continuous improvement of incident response processes, tools, and methods
  • Coordinate communications with stakeholders and executive leadership, maintaining transparency and alignment during incidents
  • Communicate identified 3rd party failed security controls, championing strategic organizational improvements
  • Influence and shape GM’s security policies, standards, and long-term cybersecurity strategy

Requirements

  • Bachelor’s degree in Information Systems, Computer Science, Information Security, or related field
  • At least 7 years in information security with prior incident management, security operations, and cyber event analysis experience
  • Expert in cyber incident detection, investigation, and response, especially third-party and supply chain risk
  • knowledge of application, network, and OS security controls
  • understanding of vulnerability management and risk mitigation
  • Proven ability to lead complex cyber event activities, communicate technical findings to executives, and mentor team members
  • Strong investigative mindset
  • able to translate technical analysis into strategic business recommendations
  • highly detail-oriented and organized
  • Trusted with confidential and sensitive information at the enterprise level
  • Builds trust and influences at all organizational levels
  • familiar with industry-recommended security controls and adoption in third-party ecosystems
  • Comprehensive understanding of attack vectors, threat autonomy, and advanced adversary tactics

Nice to have

  • Advanced degree in Information Systems, Computer Science, Information Security, or related field
  • At least 8+ years in information security with prior incident management, security operations, and cyber event analysis experience
  • Advanced industry certifications (e.g., CISSP, GCIA, GCIH) highly desirable

What we offer

  • medical
  • dental
  • vision
  • Health Savings Account
  • Flexible Spending Accounts
  • retirement savings plan
  • sickness and accident benefits
  • life insurance
  • paid vacation & holidays
  • tuition assistance programs
  • employee assistance program
  • GM vehicle discounts

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Third-Party Cybersecurity Incident Analyst

8 matching positions

Principal Cybersecurity Incident Analyst

The Principal Analyst Cybersecurity Incident is a key role responsible for manag...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Technology or Computer Science preferred
  • Relevant certifications such as SANS GIAC Security Essentials (GSEC)
  • At least 5 years of experience in the technology information security industry
  • Hands-on experience in administering & managing SIEM platforms Palo Alto XSIAM, Splunk, Microsoft Sentinel etc.
  • Hands-on experience to Analyse logs/events from SIEM solution, wireshark and other infrastructure
  • Deep knowledge of cybersecurity concepts, technologies, and best practices
  • Experience in working in Security Operation Centre and Network Security operations
  • Hands-on experience in administering & managing Vulnerability Management solutions like Qualys, Tenable etc.
  • Hands-on experience in administering & managing SOAR Palo Alto Cortex XSOAR or other SOAR solutions
  • Expertise in writing new and interpreting query language SPL, KQL, XQL
Job Responsibility
Job Responsibility
  • Act like a SIEM consultant who provides expertise and guidance to organizations in setting up, managing, and improving their SOC capabilities
  • Look over dashboards, and reports from the previous day or shift, including checking for any new threats and identifying malware
  • Prepare for and respond to system breaches or attacks
  • Respond to hacks or network insecurities and working to prevent new ones
  • Participate in a shift roster which may comprise of shifts business hours and after hours
  • Assessing SIEM maturity: Evaluating the existing SIEM setup and capabilities of an organization
  • Developing or refining the SIEM infrastructure, the architecture, tools, processes, and workflows of a SOC
  • Implementing security technologies when necessary: Assessing, selecting, and implementing various security technologies such as SIEM, SOAR systems, intrusion detection systems, threat intelligence platforms, and incident response tools
  • Support the Security Management Lifecycle including: monitoring, investigation, research, correlation, trend analysis, remediation and siem configuration
  • Developing security policies and procedures: Assisting in developing, documenting, maintaining SOC standard operating procedures (SOPs), incident response plans, playbooks, and other security policies
  • Fulltime
Read More
Arrow Right

Third Party Risk Analyst

A nationally recognized professional services organization is seeking a Third Pa...
Location
Location
United States , Westwood
Salary
Salary:
140000.00 USD / Year
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience in Third Party Risk, Information Security, Cybersecurity, or Vendor Risk Management
  • Strong technical understanding of: SaaS and cloud security environments
  • API security concepts
  • Identity & Access Management (IAM)
  • Single Sign-On (SSO)
  • Encryption and key management
  • Vulnerability management
  • Security incident response processes
  • Experience conducting technical vendor security assessments
  • Ability to communicate complex security findings to technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Conduct technical third-party/vendor risk assessments and security reviews
  • Evaluate SaaS platforms, cloud environments, APIs, and third-party technologies for security risk
  • Assess and review: IAM and SSO configurations
  • Encryption and key management practices
  • Vulnerability findings and remediation efforts
  • Security controls and architecture
  • Support incident response efforts involving third-party vendors when needed
  • Analyze vendor security documentation, audit reports, and risk questionnaires
  • Partner with internal teams to improve due diligence processes and vendor risk frameworks
  • Collaborate with stakeholders across multiple departments and geographic regions
What we offer
What we offer
  • Discretionary annual bonus
  • Medical, Dental, and Vision coverage
  • Flexible Spending Account (FSA)
  • 401(k)
  • Profit Sharing Plan
  • Fulltime
Read More
Arrow Right

