Associate Cybersecurity Analyst – Incident Response

Role Overview

• Support the Cybersecurity Incident Response Team by keeping incident activities, tasks, and follow-ups organized and on track
• Capture notes, timelines, decisions, and action items from incident response activities to ensure accurate and consistent records
• Create, update, and maintain incident response documentation such as playbooks and process flows
• Maintain trackers, dashboards, and shared repositories that provide visibility into incident response projects
• Partner closely with incident response and leadership to coordinate priorities and ensure follow through
• Support readiness efforts by coordinating tabletop exercises, training materials, and onboarding resources
• Identify opportunities to improve team workflows or processes and implement improvements over time
• Audit management and tracking of remediation items and/or findings to completion
• Collaborate with business partners to manage Cybersecurity needs
• Initiate, facilitate and promote Cybersecurity within the organization and monitor adherence to Cybersecurity policies, standards and controls
• Ensure effective communication and partnership with all departments at GMF and serve as a liaison of Cybersecurity and first point of contact for Cybersecurity concerns
• Represent the Global Cybersecurity organization on projects as needed.

Requirements

• Interest in beginning a career in cybersecurity and developing an understanding of how security operations and incident response teams operate and support investigations
• Foundational knowledge of cybersecurity or IT concepts
• Strong written communication skills, with the ability to document processes, summarize discussions, and clearly capture decisions and action items
• Excellent organizational and time management skills, with the ability to track multiple tasks and priorities in a structured way
• Experience creating or maintaining documentation, procedures, knowledge bases, or operational guides
• Strong attention to detail and a commitment to producing accurate, clear, and well organized work
• Must have a high-level understanding of financial services industry, security, risk and privacy
• Must have current knowledge and stay up-to-date on the latest Cybersecurity legislation, regulations, advisories, alerts and vulnerabilities
• Proficiency with MS-Office applications including Word, PowerPoint, Excel, Visio and Project
• Understanding of cloud technologies and concepts
• Familiarity with DevOps and Agile development process
• Ability to clearly explain and articulate technical concepts using non-technical language
• Strong analytical skills
• Excellent verbal communication skills.
• 0-2 years of experience in large and complex business environments with a successful track record working directly with senior level management with working knowledge in one or more of the following domains: Access Control, Telecom and Network Security, Cybersecurity Governance, Risk Management, Software Development Security, Cryptography, Security Architecture and Design, Operational Security, Business Continuity & Disaster Recovery, Legal Regulations, Investigations and Compliance, Physical (Environmental) Security, IT or Security Audit, IT or Security Compliance preferred
• 0-2 years of experience in the financial services industry preferred
• 0-2 years of demonstrable experience leading collaborative programs and projects with senior level management required
• High School Diploma or equivalent required
• Bachelor’s Degree or equivalent experience strongly preferred
• Cybersecurity Certifications strongly preferred.

Tech Stack

• Cloud
• Cyber Security

Benefits

• Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays.
• Competitive pay and bonus eligibility.
• Flexible hybrid work environment, 4-days a week in office.