Staff Product Cybersecurity Engineer - Warren
10 hours ago
Job description
Job DescriptionThe Role
GM's Product Cybersecurity Team safeguards the security and integrity of our vehicle platforms, embedded systems, and connected services across the entire product lifecycle.
Our mission is to proactively defend GM products against evolving cyber threats by engineering cybersecurity into every phase — from concept and architecture through development, validation, production, and in-field operation.
We seek product cybersecurity professionals with advanced expertise in secure system design, embedded and automotive security, and risk-based threat analysis, capable of driving security-by-design principles, ensuring compliance with global regulations and standards, and strengthening the resilience of GM's vehicles and mobility ecosystems.
The Staff Product Cybersecurity Engineer defines and leads cybersecurity strategy for new technologies, highly complex features, and major improvements across current and future vehicle platforms.
This role provides technical leadership to execution teams for the development, integration, and validation of cybersecurity controls, ensuring alignment with GM's enterprise security architecture and standards.
This is a high-impact, hands-on technical leadership role responsible for defining secure system architectures spanning vehicle ECUs, high-performance compute platforms, ADAS system, charging infrastructure, PKI ecosystems, and external partner interfaces.
Cybersecurity Architecture Ownership
Define cybersecurity goals, concepts, and technical roadmaps for:
ADAS perception, cameras, radar, lidar, and compute domains.
On-board chargers, EVSE, and GM Energy products.
Architect secure end-to-end systems spanning:
Linux-based ECUs (Yocto / AGL / Android Automotive OS).
Vehicle networks (CAN, Ethernet, diagnostics).
Define charging interfaces and backend ecosystems.
Drive secure partitioning, privilege separation, process isolation, and access control models across high-performance compute and embedded platforms.
Security Requirements
Define and enforce cybersecurity requirements for:
ADAS ECUs, sensors, compute platforms.
Charging ECUs and Certificate Lifecycle Management (CLM).
Plug & Charge (ISO implementations.
Lead secure implementation guidance for:
ISO / ISO certificate handling, TLS, contract management).
Secure vehicle communications (TLS, mutual TLS).
Ensure regulatory compliance and alignment with ISO/SAE 21434 and UNECE R155 / R156.
Threat Modeling & Risk Management
Lead TARA, threat modeling, and security architecture reviews for:
ADAS compute and autonomy features.
Charging use cases (Plug & Charge, smart charging, bi-directional charging).
Vehicle-to-cloud and vehicle-to-charger ecosystems.
Evaluate risks across:
In-vehicle networks
Edge devices
PKI infrastructure
Backend APIs and third-party integrations
Provide risk-based design recommendations balancing security, safety, and
product constraints.
PKI, Cryptography & Secure Communications
Define PKI architectures supporting Plug & Charge and charging ecosystems.
Specify certificate lifecycle management, key provisioning, secure storage (HSM /
secure elements).
Drive secure TLS/mTLS implementations across vehicle, charger, and cloud
domains.
Oversee cryptographic controls for:
Contract certificates
Backend trust chains
ECU authentication mechanisms
Secure Linux & Platform Hardening (ADAS Compute)
Design and maintain SELinux security policies for Linux-based ECUs.
Harden OS configurations:
Kernel security configuration
System sandboxing
Secure boot and chain-of-trust.
Review containerization, virtualization, and hypervisor security strategies for ADAS compute platforms.
Cross-Functional & Supplier Leadership
Partner with system architects, software teams, validation, and cloud engineering.
Review supplier security concepts and evidence packages.
Provide clear technical guidance and design feedback.
Translate complex risks into actionable engineering requirements.
Incident Response & Post-Launch Security
Support vulnerability assessments and coordinated disclosure.
Participate in root-cause analysis and mitigation strategy definition.
Contribute to long-term product cybersecurity strategy for ADAS and GM Energy.
Your Skills & Abilities (Required Qualifications)
Bachelor's degree in Computer Engineering, Electrical Engineering, Computer Science, or related field.
7+ years of experience in automotive or embedded cybersecurity.
Experience with ADAS / autonomy platforms.
Strong knowledge of:
ISO/SAE 21434
UNECE R155 / R156
Automotive E/E architectures
Hands-on experience with:
Secure communications (TLS, mTLS, SecOC).
PKI, digital certificates, and key management.
CAN, UDS, Ethernet, or automotive diagnostics.
Experience securing embedded Linux platforms (SELinux, Yocto, OS hardening).
Proficient in at least one of the following programming languages:
C, C++, Python, Go, or Java.
Experience with:
HSMs and secure elements.
Secure boot and hardware root of trust.
Strong system-level thinking and ability to drive secure architecture decisions.
About GM
Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.
We believe we all must make a choice every day – individually and collectively – to drive meaningful change through our words, our deeds and our culture.
