AppSec Jobs
← Back to all jobs

Credit Acceptance

Security Operations Engineer II

United StatesWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Credit Acceptance

Credit Acceptance Corporation (CACC) is an auto finance company founded in 1972 and headquartered in Southfield, Michigan. The company specializes in providing financing solutions for credit-challenged consumers through a nationwide network of automobile dealer-partners. By managing credit risk, funding, and loan servicing, Credit Acceptance enables dealers to sell vehicles to high-risk buyers, aiming to improve access to vehicle financing regardless of credit history. The company offers two main programs: the Portfolio Program, which advances money to dealers in exchange for servicing consumer loans, and the Purchase Program, which buys consumer loans directly from dealers. Additional services include funding, receivables management, collections, sales training, and marketing support. Credit Acceptance has a strong corporate culture focused on inclusion and community support, engaging in various volunteer efforts and environmental initiatives. It is recognized as one of the largest used car finance companies in the nation.

Industry

financial services

Employees

2,500

271 engineers

Revenue

$2.3B

Website

Visit →

Security at Credit Acceptance

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

Stated AppSec Mission: "Secure by design, compliant by default"– LinkedIn profile, Christopher Gerg. Risk Philosophy: "We depend on secure information technology"– Credit Acceptance (Investor News Release). Developer enablement and specific pain points are not publicly available.

Security Team

Key Leader: Christopher Gerg, Product Security Manager. Active Job Postings: 2 (Security Operations Engineer II). Team size and reporting lines are not publicly available.

Key Initiatives

Security Champions Program: No Evidence Found. "Shift Left" in Practice: No Evidence Found. Vulnerability Management and Secure SDLC artifacts are not publicly available.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.