Brazil Job Openings
GM Financial
Cybersecurity Specialist
São Paulo
FULL TIME
November 5, 2024
Why GMF?:
GM Financial International Operations conducts business in Latin America and China. International Operations offers a wide range of wholesale and retail automotive financing products to dealers and their customers. The strength of the international business lies in its ability to tailor its products to meet unique dealer needs, consumer preferences and national requirements in local markets. Latin American country operations include Brazil, Chile, Colombia, Mexico, and Peru.
About the role:
Disclaimer: Brazil - GM Financial is an Equal Opportunity Employer and is committed to diversity and inclusion at every level of our organization. We do not discriminate against any applicant or employee based on race, color, age, gender, marital status, national origin, religion, sexual orientation, gender identity, veteran status or disability.
GM Financial International Operations conducts business in Latin America and China. International Operations offers a wide range of wholesale and retail automotive financing products to dealers and their customers. The strength of the international business lies in its ability to tailor its products to meet unique dealer needs, consumer preferences and national requirements in local markets. Latin American country operations include Brazil, Chile, Colombia, Mexico, and Peru.
The Cybersecurity Specialist is responsible for executing a portion of the GM Financial (GMF) Cybersecurity Program designed to advise the organization on its management of cybersecurity risk by organizing information, enabling risk management decisions, and addressing threats to ensure the security of company systems and information assets. The Senior Cybersecurity Specialist is responsible for contributing to the success of comprehensive security initiatives, working with internal and external groups to ensure the program is operating effectively and efficiently, and developing strong partnerships with business partners across the enterprise to ensure company data and information systems are protected at the appropriate level.
What you need:
- 3-8 years of experience in large and complex business environments with a successful track record working directly with senior level management with at least 1 year of experience in one or more of the following domains: Access Control, Cybersecurity Governance and Risk Management, Cryptography, Security Architecture and Design, Operational Security, Business Continuity & Disaster Recovery, Legal Regulations, IT or Security Audit, IT or Security Compliance.
- Experience in the financial services industry preferred
- Must have demonstrable experience leading collaborative programs and projects with senior level management
- Bachelor's Degree or equivalent experience required
- Information Security Certifications strongly preferred
- Experience with Cybersecurity regulations strongly preferred, including but not limited to the Brazil Central Bank (BACEN) Resolution 4,893 and the Financial Superintendence of Colombia (SFC) Circular 007 and Circular 008
- Fluency in English and Portuguese is required
- Fluency in English, Portuguese, and Spanish is preferred
- Experience with documentation and reporting of policy or procedure discrepancies and/or change requests
- Demonstrated capability to collaborate with business partners to manage cybersecurity needs
- Knowledge on the latest security and privacy legislation, regulations, advisories, alerts and vulnerabilities
- Working knowledge of cybersecurity compliance within a financial services setting and ability and willingness to remain up to date on the latest regulatory trends, including applicable state and federal laws and regulations
- Fosters open communication, speaks with impact, listens to others, and writes effectively
- Effective planning, time management, negotiation and delegation skills
- Engages with business partners to translate high-level business requirements into enterprise security initiatives and programs to achieve the GMF’s mission, goals and objectives
- Exceptional analytical and technical skills
- Ability to apply advanced information security standards/frameworks (i.e., NIST Cybersecurity Framework, ISO 27001) to analysis and assessments
- Ability to prioritize multiple projects simultaneously with strong organizational skills
- Demonstrated critical thinking, analytical skills, judgment and logic when solving problems and making decisions
- Ability to work effectively in a team environment and able to adapt to rapidly changing business and technological needs, with frequent changing priorities
- 0-20% travel may be required
- Developing and updating cybersecurity policies, standards and procedures referencing NIST 800-53 controls and the NIST Cybersecurity Framework, including conducting gap assessments in accordance with updates in relevant regulatory or industry cybersecurity practices
- Develop a thorough understanding of GM Financial policies, procedures and provide suggestions to revise those documents in order to comply with legal requirements, new laws and recommendations
- Initiate, facilitate and promote cybersecurity within the organization and monitor adherence to cybersecurity policies, standards and controls
- Experience with documentation and reporting of policy or procedure discrepancies and/or change requests
- Ensure effective communication and partnership with all departments at GMF and serve as a liaison of Cybersecurity and first point of contact for cybersecurity concerns
- Assist in development of security requirements to protect the company from external and internal threats
- Participate in system enhancements or updates to procedures related to changes in laws and regulations, as needed
- Collaborate with business stakeholders and project teams to identify security requirements and ensure appropriate levels of security governance, resource management, and asset management
- Conduct risk assessments on Information Technology, Cybersecurity, Third Party Vendor, and other relevant company risks, recommend mitigation strategies, and work with internal stakeholders to assign monitoring responsibility
- Interpret risk requirements and translate into actionable and sustainable implementations
- Identify new or implement changes to techniques (policies, procedures, KPIs, KRIs, tools, etc.) and processes for the Cybersecurity Risk Management program to remain relevant (changing risk and threat landscape and Business requirements, etc.) and effective
- Demonstrate extensive experience with conducting IT, security, and compliance-related risk assessments and advising on mitigation strategies
At GM Financial we want you to be the most authentic version of yourself. We take care of your work-life balance by programming wellness and integration activities, where you will strengthen your relationships with peers and contribute towards the development and wellbeing of your community, while providing you with a competitive salary and benefits. Some of our global benefits include Extended Maternity & Paternity Leaves, Personal Days & Community Investment hours.
Brazil: Additional benefits include transportation assistance, food assistance, medical assistance, gympass, life insurance and others.
#LI-MON
New Job Alerts
Novartis
Consultor Técnico Especialidades Sr. Pluvicto
Santo Amaro
FULL TIME
November 9, 2024
View Job Description
CPM Holdings, Inc.
Internal Sales Analyst- Industrial Solutions South America
São Paulo
FULL TIME
November 9, 2024
View Job Description
Looking for similar job?
Johnson & Johnson
Manager, Cybersecurity Communications and Awareness
São Paulo
October 28, 2024
View Job Description
Johnson & Johnson
Principal Cybersecurity Data Engineer - São José dos Campos or São Paulo, Brazil
São José dos Campos
October 28, 2024
View Job Description
Netvagas
Especialista em risco e análises estratégicas
São Paulo
August 30, 2024
View Job DescriptionSee What’s New: GM Financial Job Opportunities
GM Financial
Supervisão de BI e Data Analytics
São Paulo
FULL TIME
November 7, 2024
View Job Description
GM Financial
Executivo Pleno de Negócios PCD
São Paulo
FULL TIME
October 15, 2024
View Job DescriptionNew Job Alerts
Novartis
Consultor Técnico Especialidades Sr. Pluvicto
Santo Amaro
FULL TIME
November 9, 2024
View Job Description
CPM Holdings, Inc.
Internal Sales Analyst- Industrial Solutions South America
São Paulo
FULL TIME
November 9, 2024
View Job Description