Sr. Cybersecurity Governance Associate

Who We Are

Through our service brands Hyundai Motor Finance Genesis Finance and Kia Finance Hyundai Capital America offers a wide range of financial products tailored to meet the needs of Hyundai Genesis and Kia customers and dealerships. We provide vehicle financing leasing subscription and insurance solutions to over 2 million consumers and businesses. Embodying our commitment to grow innovate and diversify we strive to reimagine the customer and dealer experience and launch innovative new products that broaden our market reach. We believe that success comes from within and are proud to support our team members through skill development and career advancement. Hyundai Capital America is an Equal Opportunity Employer committed to creating a diverse and inclusive culture for our workforce. We are a values-driven company dedicated to supporting both internal and external communities through volunteering philanthropy and the empowerment of our Employee Resource Groups. Together we strive to be the leader in financing freedom of movement.

We Take Care of Our People

Along with competitive pay as an employee of HCA you are eligible for the following benefits:

Medical Dental and Vision plans that include no-cost and low-cost plan options

Immediate 401(k) matching and vesting

Vehicle purchase and lease discounts plus monthly vehicle allowances

Paid Volunteer Time Off with company donation to a charity of your choice

Tuition reimbursement

What to Expect

The Sr. Cybersecurity Governance Associate is responsible for performing and implementing cybersecurity governance controls that protect the organizations assets align with regulatory requirements and support business objectives. This role involves collaboration with internal and external stakeholders to ensure cybersecurity strategies align with business objectives.

What You Will Do

1. Develop and maintain cybersecurity governance policies standards and guideline procedures to ensure resilient security posture and to ensure polices align with regulatory requirements.

2. Collaborate with cybersecurity operations IT and internal and external stakeholders to ensure cybersecurity requirements are integrated into IT and business processes.

3. Perform risk assessments and reviews of cybersecurity governance processes to identify risks and ensure compliance with cybersecurity controls.

4. Partner with the senior manager on cybersecurity awareness initiatives and training for employees and contractors to ensure compliance with policies and best practices.

What You Will Bring

Minimum 4-6 years progressive experience in cybersecurity governance risk management audit or compliance within financial services

Bachelors degree in Cybersecurity Information Security Risk Management or related field. Certifications such as Entry Level Certified Cybersecurity (CC) Cybersecurity Governance Risk and Compliance (CGRC) System Security Certified Practitioner (SSCP) CRISC CGEIT CISA and ITIL are highly desirable.

Working Knowledge of Information Security risk management frameworks Governance Risk and Compliance process IT general controls (e.g. user access asset classification risk assessments vulnerability and threat analysis risk treatment audit controls and remediation vendor risk management and IT risk management & reporting).

Working knowledge of Information Security & Risk Frameworks including ISO 27001/2 ISO

31000:2009 ISO 27005:2008; NIST Special Publications and Methodologies (e.g. SP800-12 30

).

Excellent verbal and written communication skills with demonstrated ability to collaborate with internal and external stakeholders.

Intermediate skills with Microsoft Office Suite including Word Excel and PowerPoint.

Proven ability to assess risk interpret security findings and provide strategic guidance.

Work Environment

Employees in this class are subject to extended periods of sitting standing and walking vision to monitor and moderate noise levels. Work is performed in an office environment.

The posted salary range for this job takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; geographic location and other business and organizational needs. Successful candidates may be hired anywhere in the salary range based on these factors. It is uncommon to hire candidates at or near the top of the range.

California Privacy Notice

This notice only applies to our applicants who reside in the State of California.

The latest version of our Privacy Policy can be found here. This Privacy Policy provides you with notice at or before the point of collection about the categories of personal information to be collected from you the purposes for which your personal information is collected or used and whether that information is sold or shared so that you can exercise meaningful control over our use of your personal information. We are providing this notice to comply with the California Consumer Privacy Act of 2018 as amended as amended by the California Privacy Rights Act of 2020 (CCPA).

If you have any questions about CCPA regarding California residents or HCA team members please contact the Privacy Team at .