Sr. Cybersecurity Architect
Sr. Cybersecurity Architect
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
What You Will Bring
Minimum 8 years progressive experience in cybersecurity with proven knowledge in cybersecurity architecture or engineering role designing secure systems.
3 years of experience in financial services with a strong understanding of financial threats (e.g. fraud data breaches) and regulations (e.g. PCI DSS Korean SOX GDPR).
Handson experience architecting secure network cloud endpoint and application environments in complex regulated industries.
Proven track record of integrating IAM (e.g. SailPoint CyberArk) and DLP (e.g. Symantec DLP Microsoft Purview) into cybersecurity architectures.
Bachelors degree in computer science Information Security or related field; Masters degree preferred
At least one of the following: CISSP CCSP CISM TOGAF or equivalent.
Cloud security certifications (e.g. AWS Certified Security Azure Security Engineer) are a plus
Technical Skills:
Technical expert with deep experience in financial services a strategic mindset and the ability to align cybersecurity architecture with business objectives.
Expertise in network security (e.g. firewalls IDS/IPS VPNs) cloud security (AWS Azure Google Cloud Oracle Cloud) and endpoint protection (e.g. CrowdStrike).
Proficiency in IAM frameworks (RBAC MFA PAM) and DLP technologies (data classification policy enforcement).
Knowledge of security frameworks such as NIST ISO 27001 and COBIT.
Strong knowledge of SIEM (e.g. Splunk) SOAR and threat intelligence platforms for architectural integration.
Experience with secure software development lifecycles (SDLC) and DevSecOps practices.
Familiarity with automation and scripting (e.g. Python PowerShell Terraform) for infrastructureascode and security orchestration.
Knowledge of financial systems (e.g. core banking platforms payment gateways) and their security requirements.
Soft Skills:
Strong problemsolving skills to address complex architectural challenges.
Excellent communication skills to articulate technical concepts to technical and nontechnical stakeholders.
Strategic thinker with the ability to align cybersecurity architectures with business and regulatory goals.
Preferred
Experience with AIdriven cybersecurity tools (e.g. ReliaQuest GreyMatter Rapid7 etc.) for threat detection and response.
Familiarity with zerotrust architectures and emerging technologies such as SASE or decentralized identity.
Knowledge of data encryption tokenization and secure API design for financial applications.
Experience working with MSSPs to integrate external security services.
Understanding of threat modeling frameworks.
Work Environment
Employees in this class are subject to extended periods of sitting standing and walking vision to monitor and moderate noise levels. Work is performed in an office environment.
The posted salary range for this job takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; geographic location and other business and organizational needs. Successful candidates may be hired anywhere in the salary range based on these factors. It is uncommon to hire candidates at or near the top of the range.
California Privacy Notice
This notice only applies to our applicants who reside in the State of California.
If you have any questions about CCPA regarding California residents or HCA team members please contact the Privacy Team at .
Who We Are
Through our service brands Hyundai Motor Finance Genesis Finance and Kia Finance Hyundai Capital America offers a wide range of financial products tailored to meet the needs of Hyundai Genesis and Kia customers and dealerships. We provide vehicle financing leasing subscription and insurance solutions to over 2 million consumers and businesses. Embodying our commitment to grow innovate and diversify we strive to reimagine the customer and dealer experience and launch innovative new products that broaden our market reach. We believe that success comes from within and are proud to support our team members through skill development and career advancement. Hyundai Capital America is an Equal Opportunity Employer committed to creating a diverse and inclusive culture for our workforce. We are a valuesdriven company dedicated to supporting both internal and external communities through volunteering philanthropy and the empowerment of our Employee Resource Groups. Together we strive to be the leader in financing freedom of movement.
We Take Care of Our People
Along with competitive pay as an employee of HCA you are eligible for the following benefits:
Medical Dental and Vision plans that include nocost and lowcost plan options
Immediate 401(k) matching and vesting
Vehicle purchase and lease discounts plus monthly vehicle allowances
Paid Volunteer Time Off with company donation to a charity of your choice
Tuition reimbursement
What to Expect
The Sr. Cybersecurity Architect will be responsible for designing implementing and maintaining comprehensive cybersecurity architecture to protect the organizations financial systems customer data and infrastructure. Reporting to the Sr. Manager Security Engineering & Architect this role will focus on creating securebydesign solutions for networks cloud environments endpoints and applications with an emphasis on Identity and Access Management (IAM) Data Loss Prevention (DLP) and compliance with financial regulations (e.g. PCI DSS GDPR Korean SOX FFIEC).
