Lead the design, implementation, and operation of enterprise PKI and secrets management systems, focusing on security architecture and cryptographic systems while collaborating with teams and mentoring.
Description
The Role:
We're looking for a self-driven Cyber Security Engineer to lead the design, implementation, and operation of our enterprise PKI and secrets management systems. This critical role shapes how trust and secure access are established across our platforms. You should thrive in a fast-paced, agile environment-comfortable wearing many hats, adapting quickly, and embracing new technologies as needed.
What You'll Do: • Architecting and operating scalable, secure PKI and secrets management services. • Leading design decisions that shape internal trust models and access to sensitive data. • Developing and maintaining policies, processes, and controls for key and secrets lifecycle management. • Collaborating across engineering, infrastructure, and leadership teams to deliver robust cryptographic systems. • Mentoring team members and driving technical excellence across the organization. • Advising leadership on long-term security architecture strategies. • Participating in on-call rotations for global, critical services.
What You'll Need: • Bachelor's degree in Computer Science, Mathematics, Physics, or equivalent experience. • Proven experience in enterprise security engineering or Site Reliability Engineering (SRE). • Hands-on experience with secrets management platforms (e.g., HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, BeyondTrust).
• Strong understanding of public-key cryptography, PKI, and cryptographic protocols. • Experience designing and operating production-level PKI systems. • Proficiency with infrastructure-as-code tools (e.g., Terraform). • Familiarity with cloud platforms (AWS, GCP, Azure). • Experience with containerization, orchestration, and CI/CD workflows. • Strong communication skills and ability to present technical concepts to leadership. • Solid threat modeling and security architecture skills.
Preferred Qualifications: • HashiCorp Vault certification or demonstrable expert-level proficiency. • Deep expertise in HashiCorp Vault and Terraform. • Experience scaling backend systems and implementing secure hardware (HSM, TPM, TEE, etc.). • Familiarity with modern authentication protocols (OAuth 2.0, OIDC, WebAuthn/FIDO2, Zero Trust). • Experience with remote attestation and secure enclave technologies. • Proficiency in Go, Rust, Python, or Node.js. • Passion for security, attention to detail, and a drive for correctness.
GM DOES NOT PROVIDE IMMIGRATION-RELATED SPONSORSHIP FOR THIS ROLE. PLEASE DO NOT APPLY FOR THIS ROLE IF YOU WILL NEED GM IMMIGRATION SPONSORSHIP (e.g., H-1B, TN, STEM OPT, etc.) NOW OR IN THE FUTURE.
• This job may be eligible for relocation benefits.
About GM
Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.
Why Join Us
We believe we all must make a choice every day - individually and collectively - to drive meaningful change through our words, our deeds and our culture. Every day, we want every employee to feel they belong to one General Motors team.
Total Rewards | Benefits Overview
From day one, we're looking out for your well-being-at work and at home-so you can focus on realizing your ambitions. Learn how GM supports a rewarding career that rewards you personally by visiting Total Rewards resources.
Non-Discrimination and Equal Employment Opportunities (U.S.)
General Motors is committed to being a workplace that is not only free of unlawful discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that providing an inclusive workplace creates an environment in which our employees can thrive and develop better products for our customers.
All employment decisions are made on a non-discriminatory basis without regard to sex, race, color, national origin, citizenship status, religion, age, disability, pregnancy or maternity status, sexual orientation, gender identity, status as a veteran or protected veteran, or any other similarly protected status in accordance with federal, state and local laws.
We encourage interested candidates to review the key responsibilities and qualifications for each role and apply for any positions that match their skills and capabilities. Applicants in the recruitment process may be required, where applicable, to successfully complete a role-related assessment(s) and/or a pre-employment screening prior to beginning employment. To learn more, visit How we Hire.
Accommodations
General Motors offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us [email protected] or call us at 800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.
The Role:
We're looking for a self-driven Cyber Security Engineer to lead the design, implementation, and operation of our enterprise PKI and secrets management systems. This critical role shapes how trust and secure access are established across our platforms. You should thrive in a fast-paced, agile environment-comfortable wearing many hats, adapting quickly, and embracing new technologies as needed.
What You'll Do: • Architecting and operating scalable, secure PKI and secrets management services. • Leading design decisions that shape internal trust models and access to sensitive data. • Developing and maintaining policies, processes, and controls for key and secrets lifecycle management. • Collaborating across engineering, infrastructure, and leadership teams to deliver robust cryptographic systems. • Mentoring team members and driving technical excellence across the organization. • Advising leadership on long-term security architecture strategies. • Participating in on-call rotations for global, critical services.
What You'll Need: • Bachelor's degree in Computer Science, Mathematics, Physics, or equivalent experience. • Proven experience in enterprise security engineering or Site Reliability Engineering (SRE). • Hands-on experience with secrets management platforms (e.g., HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, BeyondTrust).
• Strong understanding of public-key cryptography, PKI, and cryptographic protocols. • Experience designing and operating production-level PKI systems. • Proficiency with infrastructure-as-code tools (e.g., Terraform). • Familiarity with cloud platforms (AWS, GCP, Azure). • Experience with containerization, orchestration, and CI/CD workflows. • Strong communication skills and ability to present technical concepts to leadership. • Solid threat modeling and security architecture skills.
