GM Financial

Lead a team of software engineers to develop, implement, and support enterprise applications, fostering innovation and ensuring high-quality delivery. | Requires over 10 years of software development experience, leadership skills, and familiarity with modern DevOps tools and practices. | Job Description Why GM Financial Technology? GM Financial is set to change the auto finance industry and is leading the path with embarking on tech modernization. We have a startup mindset, preserve our small company culture, in a public company environment with financial stability and intense growth over a decade long history. We are data junkies and trust in data and insights to advance our business objectives. We take our goal of zero emission, zero collision, zero congestion and zero friction very seriously. We believe as the auto finance market leader we are in the driver's seat to lead us in the GM EV mission to change the world. We are building global platforms, LATAM, Europe, China. Our high performing talent needs a high performing leader. GMF is comprised of over 10,000 team members globally. Join our fin-tech culture within a Blue-Chip company where we are changing the way we use technology to support our customers and business Responsibilities About the Role: GM Financial is seeking an AVP Software Engineer to lead a team of Software Engineers and DevOps Engineers, leading application implementation and agility across various enterprise platforms. • Partner with architects, product owners, and software engineers to drive the implementation of new applications • Work within and across Agile teams to design, develop, test, implement, and support technical solutions across our full stack, with a particular focus on front-end and middleware platforms and technologies • Manage third party staff augmentation firms, leveraging staff and contractors appropriately with regards to budget, timelines, and skillsets • Conduct design and code review to ensure compliance with standards • Foster and cultivate a culture of continuous delivery and improvement with an emphasis on full lifecycle ownership of the applications that your teams deliver • Delegate routine and standard tasks to appropriate team members and also serve as high level escalation contact • Resolves most conflicts between timeline, budget and scope independently but intuitively escalates complex or consequential issues to management • Define and evangelize enterprise policies, standards and position statements • Encourage innovation, implementation of cutting-edge technologies, inclusion, outside-of-the-box thinking, teamwork, self-organization, and diversity • Grow subject matter experts to produce resilient, scalable software and secure data with highest quality. • Work to modernize our existing tech stacks • Collaborate with internal teams to find areas of opportunities for automation Reporting Structure: • This role reports to the VP DevOps & Automation Qualifications What make you a dream candidate? • Experienced with several programming paradigms • Experience with release systems and CI/CD • Experience with Docker, Jenkins, Github tools, etc • Deep understanding of technologies used in our stack, client-server architecture, and web technology • Adequate understanding of infrastructure and DevOpsAble to design and architect maintainable and scalable technical systems • Excellent listener; proven collaborator with superiors, peers and staff • Aptitude to build very strong partnerships with other technology leaders that enable your team's ability to stay on the leading edge of industry solutions • Ability to inspire your teammates to deliver quality software solution Experience: • Greater than 10 years years in software development field Req • 5-7 years leading projects or initiatives through influence Req • High School Diploma required • Associate degree or bachelor's degree in computer science, engineering or equivalent work experience Required • Master's Degree preferred

Identify, assess, and remediate security vulnerabilities across IT infrastructure, applications, and cloud environments, supporting cybersecurity risk management. | Extensive experience in cybersecurity, vulnerability scanning, risk assessment, and automation, with strong technical skills in various operating systems and programming languages. | Job Description Hybrid work environment: 4 days onsite and 1 day remote Why GM Financial Cybersecurity? Innovation isn’t just a talking point at GM Financial, it’s how we operate. By joining our team, you’ll work in a mission-focused environment with specialized teams, including Engineering, Threat Intelligence, Vulnerability Management, Incident Response, Firewall, Governance, Risk, Architecture and Offensive Security. These teams collaborate to identify, manage and respond to threats, all while driving innovation across the environment. Cybersecurity is central to our strategic vision, so you’ll benefit from exceptional leadership visibility, with direct reporting lines to the CEO. This structure ensures your work is recognized and supported at the highest levels, while also enabling bold innovation and the adoption of cutting-edge technologies. Shape the future of Cybersecurity at GM Financial, with the freedom to explore, the tools to build and the support to thrive. Responsibilities About the Role: The Senior Principal of Vulnerability Management is highly skilled and detail-oriented in the art of Cybersecurity Vulnerability Management. This role is responsible for identifying, assessing, analyzing, prioritizing, and coordinating security vulnerabilities across our IT infrastructure, business applications, and cloud environments. The ideal candidate must have a strong well rounded technical background in information technology, cybersecurity, vulnerability scanning tools, and risk assessment methodologies. The ideal candidate must be able to assess all vulnerability risks and accurately articulate