Information Security Solutions Analyst

We are looking for an Information Security Solutions Analyst to support secure t...
Location
Location
United States , Enfield
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience in cybersecurity, information security analysis, or security engineering roles
  • Working knowledge of security architecture principles, risk evaluation methods, and secure system design practices
  • Experience reviewing or supporting firewall and network security technologies, including platforms such as Check Point and Cisco ASA
  • Familiarity with configuration management concepts and the ability to assess security settings across applications, infrastructure, and integrated services
  • Understanding of security controls related to encryption, patching, access management, logging, and incident response
  • Ability to work effectively with cross-functional stakeholders, including business teams, technical teams, and external vendors
  • Strong written communication skills with experience preparing technical documentation, standards, or assessment summaries
Job Responsibility
Job Responsibility
  • Act as the security representative in architecture and project review discussions, providing input on proposed solutions and highlighting control requirements before implementation
  • Assess business and technical initiatives to confirm alignment with security architecture, regulatory obligations, and overall enterprise risk expectations
  • Perform threat modeling and security analysis for new technologies, applications, and integrations to identify exposures and recommend appropriate safeguards
  • Promote secure-by-design practices throughout the system lifecycle, from initial planning and configuration through deployment, support, and retirement
  • Review internal and third-party platforms for control effectiveness in areas such as encryption, patching, API protection, data handling, and incident preparedness
  • Evaluate AI-enabled solutions by examining model behavior, data usage, connected systems, and control alignment with responsible security practices
  • Provide oversight of system configurations, access settings, and integration points while collaborating with service providers and vendors to maintain security requirements
  • Participate in change management and implementation planning to evaluate the security impact of upgrades, new deployments, and environment changes
  • Support incident readiness by helping ensure logging, monitoring, and response capabilities are properly configured and by assisting with tuning security tools to improve visibility
  • Create and maintain technical documentation, implementation guides, governance materials, and reporting artifacts that support audits, metrics, and leadership updates
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

Lead Information Systems Security Officer (ISSO)

We are seeking an experienced and driven Lead Information Systems Security Offic...
Location
Location
United States , Colorado Springs
Salary
Salary:
97016.00 - 168692.00 USD / Year
arcfield.com Logo
Arcfield
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree (8-10 years' exp). Master's degree (6-8 years' exp) or a PhD (3-5 years' exp) in Computer Science, Information Security, Cybersecurity, or a related discipline (or equivalent work experience)
  • 7+ years of experience in cybersecurity or system security-related roles
  • 3+ years of experience in leadership, mentoring, or team management roles in a security-focused environment
  • Proven hands-on experience with security operations, policies, and frameworks
  • Must possess and maintain an ACTIVE TS/SCI CLEARANCE
  • Strong knowledge of cybersecurity frameworks and standards, such as NIST Risk Management Framework (RMF), FISMA, ISO 27001/27002, and GDPR
  • Thorough understanding of operating systems security (Windows, Linux, and Unix), network protocols, and security tools such as firewalls, VPNs, IDS/IPS, and endpoint protection
  • Experience using vulnerability scanning tools such as Nessus, Qualys, or Rapid7, and security information and event management (SIEM) tools like Splunk or LogRhythm
  • Scripting and automation experience with languages like Python, PowerShell, or Bash is preferred
  • Familiarity with cloud security best practices for platforms such as AWS, Microsoft Azure, or Google Cloud Platform
Job Responsibility
Job Responsibility
  • Manage and oversee a team of ISSOs, analysts, and engineers
  • Provide mentorship, training, and guidance for developing team members' skills and expertise
  • Assign and prioritize security-related tasks and initiatives
  • Drive the implementation of best practices for system security
  • Serve as the primary SME on security policies, frameworks, and applicable standards
  • Develop, implement, and maintain System Security Plans (SSPs)
  • Lead periodic risk assessments and vulnerability assessments
  • Manage the certification and accreditation (C&A) process
  • Conduct security audits and reviews
  • Monitor and assess security-related control systems
What we offer
What we offer
  • Health Insurance
  • Life Insurance
  • Paid Time Off
  • Holiday Pay
  • Short Term and Long-Term Disability
  • Retirement and Savings
  • Learning and Development opportunities
  • wellness programs
  • Fulltime
Read More
Arrow Right

