Hyundai Capital Canada ยท 2 weeks ago
Sr. Cybersecurity Risk Manager
United States-California-Irvine
Full-time
Onsite
Senior Level, Lead/Staff
$132K/yr - $205K/yr
8+ years expHyundai Capital America is a financial services company offering a range of products tailored for Hyundai, Genesis, and Kia customers. The Sr. Cybersecurity Risk Manager will oversee the internal security risk strategy, proactively identifying and mitigating risks that could impact business operations and compliance with regulatory requirements.
AutomotiveFinanceFinancial Services
Responsibilities
Develop and executive internal security risk assessments, threat modeling, and impact analyses to identify vulnerabilities across internal leveraged solutions, systems, applications, and processes including guiding and supporting team to ensure effective collaboration for assigned projects and work efforts
Develop, execute and enhance a cybersecurity risk management framework aligned with business objectives and regulatory requirements
Establish and maintain security risk metrics by tracking Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs), along with reporting mechanisms to communicate cybersecurity effectiveness and provide actionable insights to executives and stakeholders
Manage governance around internal cybersecurity risks, ensuring compliance with internal security policies and regulatory requirements
Qualification
Required
Minimum 8 years progressive experience in cybersecurity governance, risk management, or compliance with a deep understanding of security risk management, system development life cycle (SDLC), and the evolving threat landscape ensuring the internal security risk strategy is resilient and forward-thinking
Bachelor's degree in finance, business or related discipline
Strong knowledge of Information Security risk management frameworks, Governance, Risk, and Compliance process, IT general controls (e.g. asset classification, risk assessments, vulnerability and threat analysis, risk treatment, audit controls and remediation, vendor risk management, and IT risk management & reporting)
Strong knowledge of Information Security & Risk Frameworks including ISO 27001/2, ISO 310002018, ISO 270052022; NIST Special Publications and Methodologies (e.g. SP800-12, 30, 37, 39, 53, 150, 161)
Working knowledge of California Consumer Privacy Act (CCPA), Gramm-Leach-Bliley Act (GLBA), NYDFS Cybersecurity Regulation, PCI-DSS, FFIEC, SOX, and other relevant laws and regulations
Strong understanding of financial regulatory frameworks and cybersecurity best practices
Intermediate skills with Microsoft Office Suite, including Word, Excel and PowerPoint
Ability to communicate complex security concepts to business leaders and technical teams
Proven ability to assess risk, interpret security findings, and provide strategic guidance
Exceptional attention to detail and quality
Ability to work autonomously and in a team environment
Excellent verbal and written communication, including presentation skills
Excellent interpersonal skills to successfully collaborate with cross functional departments
Strong orientation toward results coupled with reputation for integrity, creativity and good judgment
Must have the ability to challenge, when appropriate, existing practices
Preferred
Financial services industry preferred
Certifications such as CISSP, CISM, CRISC, CGEIT, and ITIL are highly desirable
Benefits
Medical, Dental and Vision plans that include no-cost and low-cost plan options
Immediate 401(k) matching and vesting
Vehicle purchase and lease discounts plus monthly vehicle allowances
Paid Volunteer Time Off with company donation to a charity of your choice
Tuition reimbursement
Company
Hyundai Capital Canada
Hyundai Capital Canada provides auto finance and private finance services.
51-200 employees
Funding
Current Stage
Growth StageCompany data provided by crunchbase