Jobs · Michigan

Senior Product Cybersecurity Engineer

General Motors · Warren, MI · 2 days ago
HybridFull-time

About the role

The Senior Product Cybersecurity Engineer, Product Threat Assessment role sits within the broader Product Cybersecurity organization at General Motors and is responsible for driving early cybersecurity decision-making during product development.

Responsibilities

  • Perform threat modeling and TARA activities across products, features, and system changes
  • Partner with product and engineering teams during design and architecture discussions
  • Identify security risks and recommend practical mitigations that align with product goals
  • Translate product context, assumptions, and attacker perspectives into actionable security requirements
  • Provide architecture, engineering, and validation teams with clear assessment inputs and security rationale
  • Contribute to the improvement of threat assessment methods, templates, and reusable artifacts across the team
  • Help drive consistent security assessment practices across the product portfolio

Requirements

  • 5+ years of cybersecurity experience with roles in product security, threat modeling, or similar areas
  • Strong experience with threat modeling, TARA, and structured security analysis for complex products
  • Ability to assess security considerations across embedded systems, mobile applications, and connected platforms
  • Experience working with product and engineering teams to influence secure design decisions early in development
  • Strong communication skills with the ability to translate technical concerns into practical guidance
  • Ability to review software, APIs, protocols, and system designs to support technical assessments

Preferred Qualifications

  • Prior role(s) in the automotive industry or a similarly complex, deadline-driven, and regulated field
  • Familiarity with embedded software, operating systems, mobile applications, and cloud services
  • Experience applying ISO/SAE 21434, TARA methods, attack trees, or similar risk frameworks
  • Experience contributing to security guidance, assessment patterns, or reusable technical documentation

Skills & Abilities (Required Qualifications)

  • Strong technical judgment and a structured approach to early security analysis
  • Comfort working in product development environments where ambiguity is present
  • A practical mindset that helps teams address security concerns while maintaining delivery momentum
  • Clear communication that connects technical findings to design and engineering decisions
  • A collaborative approach and a willingness to build repeatable inputs for the broader product security lifecycle

What You'll Bring

Strong technical judgment and a structured approach to early security analysis
Comfort working in product development environments where ambiguity is present
A practical mindset that helps teams address security concerns while maintaining delivery momentum
Clear communication that connects technical findings to design and engineering decisions
A collaborative approach and a willingness to build repeatable inputs for the broader product security lifecycle

Benefits

GM offers a comprehensive benefits package including health insurance, retirement plans, and paid time off. For more details, please refer to the Benefits Overview section on the company's website.

Similar jobs

Senior Cybersecurity Engineer

Accenture Federal ServicesArlington, VA· 3 days ago
Information Technology$106k–$221k/yrapply on boards.greenhouse.io