Senior IT Auditor-Vehicle Cybersecurity

General Motors, Detroit, MI. Analyze, evaluate & audit vehicle & infrastructure hardware capabilities & software integrity, cybersecurity risks & vulnerabilities such as compromised vehicle, OTA unencrypted sensitive data transmission, loss of PII, & compromised infrastructure, potential internet fraud, infrastructure & vehicle software performance requirements & IT control processes & systems of auditable activities assigned to audit. Prepare & perform in depth IT audit tests. Test security of web & Android & iOS mobile apps using OWASP, Burp Suite, Metasploit & Kali Linux tools. Evaluate organizations’ preparedness against NHTSA Cybersecurity Best Practices & Auto-ISAC Best Practices Guide for Incident Response for vehicle cybersecurity.

Perform multiple audits focusing on the areas of application security, product cybersecurity & third party security. Perform risk assessment of IT process & security controls within information systems environment including firewalls, Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS) & Web Application Firewalls (WAF). Coordinate 3rd party resources for Application Testing, Penetration Testing & Red Team Assessments. Master, Computer Science, Information Systems, Information Systems Security, Information Assurance, or related. 6 months experience as IT Auditor, Security Analyst, or related, testing security of web apps using Burp Suite & Kali Linux tools, & performing risk assessment of IT process & security controls within information systems environment including firewalls, IPS, IDS & WAF.