Sr. Cyber Detection Incident Analyst - Security Operations position at General Motors.| United States Of America

_{Posted 8 Days Ago} bot

General Motors Sr. Cyber Detection Incident Analyst - Security Operations

Experience: 5-years

Pattern: full-time

Country:

Copy Link Report

OND

Warren, Michig..........United States Of America

Job Description The Role GM’s Cybersecurity Team safeguards the company’s global information assets, networks, and infrastructure. Our mission is to proactively defend GM against evolving cyber threats through strategic leadership, technical excellence, and innovative risk management. We seek cybersecurity professionals with advanced expertise, capable of driving enterprise security initiatives and influencing organizational resilience. As a Sr. Cyber Detection Incident Analyst on GM’s Security Operations team, you will play a critical role in strengthening the organization’s ability to detect and analyze advanced cyber threats across a global, hybrid enterprise. You will leverage expertise across endpoint, network, cloud, identity, and application detection technologies to identify malicious activity, improve alert fidelity, and enhance the platforms and workflows that drive GM’s cyber detection mission. In this role, you will lead high-impact investigations, develop and refine detection logic across SIEM, EDR, NDR, SOAR, and cloud-native security tools, and apply threat intelligence to strengthen GM’s detection posture. You will also partner closely with many teams across Cyber Security and GM to improve visibility, analytics, automation, and investigative efficiency across Security Operations. This position requires deep technical analysis, designing and tuning high-efficacy detections, leading incident escalation workflows, and collaborating across the broader security organization to ensure resilient, scalable, and modern detection coverage. You will mentor analysts, guide detection strategy, influence tooling roadmaps, and help integrate emerging technologies, including automation and AI, to reduce manual workload and improve detection maturity. What You'll Do Conduct expert-level triage and deep-dive analysis of security events using EDR, NDR, identity telemetry, application logs, SIEM analytics, SOAR workflows, and cloud-native security tools. Lead incident escalation workflows and collaborate with the Incident Response and other partner teams drive timely containment and resolution of security threats. Perform proactive threat hunting across endpoints, networks, identity systems, cloud platforms (Azure, AWS, GCP), and SaaS environments using threat intelligence, behavioral analytics, and TTP/IOC research. Correlate telemetry across diverse systems to identify sophisticated attack patterns. Apply strong understanding of OS internals, cloud architectures, networking, authentication protocols, and adversary tradecraft to assess risk, determine impact, and drive escalation decisions. Integrate threat intelligence (IOCs, behavioral patterns, ATT&CK-aligned TTPs) into detection logic, use cases, and hunt strategies. Develop, tune, and maintain high-efficacy detections across: SIEM : correlation rules, anomaly detection, enrichment logic EDR/XDR : behavioral detections, process analytics, custom rules NDR : network anomaly detection, lateral movement patterns SOAR : automation workflows, enrichment routines Cloud-native tools : Azure Defender, AWS GuardDuty, GCP SCC SaaS platforms : O365, API-based telemetry Evaluate emerging detection technologies, analytics methods, and research findings to improve visibility, reduce MTTD, and optimize analyst efficiency. Act as a technical detection lead by mentoring analysts, reviewing escalations, and driving consistency in detection quality and workflows. Support 24×7 monitoring as part of an on‑call rotation. Your Skills & Abilities (Required Qualifications)  Bachelor’s degree in Information Security, Computer Science, Information Systems, or equivalent experience. 5+ years of experience in cybersecurity with a focus on detection engineering, security operations, incident response, intrusion detection, or security event analysis. Strong analytical and investigative skills with the ability to interpret complex datasets and communicate findings effectively. Ability to create tactical scripts ( Python, PowerShell, KQL, Bash , etc.) to supplement investigative workflows and enrich detections. Experience with network security monitoring ( IDS, packet capture, flow analysis ) and proper techniques for identifying and responding to security events. Experience detecting threats in cloud environments ( Azure, AWS, GCP ) and using cloud-native detection tooling. Strong collaboration and communication skills with focus on cross-team partnerships. Demonstrated ability to mentor other analysts, contribute to team development, and work effectively in a collaborative team environment. Deep knowledge of SIEM technologie s, log‑centric analytics , and correlation logic . Deep knowledge of EDR platforms and behavioral-based detection methodologies. What Will Give You a Competitive Edge (Preferred Qualifications) Industry certifications such as GCIA, GCIH, AWS/Azure/GCP s ecurity c ertifications, or equivalent. 7+ years of experience in cyber incident detection, threat hunting, or security operations. Experience with vehicle security, automotive architectures, or embedded security telemetry. Experience supporting manufacturing or OT security environments. Experience with application security, runtime and application telemetry, CI/CD pipelines, and API abuse detection. Experience leading security projects and incident response initiatives. Malware analysis. 

GM does not provide immigration-related sponsorship for this role. Do not apply for this role if you will need GM immigration sponsorship now or in the future. This includes direct company sponsorship, entry of GM as the immigration employer of record on a government form, and any work authorization requiring a written submission or other immigration support from the company (e.g., H1-B, OPT, STEM OPT, CPT, TN, J-1, etc).

This role is categorized as hybrid. This means the selected candidate is expected to report to a specific location at least 3 times a week {or other frequency dictated by their manager}.

This job may be eligible for relocation benefits.

 About GM Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all. Why Join Us We believe we all must make a choice every day – individually and collectively – to drive meaningful change through our words, our deeds and our culture. Every day, we want every employee to feel they belong to one General Motors team. Benefits Overview From day one, we're looking out for your well-being–at work and at home–so you can focus on realizing your ambitions. Learn how GM supports a rewarding career that rewards you personally by visiting Total Rewards resources . Non-Discrimination and Equal Employment Opportunities (U.S.) General Motors is committed to being a workplace that is not only free of unlawful discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that providing an inclusive workplace creates an environment in which our employees can thrive and develop better products for our customers. All employment decisions are made on a non-discriminatory basis without regard to sex, race, color, national origin, citizenship status, religion, age, disability, pregnancy or maternity status, sexual orientation, gender identity, status as a veteran or protected veteran, or any other similarly protected status in accordance with federal, state and local laws. We encourage interested candidates to review the key responsibilities and qualifications for each role and apply for any positions that match their skills and capabilities. Applicants in the recruitment process may be required, where applicable, to successfully complete a role-related assessment(s) and/or a pre-employment screening prior to beginning employment. To learn more, visit How we Hire . Accommodations General Motors offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us or call us at 1-800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.

Sr. Cyber Detection Incident Analyst - Security Operations job opportunity at General Motors.

Saved Jobs

No Job Saved

Other Ai Matches