Benefits Overview
From day one, we're looking out for your well-being–at work and at home–so you can focus on realizing your ambitions.
Non-Discrimination and Equal Employment Opportunities (U.S.)
General Motors is committed to being a workplace that is not only free of unlawful discrimination, but one that genuinely fosters inclusion and belonging.
We strongly believe that providing an inclusive workplace creates an environment in which our employees can thrive and develop better products for our customers.
All employment decisions are made on a non-discriminatory basis without regard to sex, race, color, national origin, citizenship status, religion, age, disability, pregnancy or maternity status, sexual orientation, gender identity, status as a veteran or protected veteran, or any other similarly protected status in accordance with federal, state and local laws.
We encourage interested candidates to review the key responsibilities and qualifications for each role and apply for any positions that match their skills and capabilities.
Applicants in the recruitment process may be required, where applicable, to successfully complete a role-related assessment(s) and/or a pre-employment screening prior to beginning employment.
To learn more, visit How we Hire.Accommodations
General Motors offers opportunities to all job seekers including individuals with disabilities.
If you need a reasonable accommodation to assist with your job search or application for employment, email us or call us at In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.
Similar jobs
We're looking for a seasoned security software engineer to join our IAM team (Identity Access Management) to help develop architect advance our suite of applications services. · Design develop security-focused software solutions tools automation frameworks · Integrate security in ...
1 week ago
We're looking for a seasoned Security Software Engineer to join our IAM team (Identity Access Management) to help develop, architect and advance our suite of applications and services. · Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent experie ...
3 weeks ago
Job Description · The Role · GM's Product Cybersecurity Team safeguards the security and integrity of our vehicle platforms, embedded systems, and connected services across the entire product lifecycle. Our mission is to proactively defend GM products against evolving cyber threa ...
10 hours ago
Job Description · The Role · GM's · Cybersecurity Team · safeguards the company's global information assets, networks, and infrastructure. Our mission is to proactively defend GM against evolving cyber threats through strategic leadership, technical excellence, and innovative ris ...
9 hours ago
Job Description · The Role · GM's Product Cybersecurity Team safeguards the security and integrity of our vehicle platforms, embedded systems, and connected services across the entire product lifecycle. Our mission is to proactively defend GM products against evolving cyber threa ...
9 hours ago
This position offers a competitive salary range of $80,000 to $120,000 per annum, along with comprehensive benefits. · ...
3 weeks ago
Lensa is a career site that helps job seekers find great jobs in the US. We are not a staffing firm or agency. · Insight Global is seeking an Embedded Cybersecurity Engineer to support a federal customer in Sterling Heights, MI. · Key Responsibilities · Apply computer science, en ...
4 weeks ago
Join a team dedicated to designing and producing armored combat and support vehicles. · ...
1 week ago
The function of this position is to support the Cyber and Command, Control, Communication, · Cyberspace (C5ISR) section with responsibility for Cyber architecture, · technology evaluation testing and compliance across the US market and support · the delivery of products and servi ...
3 weeks ago
We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? · If you're looking for · the c ...
1 month ago
Description · We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? · Enterprise Te ...
1 day ago
The Vehicle Cyber Security Engineer serves a key role in shaping the future of product development security for vehicles (e.g. Next-Gen Network Architecture, Diagnostics, Autonomous Vehicle, Ford Smart Mobility, and Offensive Security Analysis). · This is the opportunity for you ...
1 week ago
We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. · The Vehicle Cyber Security Engineer serves a key role in shaping the future ...
1 week ago
We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. · Enterprise Technology plays a critical part in shaping the future of mobility. If you're looking for the chance to leverage advanced techn ...
1 month ago
We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world together. · ...
1 month ago
We are the movers of the world and make a better future together. · The Product Cybersecurity Engineer will act as a technical lead designing security for our vehicles responsible for researching future security technologies developing security designs writing requirements and su ...
1 month ago
Our company offers cutting edge products and services that are rooted in deep subject matter expertise of Safety,Cybersecurity,and Artificial Intelligence fields within embedded computing electronics that power tomorrow's autonomous vehicles. · ...
1 month ago
We are looking for a Cybersecurity engineer to secure autonomous vehicles from cybersecurity threats. · Lead cyber security activities in compliance with ISO 21434 · Lead/Support Threat Analysis and Risk Assessment (TARA) in collaboration with other functional engineers · Guide s ...
1 month ago
Imagine working for a company that measures its success based off the growth of its colleagues, a company that invests in its future by investing in you. · ...
4 weeks ago
We are currently seeking Senior Validation Engineer, Cybersecurity. This position requires an experienced professional with a proven track record of cyber security development achievements Our ideal candidate exhibits a can-do attitude and approaches his or her work with vigor an ...
1 month ago