Senior Cybersecurity Engineer - Incident Response (Fintech)

TL;DR

Senior Cybersecurity Engineer (Incident Response): Designing and implementing security capabilities to identify and mitigate threats to corporate networks and systems with an accent on detection-as-code and automation. Focus on building scalable detection logic, enhancing SOAR playbooks, and integrating threat intelligence into actionable security controls.

Location: Hybrid (Must be based in Irving or Arlington, TX, USA). Work model involves 4 days onsite and 1 day remote.

Company

The captive auto finance subsidiary of General Motors, providing security capabilities across financial services, automotive, and high-tech industries.

What you will do

• Design, develop, and deploy scalable detection logic across SIEM and cloud environments using detections-as-code and automated pipelines.
• Develop and maintain production-quality code in Python, JavaScript, PowerShell, and Bash for security automation and API integrations.
• Build and optimize SOAR playbooks to accelerate enrichment and incident response workflows.
• Collaborate with SOC and Incident Response teams to resolve bottlenecks and reduce time-to-resolution.
• Translate threat intelligence and post-incident analysis into actionable security controls and detections.
• Evaluate emerging security technologies to strengthen the protection of enterprise information assets.

Requirements

• 3-5 years of experience in Cybersecurity, Network Engineering, or Application Development within complex business environments.
• Strong proficiency in networking fundamentals (TCP/IP, OSI model, routing, switching) and application-layer protocols.
• Hands-on experience securing cloud deployments in Azure, AWS, and GCP, including Kubernetes and containerized environments.
• Ability to manage security controls via CI/CD pipelines using Python, Go, or JavaScript.
• Familiarity with NIST Incident Response Lifecycle and MITRE ATT&CK Framework.
• Must be able to work in a hybrid model (4 days onsite in Texas, USA).

Nice to have

• Security and cloud certifications such as CISSP, CCNP-Security, GIAC, CEH, or AWS Certified DevOps Engineer.
• Experience in alert triage, ongoing monitoring, and investigation.

Culture & Benefits

• Generous benefits starting day one, including 401K matching and tuition assistance.
• 12 weeks of 100% paid bonding leave for new parents.
• GM employee auto discount and community service pay.
• Flexible hybrid work environment with professional growth opportunities.
• Collaborative culture focused on innovation, integrity, and belonging.