Incident Response Technician - Bilingual English/Japanese

The Incident Response Technician - Bilingual English/Japanese role involves anal...
Location
Location
United States , Jersey City
Salary
Salary:
117000.00 - 156000.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience working in Cybersecurity Operations or Information Security
  • Bilingual English/Japanese
  • Bachelor's degree in Information Technology, Cyber Security, Computer Science, or related discipline
  • Relevant technical and industry certifications, such as CISSP, ISSMP, SANS, GIAC, GCIA, CISM, CEH, GCFA, GCFE, GCIH, or GSEC are preferred
  • Experience in one or more security domains including Incident Response and Forensics, Security Governance and Oversight, Security Risk Management, Network Security, or Threat and Vulnerability Management preferred
  • Experience with information security risk management, including information security audits, reviews, and risk assessments
  • Strong Incident Response knowledge and experience
  • Theoretical and practical knowledge with Mac OS, Linux, Windows operating systems and clouds
  • Experience with security data collection, analysis and correlation
  • Well-developed analytic, qualitative, and quantitative reasoning skills
Job Responsibility
Job Responsibility
  • Conduct analysis of artifacts to determine methods of intrusion and best course of resolution while driving security improvement
  • Investigate potential cybersecurity events across multiple environments using various tools and techniques
  • Development of information security policies, standards, and procedures
  • Support inquiries from compliance teams such as IT risk management and internal and external auditors to ensure documentation is complete and processes are in compliance with information security policies
  • Create reports analyzing activities or trends both within and outside of the organization
  • Support the development of security operations detections, playbooks, and automations to ensure threat detection, monitoring, response, and forensics activities align with best practices, minimize gaps in detection and response, and provide comprehensive mitigation of threats
  • Reviews internal logs and alerts to identify potential cybersecurity events
  • Triage cases based on output from automated alerts, and determine when to escalate to other teams
  • Monitors external service provider activity to detect potential cybersecurity events
  • Analyzes security data from all systems in real time to spot and thwart potential threats, attacks, and other violations
What we offer
What we offer
  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Flexible spending or health savings account
  • Life and AD&D insurance
  • Short and long term disability coverage
  • Paid time off
  • Employee assistance
  • Participation in a 401k program with company match
  • Additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right

Incident Response Technician - Bilingual English/Japanese

We are currently seeking a Incident Response Technician - Bilingual English/Japa...
Location
Location
United States , Tempe
Salary
Salary:
97000.00 - 130000.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience working in Cybersecurity Operations or Information Security
  • Bilingual English/Japanese
  • Bachelor's degree in Information Technology, Cyber Security, Computer Science, or related discipline
  • Relevant technical and industry certifications, such as CISSP, ISSMP, SANS, GIAC, GCIA, CISM, CEH, GCFA, GCFE, GCIH, or GSEC are preferred
  • Experience in one or more security domains including Incident Response and Forensics, Security Governance and Oversight, Security Risk Management, Network Security, or Threat and Vulnerability Management preferred
  • Experience with information security risk management, including information security audits, reviews, and risk assessments
  • Strong Incident Response knowledge and experience
  • Theoretical and practical knowledge with Mac OS, Linux, Windows operating systems and clouds
  • Experience with security data collection, analysis and correlation
  • Well-developed analytic, qualitative, and quantitative reasoning skills
Job Responsibility
Job Responsibility
  • Conduct analysis of artifacts to determine methods of intrusion and best course of resolution while driving security improvement
  • Investigate potential cybersecurity events across multiple environments using various tools and techniques
  • Development of information security policies, standards, and procedures
  • Support inquiries from compliance teams such as IT risk management and internal and external auditors to ensure documentation is complete and processes are in compliance with information security policies
  • Create reports analyzing activities or trends both within and outside of the organization
  • Support the development of security operations detections, playbooks, and automations to ensure threat detection, monitoring, response, and forensics activities align with best practices, minimize gaps in detection and response, and provide comprehensive mitigation of threats
  • Reviews internal logs and alerts to identify potential cybersecurity events. Triage cases based on output from automated alerts, and determine when to escalate to other teams
  • Monitors external service provider activity to detect potential cybersecurity events
  • Analyzes security data from all systems in real time to spot and thwart potential threats, attacks, and other violations
  • Analyzes compromised systems and remediates to a clean state
What we offer
What we offer
  • medical insurance
  • dental insurance
  • vision insurance with an employer contribution
  • flexible spending or health savings account
  • life and AD&D insurance
  • short and long term disability coverage
  • paid time off
  • employee assistance
  • participation in a 401k program with company match
  • additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right

