Senior Security Architect-INF0004196
Why General Motors?
At GM, we’ve charged ourselves with one mission: to design, build and sell the world’s best vehicles. And to achieve our goals, we’re currently undergoing one of the largest Information Technology transformations in the history of the automotive industry.
GM IT is a leader in cutting edge technologies such as Mobility, Telematics, Mission-Critical Business Systems, Supercomputing, Vehicle Engineering, and Real-time Computing. We offer challenging positions for passionate professionals looking to get in on the ground-floor of a growing “Fortune 5” firm that is re-inventing IT with a laser focus on Innovation, Speed, and Business Value.
Join our team and experience Information Technology at a scale and pace not seen before!
About the Information Security and IT Risk Management Organization:
The organization is charged with enabling the business through globally delivered IT Risk Management and Information Security services aligned to the enterprise risk and threat profile. Accountable for maintaining a secure organization through strategic alignment, structured governance, process operation and enterprise reporting.
About the role:
The Senior Information Security Architect participates on a team responsible for providing architectural services and support that are aligned with a specific technology such as networks, applications, hosting and servers, or endpoints such as mobile devices and workstations. The Senior Information Security Architect is responsible for assisting in the creation of a holistic approach to the reduction of risk throughout the GM’s environment and assisting in setting the corporations technical security strategy. The Senior Information Security Architect creates enterprise-wide architectures and designs as well as researches, develops and recommends architectural policies and practices for current and future security initiatives from definition phase through implementation.
The Senior Information Security Architect drives the security architecture, security framework, and technical security roadmap within the GM infrastructure. This role must be well versed in:
§ Leveraging industry standards and best practices for the purposes of assessing the current “as-is” architecture
§ Proposing the desired “to-be” architecture based on solid risk assessment and evaluation of available technology and controls
§ Evaluation of IT systems, appliances, and devices being proposed for the GM environment and their ability to meet GM’s security requirements and recommending mitigating controls for identified limitations and risks existing in the device
§ Review of plans for adoption of new and emerging security solutions including cloud, mobility, virtualization, enterprise data warehouse, social media, and others as they are identified
§ Working closely with the other IT Enterprise Architects to ensure security requirements are addressed in all phases of project lifecycles
§ Assisting in the creation and maintenance of enterprise security policies, controls, and standards for technologies defined within the GM taxonomy
§ Providing security architecture as a service in assistance to project teams and other architecture groups to ensure proper skills are applied where needed
§ Assisting in identifying and assessing risk as part of the overall Risk Management process
§ Bachelor’s degree in Engineering, Computer Science or related field
§ Minimum 10 years’ experience in information security management
§ Minimum 8 years’ experience in creation of key artifacts including architectural principles, requirements traceability, use cases, patterns, reference architectures, elaboration, and network security designs and drawings
§ Minimum 5 years’ experience in creation of technical security solutions including enterprise-level security systems for either networking, hosting, applications, or endpoint devices
§ Very strong verbal and written communication skills.
§ Strong facilitation and negotiation skills
§ Strong creativity and innovation skills
§ Ability to lead a team in in a fast-paced environment providing strong mentorship and guidance to less experienced team members
§ Ability to make recommendations and influence decisions based on business value
§ Ability to work collaboratively with individuals within both the technical community and senior IT leadership
§ Certified Information Security Systems Professional (CISSP) certification
§ Master’s degree in a relevant field
§ Ability to conduct evaluations of alternative proposals to security architecture and facilitate decisions ensuring the best outcome for the GM IT and business environments
§ Solid experience in strategic planning and project management
§ Solid understanding of the SDLC process and ability to effectively develop and design solutions using a structured approach
§ Demonstrated experience in using industry standards such as ISO/IEC 27001 and 27002, COBIT, and TOGAF
§ ITIL Certification
§ CISM, CISA, CGEIT or CRISC certifications
Location: Atlanta, GA
Primary Location: US-GA-Atlanta
Posting Date : Feb 11, 2013, 3:10:28 PM - Ongoing
Job: Information Technology
Growth opportunities at GM for talented people are as wide as the world.
From the design and engineering of new state-of-the-art plants...