and document for both technical and non-technical team members the risk level, impacts, and options for remediation and or mitigation of the risk. In This Role, You Will • Support and influence technical direction for vulnerability and scanning supporting technology • Architect, build and maintain scalable vulnerability detection rules, alerts, scripts, and triage pipelines • Monitor and assess the company’s cybersecurity risks and implement mitigation strategies to address vulnerabilities • Conduct continuous discovery and vulnerability assessment of enterprise-wide assets , including vulnerability scans in support of operational matters (non-scheduled) • Serve as a technical escalation point for vulnerability management and remediation efforts • Define, b uild and apply protective mitigations and work with engineering and infrastructure teams to integrate fixes upstream, and to support remediation efforts to close vulnerability exposure to new threats • Interpret complex data from vulnerability scans to pinpoint potential security risks and weaknesses • Examine disclosed vulnerabilities, threat scenarios, and mitigating controls to understand the potential impact on the organization • Provide specific recommendations for addressing and mitigating identified vulnerabilities, prioritizing effort based on factors such as risk, exposure, business impact, threat intelligence, and contextual data • Perform technical analysis of all scan results and provide a report of analysis as required Reporting Structure • This role reports to: AVP Cybersecurity Qualifications What makes you a dream candidate? • Experience with leading cross-functional and/or global initiatives from start to finish • Advanced knowledge of business acumen and a deep understanding of business implications of decisions • In-depth understanding of company values, mission, vision and strategic direction • Comprehensive knowledge of GM Financial’s business operations • Recognized as an expert across the business unit • Strong experience in threat modeling, secure design, and code review processes • Strong knowledge of Windows, Linux, Unix, and other operating system’s vulnerabilities and ways to stop them • Demonstrated knowledge in methods to protect against ransomware threats • Deep experience building and utilizing highly scalable platforms and tools (e.g., Vulnerability scanners, detection pipelines, analytics systems) • Independent ability to aggregate and report on data, utilizing data visualization techniques • Robust experience securing hybrid/multi cloud environments (Azure, AWS) • Proven and verifiable record of building vulnerability tooling and automations integrated into workflows • Deep understanding of the vulnerability risk landscape and its impact on cyber threats • Strategic understanding and practical experience with vulnerability remediation priority • Demonstrated experience performing risk assessments of vulnerabilities and evaluating compensating and mitigating controls in large, complex infrastructures • Knowledge of secure coding practices and application security testing (SAST, DAST, SCA, IaC, etc). • Strong experience building and operating Vulnerability Management, Threat Intelligence, or other security programs • Experience with Python, REST, Node, SWL, and other popular coding languages. • Strong familiarity with computer networking operations, TCP/IP networking, network fabrics, OSI layers, and corporate networking devices and their operating systems. • Demonstrated experience with DevSecOps and CI/CD methodologies • Strong understanding with securing container-based systems (Docker, Kuberntes, etc) • Working understanding of CVE, CWE, CVSS scoring, MitRE ATT&CK Framework, threat intelligence, and CISA • Possess excellent analytical, written, and verbal communication and documentation skills. Experience • Bachelor's Degree or Associate Degree plus 2 years of relevant experience required • 12 years minimum experience in related functions • 5-7 years experience leading through mentorship in a related field • 5-7 years experience driving thought leadership and innovation across products • Relevant certifications or licenses preferred What We Offer: Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), training, GM employee auto discount, community service pay and nine company holidays. Our Culture: Our team members define and shape our culture. We have an environment that welcomes new ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work — we thrive. Compensation: Competitive salary and bonus eligibility; this role is eligible for company vehicle program Work Life Balance: Flexible hybrid work environment, 4-days a week in office #GMFjobs

Lead and mentor SRE team, manage incident response and on-call rotations, define and enforce SLOs, implement observability and automation in Azure cloud environments. | 5-7 years hands-on C# and JavaScript/TypeScript, 5-7 years Microsoft Azure experience, 3-5 years scripting and IaC, experience with container orchestration, CI/CD, incident leadership, and team management. | Job Description Why General Motors Insurance? At General Motors Insurance, we are building an Insurtech business that will reinvent auto insurance. We are fully owned and backed by auto industry leaders, General Motors and GM Financial. This is a truly unique opportunity to join at the foundational stage of a start-up leading the transformation of the auto insurance experience. GM has the largest connected vehicle fleet worldwide. In the US alone, there are currently 9M+ connected GM vehicles on the road and that number is projected to triple in the next 10 years. More than that, the OnStar system currently has access to over 900 data points from the vehicle. This surge in information about vehicles and how they are driven will revolutionize auto insurance. This disruption is backed by the bold GM vision of zero crashes, zero emissions and zero congestion. We are serious about the