Manager - Product Cybersecurity Compliance (Automotive)

TL;DR

Manager - Product Cybersecurity Compliance (Automotive): Own GM's vehicle product cybersecurity compliance posture including conducting threat analysis and risk assessment, providing requirements to cybersecurity policy and standards, ensuring global regulatory compliance, and orchestrating government-facing audits with an accent on UNR155 and Vehicle Type Approval processes. Focus on driving control gap remediation across vehicle engineering teams, cross-functional partnerships, and leading a high-performing GRC team.

Location: Hybrid in Warren, Michigan (expected to report to office at least 3 times a week). No immigration sponsorship (H1-B, OPT, etc.). Eligible for relocation benefits.

Company

hirify.global is a global automotive leader undergoing transformation in software services and cybersecurity to achieve Zero Crashes, Zero Emissions, and Zero Congestion.

What you will do

• Own and maintain product cybersecurity controls framework, Threat Analysis and Risk Assessment (TARA), and compliance with global regulations like UNR155, ISO/SAE 21434.
• Orchestrate Vehicle Type Approval (VTA) and Cybersecurity Management System (CSMS) audits with government agencies worldwide, managing readiness and remediation.
• Identify, prioritize, and drive closure of control gaps across vehicle programs in partnership with engineering teams.
• Provide input to cybersecurity policies and standards, monitor emerging regulations including vehicle theft requirements.
• Lead and mentor a team of GRC professionals, set KPIs, handle workforce planning and performance management.
• Collaborate with Vehicle Cybersecurity Engineering, Legal, Government Affairs, and suppliers for integrated compliance.

Requirements

• Bachelor's or Master's in Cybersecurity, Computer Science, Engineering or related
• Minimum 10 years in cybersecurity with focus on GRC, regulatory compliance, or automotive cybersecurity
• Experience leading teams including people, performance, and talent management
• Deep knowledge of UNR155, UNECE WP.29, NIST CSF, ISO/SAE 21434 and automotive regulations
• Experience with TARA, Vehicle Type Approval, CSMS audits, control frameworks, policy development
• Strong analytical, communication skills; ability to manage multi-stakeholder global programs

Nice to have

• Certifications: CGRC, CRISC, CISA, CISSP, ISO/SAE 21434 Lead Auditor, PMP
• Familiarity with vehicle theft regulations, GRC tools (Archer, ServiceNow), automotive embedded systems
• Experience with technical service organizations, supply chain cybersecurity, enterprise risk frameworks

Culture & Benefits

• Hybrid work model with office reporting expectations
• Comprehensive Total Rewards including well-being support from day one
• Inclusive environment fostering belonging, growth, and high-performance culture
• Focus on psychological safety, accountability, collaboration, and GM values