Connect with us

Hi, what are you looking for?


Management & Strategy

GM Appoints Chief Product Cybersecurity Officer

Jeffrey Massimilla has been appointed chief product cybersecurity officer of General Motors, the carmaker announced Tuesday.

Jeffrey Massimilla has been appointed chief product cybersecurity officer of General Motors, the carmaker announced Tuesday.

Before being named GM’s first cybersecurity chief, Massimilla held a couple of management roles within the division responsible for the company’s infotainment systems. Most recently, he held the role of director of global validation.

Massimilla was selected to lead the company’s cybersecurity efforts because he was the best candidate for the job, GM told SecurityWeek.

GM and OnStar, the subsidiary responsible for vehicle security and safety, and navigation systems, are actively working on addressing ever-evolving data security issues, the company said.

“[We] have increased our focus and intensity to combat these risks by forming one integrated organization, Vehicle and Vehicle Services Cybersecurity which is responsible for cybersecurity related to the vehicle and vehicle connected services,” GM said in an emailed statement. “This team will utilize our internal experts and work with outside specialists, to develop and implement protocols and strategies to reduce the risks associated with cybersecurity threats. In addition, we are actively engaged in industry-wide efforts, like those of SAE International, to address vehicle security issues and develop industry standards that can be applied in the future.”

The fact that GM has appointed a cybersecurity leader is not surprising considering that security researchers and even lawmakers have been putting pressure on car makers to ensure that the software systems installed on vehicles can’t be hacked.

In June, Target Corp. announced that it had hired away GM’s CISO and information technology risk officer Brad Maiorino who took the role as senior vice president and chief information security officer at Target.

Advertisement. Scroll to continue reading.

Last year at the Def Con security conference, researchers Charlie Miller and Chris Valasek demonstrated that they could hack modern cars and manipulate steering, acceleration, safety sensors and other components.

In August, a group of security researchers launched an initiative called “I am the Cavalry” in an effort to convince automakers to implement security programs aimed at making cars more resilient to cyberattacks.

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

CISO Strategy

SecurityWeek spoke with more than 300 cybersecurity experts to see what is bubbling beneath the surface, and examine how those evolving threats will present...

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...

CISO Conversations

In this issue of CISO Conversations we talk to two CISOs about solving the CISO/CIO conflict by combining the roles under one person.

CISO Strategy

Security professionals understand the need for resilience in their company’s security posture, but often fail to build their own psychological resilience to stress.

Management & Strategy

Industry professionals comment on the recent disruption of the Hive ransomware operation and its hacking by law enforcement.

Management & Strategy

Tens of cybersecurity companies have announced cutting staff over the past year, in some cases significant portions of their global workforce.


Twenty-one cybersecurity-related M&A deals were announced in December 2022.