safety and financial security of our customers. If you are passionate about driving innovation and delivering results in a fast-paced, value-focused environment, General Motors Insurance is looking for you. Position open until filled. Responsibilities About the role: The Site Reliability Engineering Manager provides both technical leadership and strategic direction for building and maintaining highly reliable, scalable, and performant software systems that support critical business products. This role blends hands-on technical capability with people leadership—driving SLO adoption, leading incident management, and partnering closely with product, architecture, and development teams to ensure business continuity and availability. Job Duties • Lead and mentor a team of Site Reliability Engineers, fostering a culture of reliability, learning, and continuous improvement. • Stay hands-on when needed for coding, automating, debugging, and contributing to reliability tools and pipelines. • Define and manage Service Level Objectives (SLOs), Service Level Indicators (SLIs), and error budgets, ensuring alignment with business goals. • Own and maintain the PagerDuty implementation, including supporting teams with on-call scheduling, escalation flows, and incident response processes. • Empower and guide engineers to serve as Incident Commanders during critical events, fostering a ‘you build it, you run it’ culture; support them through post-incident reviews and Root Cause Analyses (RCAs) to drive preventive measures and shared learning. • Collaborate with product and development teams early in the lifecycle to design for operability, scalability, and maintainability. • Implement observability solutions using Azure Monitor, Application Insights, Log Analytics, and integrate CDN/WAF telemetry (Akamai, Azure Front Door; AWS CloudFront as applicable). • Reduce toil by automating operational tasks using scripting languages (PowerShell, Python, JavaScript/TypeScript). • Participate in an on-call rotation to support troubleshooting and communication efforts outside of normal business hours. Qualifications What makes you a dream candidate? • Strong application development knowledge in C# and JavaScript/TypeScript, with solid foundations in software engineering principles, debugging, and performance optimization. • Deep expertise in Microsoft Azure PaaS (App Services, Functions, Databases, Networking) with working knowledge of AWS equivalents. • Familiarity with container orchestration platforms (Azure Kubernetes Service, Kubernetes, Docker). • Strong understanding of disaster recovery, incident management, and security best practices for business-critical applications. • Knowledge of cloud networking (Azure DNS, Virtual Networks, Application Gateway; AWS Route 53, VPC) and CDN/WAF technologies (Akamai, Azure Front Door, AWS CloudFront). • Infrastructure as Code (IaC) principles and tools: Terraform, ARM, Bicep. • CI/CD practices and tooling: Azure DevOps YAML, GitHub Actions, GitOps. • Observability tooling: Azure Monitor, Application Insights, Log Analytics, Prometheus, Grafana. • Code quality and security scanning tools (SonarQube, Checkmarx). • Proven track record of leading and growing engineering teams, including performance management, mentoring, and career development. • Strong collaboration skills—able to influence without authority across product, engineering, and operations teams. • Incident leadership and crisis communication under pressure. • Ability to design and implement SLO/SLI frameworks, manage error budgets, and drive reliability improvements. • Hands-on coding and automation in C#, JavaScript/TypeScript, PowerShell, and Python. • Strong troubleshooting skills in complex, distributed cloud environments. • Experience integrating CDN/WAF monitoring data with cloud observability stacks. • Ability to translate technical reliability metrics into clear business impact statements for executives. • Proven capability to provide operational visibility on environmental health to Senior Leadership, Technology and Business partners • Receptive, approachable teammate, with the ability to positively interact with business partners, technology teams, offshore, and professional services • Strong customer advocate with excellent written and verbal communication skills Experience And Education • 5 – 7 years of hands-on experience with C# and JavaScript/TypeScript in production environments required • 5 – 7 years of hands-on experience in cloud technologies with Microsoft Azure required • 3 – 5 years of hands-on experience with scripting with Bash, Perl, Ruby or Python • 3 – 5 years of experience implementing IaC (Terraform, ARM, Bicep) preferred • 3 – 5 years of experience with Docker Datacenter • 3 – 5 years of hands-on administration experience on Machine Learning platforms • 3 – 5 years of experience in Mesos, AKS/Kubernetes, OpenShift and/or Deis or other such container/platform-as-a-service orchestrator • 3 – 5 years of experience with CI/CD tools and pipelines (Azure DevOps, Github Actions) • Bachelor’s Degree in related field or equivalent experience required • Master’s Degree in related field preferred What We Offer: Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays. Our Culture: Our team members define and shape our culture — an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work — we thrive. Compensation: Competitive salary and bonus eligibility. Work Life Balance: Remote work environment. The base salary range for this role is: USD $115,000 to $213,000 At GM Financial, we strive for equity in all aspects of our business, including pay equity. This is the GM Financial pay range for this job and role level. The exact salary and compensation will vary based on factors like knowledge, skills, experience and education. This role is eligible to participate in performance-based incentive plans. Full-time employees are eligible to participate in health benefits on day one of employment.