Preferred Qualifications: • HashiCorp Vault certification or demonstrable expert-level proficiency. • Deep expertise in HashiCorp Vault and Terraform. • Experience scaling backend systems and implementing secure hardware (HSM, TPM, TEE, etc.). • Familiarity with modern authentication protocols (OAuth 2.0, OIDC, WebAuthn/FIDO2, Zero Trust). • Experience with remote attestation and secure enclave technologies. • Proficiency in Go, Rust, Python, or Node.js. • Passion for security, attention to detail, and a drive for correctness.
GM DOES NOT PROVIDE IMMIGRATION-RELATED SPONSORSHIP FOR THIS ROLE. PLEASE DO NOT APPLY FOR THIS ROLE IF YOU WILL NEED GM IMMIGRATION SPONSORSHIP (e.g., H-1B, TN, STEM OPT, etc.) NOW OR IN THE FUTURE.
• This job may be eligible for relocation benefits.
About GM
Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all.
Why Join Us
We believe we all must make a choice every day - individually and collectively - to drive meaningful change through our words, our deeds and our culture. Every day, we want every employee to feel they belong to one General Motors team.
Total Rewards | Benefits Overview
From day one, we're looking out for your well-being-at work and at home-so you can focus on realizing your ambitions. Learn how GM supports a rewarding career that rewards you personally by visiting Total Rewards resources.
Non-Discrimination and Equal Employment Opportunities (U.S.)
General Motors is committed to being a workplace that is not only free of unlawful discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that providing an inclusive workplace creates an environment in which our employees can thrive and develop better products for our customers.
All employment decisions are made on a non-discriminatory basis without regard to sex, race, color, national origin, citizenship status, religion, age, disability, pregnancy or maternity status, sexual orientation, gender identity, status as a veteran or protected veteran, or any other similarly protected status in accordance with federal, state and local laws.
We encourage interested candidates to review the key responsibilities and qualifications for each role and apply for any positions that match their skills and capabilities. Applicants in the recruitment process may be required, where applicable, to successfully complete a role-related assessment(s) and/or a pre-employment screening prior to beginning employment. To learn more, visit How we Hire.
Accommodations
General Motors offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us [email protected] or call us at 800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.
Top Skills
AWS
Aws Secrets Manager
Azure
Azure Key Vault
GCP
Go
Hashicorp Vault
Node.js
Pki
Python
Rust
Secrets Management
Terraform
General Motors Los Angeles, California, USA Office
Los Angeles, CA, United States
General Motors Pasadena, California, USA Office
General Motors Advanced Design and Innovation Campus Office
The teams at the General Motors Advanced Design and Innovation campus in Pasadena, CA, are charged with exploring future transportation, technology and consumer trends and creating conceptual mobility solutions that inspire and inform program teams across the company.
Similar Jobs at General Motors
Automotive • Big Data • Information Technology • Robotics • Software • Transportation • Manufacturing
The role involves leading data engineering initiatives, designing scalable data solutions, optimizing data pipelines, and collaborating across teams to enhance data quality and efficiency.
Top Skills:
AWSAzureBig Data ProcessingDatabricksEtl FrameworksGCPKafkaKubernetesNoSQLPythonScalaSnowflakeSparkSQL
Automotive • Big Data • Information Technology • Robotics • Software • Transportation • Manufacturing
The Senior Controls Engineer improves production processes using automation technology, troubleshoots equipment, and manages projects for enhancement and efficiency.
Top Skills:
Ethernet Communication NetworksFanuc RoboticsHmisSafety Programmable Logic Controllers (Plcs)Variable Frequency Drives (Vfds)
Automotive • Big Data • Information Technology • Robotics • Software • Transportation • Manufacturing
The Senior Software Performance Engineer will optimize software performance, implement solutions for better scalability and stability, conduct performance tests, and mentor junior engineers.
Top Skills:
AzureBlazemeterData DogDockerDynatraceGrafanaJavaJavaScriptJmeterK6KubernetesLoadrunnerNeoloadPython
What you need to know about the Los Angeles Tech Scene
Los Angeles is a global leader in entertainment, so it’s no surprise that many of the biggest players in streaming, digital media and game development call the city home. But the city boasts plenty of non-entertainment innovation as well, with tech companies spanning verticals like AI, fintech, e-commerce and biotech. With major universities like Caltech, UCLA, USC and the nearby UC Irvine, the city has a steady supply of top-flight tech and engineering talent — not counting the graduates flocking to Los Angeles from across the world to enjoy its beaches, culture and year-round temperate climate.
Key Facts About Los Angeles Tech
- Number of Tech Workers: 375,800; 5.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Snap, Netflix, SpaceX, Disney, Google
- Key Industries: Artificial intelligence, adtech, media, software, game development
- Funding Landscape: $11.6 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Strong Ventures, Fifth Wall, Upfront Ventures, Mucker Capital, Kittyhawk Ventures
- Research Centers and Universities: California Institute of Technology, UCLA, University of Southern California, UC Irvine, Pepperdine, California Institute for Immunology and Immunotherapy, Center for Quantum Science and Engineering