Cybersecurity Manager

Hunter Douglas is the world’s leading manufacturer of window coverings and a maj...
Location
Location
United States , Broomfield
Salary
Salary:
144000.00 - 196000.00 USD / Year
hunterdouglas.com Logo
Hunter Douglas
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent in related field
  • Minimum of 5 years’ experience in Information Security Management
  • CISSP, CISM, or GSEC Security Certification required
  • Expert knowledge of security best practices (encryption, data protection, design, privileged access, etc.)
  • Solid knowledge and experience with managing and implementing standard security technologies (DLP, MDM, SIEM, AV, IDS)
  • Solid knowledge and experience with file management tools and can drive data owner entitlement review processes
  • Solid knowledge in compliance management and certification (PCI, GDPR, CCPA)
  • Basic knowledge of network technologies (protocols, design concepts, access control)
  • Solid knowledge to demonstrate excellent written and verbal communications
  • Solid knowledge and proficiency in planning, reporting, establishing goals and objectives, standards, priorities, and schedules
Job Responsibility
Job Responsibility
  • Monitor Hunter Douglas Cybersecurity tools, systems, and processes, including logging, IDS, IPS, endpoint protection, web filtering, MDM, DLP, patch management, vulnerability scanning technologies, etc.
  • Manage security analysts and third-party analyst services to ensure a thorough investigation of all detections and coordinate response activities
  • Investigate alerts in accordance with documented processes and manage incidents in accordance with the Hunter Douglas Incident Response plan
  • Partner with or oversee Cybersecurity Engineers, IT infrastructure, and IT operations teams to help identify gaps, strengthen security controls, and integrate them with IT operations practices
  • Develop and maintain Cybersecurity documentation as appropriate for deployed tools, playbooks, and joint ownership of the Incident Response plan
  • Participate in tabletop and other simulation exercises to practice and improve response capabilities
  • Participate in annual compliance certification and all related controls and documentation management as required
  • Partners with the training and professional development staff to promote security awareness among the user community
  • Review, recommend, and participate in requirements-gathering and operations handoffs for Cybersecurity deployments and projects
  • Identify, collect, analyze, interpret, and assist with reporting Cybersecurity metrics
What we offer
What we offer
  • Generous benefits package including medical, dental, vision, life, disability
  • A company culture that prioritizes internal development and professional growth
  • Time off with pay
  • 401(k) plan with a degree of employer matching
  • Paid parental leave
  • Wellness programs and product discounts
  • Fulltime
Read More
Arrow Right

Analyst, Information Security

The Information Security Analyst safeguards the organization by monitoring and t...
Location
Location
United States , Naperville
Salary
Salary:
78210.00 - 114708.00 USD / Year
kehe.com Logo
KeHE Distributors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, Information Systems or equivalent experience
  • 3+ years in cybersecurity roles, Security Operations, Incident Response, threat detection, or related information security roles
  • Demonstrated experience triaging and investigating security alerts in one or more of: EDR/XDR, email security, identity systems (AD/Entra ID), network security tools, cloud security monitoring (AWS/Azure), and/or SIEM platforms
  • Strong understanding of attacker tactics and common enterprise threat scenarios (phishing, credential compromise, malware/ransomware, lateral movement, privilege escalation)
  • Ability to analyze logs and telemetry
  • experience writing or modifying queries/rules (e.g., KQL/SPL/SQL-like queries) is strongly preferred
  • Experience executing incident response activities: investigation, containment coordination, eradication support, recovery validation, and post-incident documentation
  • Strong understanding of vulnerability and exposure workflows, including validation and remediation verification
  • Ability to create and maintain runbooks/playbooks and operational documentation
  • Familiarity with security frameworks (e.g., CIS, NIST CSF, ISO 27001) and regulatory standards (e.g., PCI, GDPR, HIPAA)
Job Responsibility
Job Responsibility
  • Proactively monitor and triage security alerts across endpoint, identity, network, cloud, email, vulnerability, and SIEM platforms
  • Detect, investigate, and respond to security incidents
  • coordinate containment, remediation, root cause analysis, and post-incident reviews
  • Develop, tune, and maintain security detections, alerts, and response playbooks to improve threat visibility and response effectiveness
  • Conduct proactive threat hunting using endpoint, identity, network, and cloud telemetry
  • Manage and support vulnerability and exposure management activities, including risk-based prioritization, remediation tracking, and reporting
  • Maintain and support cybersecurity risk management activities, including risk registers, assessments, and mitigation planning
  • Support governance, risk, and compliance efforts by assisting with audits, control documentation, evidence collection, and third-party risk assessments
  • Administer and optimize security tools and platforms to ensure effectiveness, coverage, and operational reliability
  • Develop and deliver cybersecurity awareness training, including phishing simulations and targeted education initiatives
What we offer
What we offer
  • Health/Rx
  • Dental
  • Vision
  • Flexible and health spending accounts (FSA/HSA)
  • Supplemental life insurance
  • 401(k)
  • Paid time off
  • Paid sick time
  • Short term & long term disability coverage (STD/LTD)
  • Employee stock ownership (ESOP)
  • Fulltime
Read More
Arrow Right