What You Will Do
1. Cybersecurity Architecture Design:
Secure Architecture Development: Design and implement scalable resilient cybersecurity architecture for onpremises cloud (e.g. AWS Azure Google Cloud and Oracle Cloud) and hybrid environments ensuring alignment with zerotrust principles and financial security requirements. Support the longterm HCA Cybersecurity Technology Roadmap Strategy.
Network Security: Architect secure network configurations including firewalls (e.g. Palo Alto) intrusion detection/prevention systems (IDS/IPS) and secure gateways to protect financial transactions and data flows.
Cloud Security: Develop cloudnative security architectures leveraging tools like AWS IAM Azure Security Center and native encryption to secure multicloud and hybrid environments.
Endpoint and Application Security: Design endpoint protection (e.g. CrowdStrike Netskope etc.) and secure application architectures integrating with DevSecOps pipelines for financial applications.
2. Integration with IAM and DLP:
IAM Architecture: Collaborate with the IAM team to design and integrate identity and access management solutions (e.g. SailPoint CyberArk) implementing rolebased access control (RBAC) multifactor authentication (MFA) and privileged access management (PAM).
DLP Integration: Work with the DLP team to incorporate data loss prevention controls (e.g. Symantec DLP Microsoft Purview) into architectural designs ensuring protection of sensitive financial data (e.g. PII payment card data) across endpoints networks and cloud.
ZeroTrust Framework: Architect IAM and DLP solutions within a zerotrust model enforcing least privilege and continuous verification for all users devices and applications.
3. Threat Modeling and Risk Management:
Threat Modeling: Conduct threat modeling and risk assessments to identify vulnerabilities in financial systems applications and thirdparty integrations proposing mitigations to reduce risk.
Security Controls: Collaborate with Information Protection Governance team to define and implement security controls based on industry standards (e.g. NIST 80053 CIS Benchmarks ISO 27001) to address financial threats like ransomware phishing and insider fraud.
Penetration Testing Support: Collaborate with penetration testing teams to validate architectural designs and remediate identified weaknesses.
4. Compliance and Regulatory Alignment:
Regulatory Compliance: Ensure cybersecurity architecture meets financial regulations (e.g. PCI DSS GDPR Korean SOX FFIEC NYDFS) through secure design documentation and auditready configurations.
Policy Development: Contribute to the development of cybersecurity policies and standards ensuring architectural designs align with regulatory and organizational requirements.
Vendor Evaluation: Assess thirdparty vendors and Managed Security Service Providers (MSSPs) for compatibility with architectural designs and compliance needs.
5. Collaboration and Innovation:
CrossFunctional Collaboration: Partner with IT Infrastructure and IT Application teams DevOps IAM DLP Security Operations Information Protection Governance and business units to integrate security into digital transformation initiatives such as cloud migrations fintech innovations and core banking systems.
Technology Evaluation: Research and evaluate emerging cybersecurity technologies (e.g. AIdriven threat detection passwordless authentication) to enhance architectural resilience and efficiency.
Automation and Orchestration: Design automated security workflows using tools like SOAR platforms (e.g. Splunk SOAR Palo Alto Cortex) to improve incident response and operational efficiency.
Knowledge Sharing: Mentor junior architects and engineers sharing best practices and fostering a culture of security awareness across the organization.
6. Documentation and Reporting:
Architecture Documentation: Create and maintain detailed architectural diagrams design documents and runbooks to support implementation audits and incident response.
Executive Communication: Present architectural designs risk assessments and recommendations to the Director of Cybersecurity CISO and senior leadership articulating business impacts.
Metrics and Validation: Develop metrics to validate architectural effectiveness (e.g. threat detection coverage compliance adherence) and drive continuous improvement.
Required Experience:
Senior IC
Employment Type
Full-Time
