Senior Cyber Threat Intelligence Analyst

Job Description The Role Join GM's Cybersecurity Team and play a critical role in protecting the company's global information assets, networks, and infrastructure. Our mission is to proactively defend GM from evolving cyber threats through strategic leadership, technical excellence, and innovative risk management. We are looking for seasoned cybersecurity professionals with advanced expertise to drive enterprise security initiatives and enhance organizational resilience. As a Senior Cyber Threat Intelligence Analyst, you will analyze complex threat data and convert it into actionable intelligence to shape GM's IT and connected vehicle cybersecurity strategies. This role involves guiding organizational leadership, disrupting cyber-attacks, and mentoring junior analysts by identifying adversary Tactics, Techniques, and Procedures (TTPs) to enhance GM's security posture. Your technical expertise, analytical skills, and communication abilities will be crucial for translating complex security data into understandable business risks. Collaboration across various teams at GM is essential to develop mitigation strategies for our stakeholders. What You'll Do Threat Intelligence Production & Analysis: Collect and analyze threat data from diverse sources including commercial feeds, deep/dark web, forums, ISACs, law enforcement partnerships, open sources, and internal telemetry on vulnerabilities, exploits, malware, and threat actors targeting connected vehicle, IT, HR, manufacturing, and supply chain environments. Create clear, concise, and well-structured intelligence products (alerts, briefings, assessments, and dashboards) designed for different audiences including SOC, executives, engineers, and business stakeholders. Maintain current awareness of adversary TTPs, emerging malware, ransomware trends, fraud schemes, and sector-specific developments (such as automotive and manufacturing). Help prioritize remediation and control improvements by effectively communicating risks, impacts, and recommended actions. Operational Support & Incident Response: Provide on-call intelligence support for Security Operations, participating in incident triage calls to contextualize alerts, prioritize actions, and recommend mitigation strategies. Enhance investigations in tools such as MISP, OpenCTI, and ServiceNow with IOCs, threat group context, and possible courses of action. Conduct research and respond to requests for information (RFIs) to support time-sensitive investigations and cross-functional initiatives. Stakeholder Engagement & Collaboration: Build and maintain effective working relationships with internal and external stakeholders including Cyber Defense, Product Cybersecurity, Manufacturing, Third Party Cybersecurity, Legal, and law enforcement. Engage in recurring threat intel updates, briefings, and working sessions while tailoring your messaging to technical and non-technical audiences. Collect feedback on intelligence products and services to enhance their relevance, timeliness, and usability. Process, Tooling, and Measurement: Contribute to the development and continuous improvement of intelligence workflows, standard operating procedures (SOPs), and playbooks, with an emphasis on leveraging automation. Utilize and develop key performance indicators to demonstrate measurable value from Cyber Threat Intelligence initiatives. Follow a requirements-driven approach to ensure intelligence production aligns with Threat Intelligence Requirements (PIRs) and organizational risk. Serve as a subject matter expert and mentor junior analysts, promoting a culture of continuous learning within GM's security team. Your Skills & Abilities (Required Qualifications) Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or a related field; or equivalent combination of education and experience. 4+ years of experience in one of the following areas: Cyber threat intelligence. Incident response / detection engineering. Threat hunting. Security operations or closely related technical security roles. Strong understanding of: Common adversary TTPs, intrusion kill chains, and MITRE ATT&CK framework. Core network, endpoint, and cloud security concepts. Cyber attack vectors, detection techniques, and common exploit patterns. Proven ability to: Analyze complex technical information and convert it into actionable, business-relevant recommendations. Write clear and concise intelligence products for both technical and executive audiences. Thrive in a fast-paced environment while managing multiple priorities. Deliver clear and concise verbal briefings that provide actionable insights to technical and non-technical stakeholders, including senior leadership. Experience with tools such as: Threat intelligence platforms (e.g., MISP, Recorded Future, VirusTotal). SIEM/logging platforms (e.g., Google SecOps, QRadar, Splunk or similar). Case management and ticketing systems (e.g., ServiceNow). Basic scripting or data analysis (e.g., Python, SQL, Jupyter, etc.) for IOC processing and enrichment. What Will Give You a Competitive Edge (Preferred Qualifications) Experience in a large enterprise automotive/manufacturing environment. Involvement with: Information sharing communities (e.g., Auto ISAC or other ISACs). Third party/supply chain cyber risk assessment. Industry-recognized certifications such as: GCTI, GCIH, GCIA, GCFA, GREM, or similar blue-team/CTI certifications. Security+, CySA+, or equivalent certifications. Familiarity with requirements-driven approaches to CTI and integration with frameworks like NIST CSF. GM does not provide immigration-related sponsorship for this role. Do not apply for this position if you will need GM immigration sponsorship now or in the future. This includes direct company sponsorship and any work authorization requiring written support from the company. This role is categorized as hybrid, allowing some flexibility. The selected candidate is expected to report to a specific location at least three times a week. This position may offer relocation benefits. About GM Our vision is to create a world with Zero Crashes, Zero Emissions, and Zero Congestion, and we embrace our responsibility to lead change that will make our world better, safer, and more equitable. Why Join Us We believe in making a difference every day through our actions and culture, ensuring that every employee feels a part of the General Motors team. Benefits Overview From day one, we're dedicated to your well-being, both at work and home, allowing you to focus on achieving your career goals. Learn more about how GM supports your professional journey. Non-Discrimination and Equal Employment Opportunities (U.S.) General Motors is committed to fostering an inclusive workplace free from unlawful discrimination. We believe that a diverse work environment enhances creativity and product development. We encourage all applicants to review the position's key responsibilities and qualifications, applying for any roles that match their skills. Applicants may be required to complete role-related assessments and pre-employment screenings as part of the hiring process. Accommodations If you require reasonable accommodations during your job search or application process, please reach out to us via email with your request and the job title. Join us in leading the charge to make the world a safer, better, and more equitable place through technology and ingenuity. We are looking for innovators to transform mobility. Explore our global locations and consider becoming a member of GM's Talent Community for updates on open roles and career insights. General Motors is committed to providing equal opportunities for all job seekers, with a focus on creating an inclusive environment. If you require accommodations during your application process, reach out to us with your request.

Created: 2026-03-09