Senior Vulnerability Intelligence Analyst

Description
The Role
General Motors (GM) is seeking a Senior Vulnerability Intelligence Analyst to join the Cybersecurity team. This strategic role is responsible for proactively identifying, analyzing, and prioritizing software vulnerabilities that pose risk to GM's systems, data, and operations. They translate raw vulnerability data into actionable intelligence by assessing which threats are relevant to GM's environment, enabling the Vulnerability Management team to patch what matters most, faster and with greater precision. Their primary responsibility is to evaluate vulnerabilities based on active threat actor exploitation, technical severity, and business impact leveraging external intelligence sources and GM-specific context to guide remediation decisions, enrich detection logic, and reduce GM's overall attack surface.
What You'll Do

• Risk Prioritization and Scoring:
  Develop and refine a risk-based prioritization framework by integrating external intelligence sources (e.g., CVE databases, threat feeds, vendor reports, dark web monitoring) to rank vulnerabilities, assess exploitability and business impact.
• Patch Tuesday:
  Coordinate and support GM's Patch Tuesday operations, providing timely analysis of newly released vendor patches, identifying critical vulnerabilities, and advising on patching priorities for GM's technology stack.
• Cross-Team Collaboration:
  Partner closely with Vulnerability Management, IT Operations, Engineering, and other stakeholders to ensure effective communication, risk mitigation, and remediation of prioritized vulnerabilities.
• Threat Intelligence Analysis:
  Conduct in-depth analysis of emerging threats, attack vectors, and proof-of-concept exploits to determine who is targeting what vulnerabilities and how.
• Reporting and Communication:
  Deliver high-quality intelligence reports, executive briefings, dashboards, and technical alerts tailored for GM leadership, technical teams, and incident response units.
• Strategic Guidance and Mitigation:
  Advise GM stakeholders on patching priorities, compensating controls, and risk acceptance decisions, ensuring recommendations are aligned with GM's risk appetite and operational requirements.
• Process Improvement:
  Continuously improve GM's vulnerability intelligence processes, tools, and methodologies to enhance the speed and accuracy of threat identification and response.
• Mentorship and Leadership:
  Serve as a subject matter expert and mentor junior analysts, fostering a culture of continuous learning and technical excellence within GM's security team.

Your Skills & Abilities (Required Qualifications)

• Bachelor's degree in Information Security, Computer Science, or relevant cybersecurity degree
• 4+ years of cybersecurity experience, with at least 3 years in vulnerability management, threat intelligence, or security analysis.
• Deep understanding of CVE tracking, vulnerability scoring systems (CVSS v3.x+), Exploit Prediction Scoring System (EPSS), adversarial TTPs, frameworks (MITRE ATT&CK), and the threat landscape.
• Strong knowledge of Windows, Linux, macOS, cloud environments (AWS, Azure, GCP), and enterprise architecture.
• Proficiency with VM tools (Nessus, Tenable, Qualys, Wiz), SIEM, and threat intelligence platforms.
• Exceptional analytical and communication skills.
• Relevant certifications (CISSP, CISM, GCTI, OSCP) preferred.

Key Performance Indicators (KPIs):

• Time-to-identification of critical vulnerabilities relevant to GM.
• Accuracy of vulnerability prioritization and risk assessments.
• Reduction in average time-to-remediation for high-priority risks.
• Quality and timeliness of intelligence reporting and alerts.

About GM
Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.
Why Join Us
We believe we all must make a choice every day - individually and collectively - to drive meaningful change through our words, our deeds and our culture. Every day, we want every employee to feel they belong to one General Motors team.
Total Rewards | Benefits Overview
From day one, we're looking out for your well-being-at work and at home-so you can focus on realizing your ambitions. Learn how GM supports a rewarding career that rewards you personally by visiting Total Rewards resources.
Non-Discrimination and Equal Employment Opportunities (U.S.)
General Motors is committed to being a workplace that is not only free of unlawful discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that providing an inclusive workplace creates an environment in which our employees can thrive and develop better products for our customers.
All employment decisions are made on a non-discriminatory basis without regard to sex, race, color, national origin, citizenship status, religion, age, disability, pregnancy or maternity status, sexual orientation, gender identity, status as a veteran or protected veteran, or any other similarly protected status in accordance with federal, state and local laws.
We encourage interested candidates to review the key responsibilities and qualifications for each role and apply for any positions that match their skills and capabilities. Applicants in the recruitment process may be required, where applicable, to successfully complete a role-related assessment(s) and/or a pre-employment screening prior to beginning employment. To learn more, visit How we Hire.
Accommodations
General Motors offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us [email protected] or call us at 800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.