Manager, Data Security Engineer

Job Description

This role is based remotely but if you live within a 50-mile radius of Austin, TX, Roswell, GA or Warren, MI, you are expected to report to that location three times a week, at minimum.

This job is not eligible for relocation benefits. Any relocation costs would be the responsibility of the selected candidate.

The Role:

As Manager for Data Security Engineers, you will be part of the organization that is accountable to facilitate and influence processes, behaviors, and data management workflow for our organization's data assets with the intention to safeguard enterprise assets with high fidelity in confidentiality, integrity, and privacy. The ideal candidate will have proven experience and successes with leading multi-domain, multi-regional data risk management functions for adherence to US (United States) and Non-US compliance regulations. This role will lead the Team that is accountable to govern data movement-at-rest and in-motion, ensuring that monitoring and audit practices align with GM's Privacy and Enterprise Risk Data Management strategies. The ideal candidate thrives with being accountable for driving collaboration across Compliance, Legal, Risk, and Product Development teams, to define policies that will scale, ensuring compliance of data (structured, unstructured, and streamed) across enterprise data assets, whether the data is hydrated internally or shared with third parties.

What You'll Do:

• Lead a Team accountable for planning and implementation of the Data Risk Management program with collaboration across the Enterprise Privacy Office, Risk Management, Legal, Cybersecurity and Data Domain Product producer teams.
• Develop and implement data security strategies, policies, and procedures to protect the organization's data assets.
• Ensure regular assessments and audits of data systems and infrastructure are matured and scaled to identify vulnerabilities and recommend security enhancements to all dependent Risk teams and Legal management teams.
• Investigate and resolve data security breaches, to include conducting forensic analysis and implementing remediation measures.
• Stay up to date on the latest data security threats, vulnerabilities, and industry best practices, to proactively recommend security enhancements.
• Establish security awareness training programs for employees to promote a culture of data security and compliance.
• Collaborate with external Vendors and Partners to ensure the security of data shared or accessed by third parties.
• Enhance the Enterprise Governance program by providing guidance and support to IT (Information Technology) teams and Data product producing units on data security best practices and compliance requirements.
• Partner with Enterprise Data Analytics & Insights (EDAI) Portfolio Management to balance Data Risk Management priorities across delivery teams and measure as part of the EDAI Data Strategy.

Your Skills & Abilities (Required Qualifications):

• 7+ years of experience driving data technology and enabling transformation for Business Units and Corporate Functions with Product Delivery and/or Data Governance capabilities – relevant consulting experience acceptable.
• 2+ years of direct leadership experience at the Enterprise level of the organization where analytics, data, and insights fuel key growth.
• Bachelor's degree in computer science, Information Security, or a related field. Master's degree preferred.
• Experience with security tools and technologies, such as firewalls, intrusion detection systems, and vulnerability scanning tools.
• Experience in building a team focused on data-product delivery and ensuring appropriate checks and balances are in place to create high fidelity and compliant outcomes.
• Proven results with executing change-management processes that enhance the knowledge of data security principles, best practices, and industry standards across Product delivery teams.
• Strong knowledge and practitioner execution experience with data encryption, access controls, authentication mechanisms, and network security protocols.
• Experience with data governance tools and platforms, such as Atlan, Immuta, Collibra, Informatica, or similar.
• Knowledge of data privacy regulations, such as GDPR (General Data Protection Regulation), CCPA, or HIPAA (Health Insurance Portability Accountability Act), and experience ensuring compliance with these regulations.
• Define and track key performance indicators (KPIs) and maturity models to measure Enterprise Data Risk management capabilities and compliance achievements as set by Privacy, Risk, Legal and Enterprise Governance requirements.

What Will Give You a Competitive Edge (Preferred):

• Relevant certifications, such as Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Risk Manager (CRM), Certified Data Privacy Solutions Engineer (CDPSE) a plus.

About GM

Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.

Benefits Overview

The goal of the General Motors total rewards program is to support the health and well-being of you and your family. Our comprehensive compensation plan includes a variety of health and wellbeing benefit programs.

GM is committed to being a workplace that is not only free of discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that workforce diversity creates an environment in which our employees can thrive and develop better products for our customers.