×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security

Security Strategy and Risk Management HOD

Job in Irvine, Orange County, California, 92713, USA
Listing for: Hyundai Autoever America
Full Time position
Listed on 2025-12-09
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security
Job Description & How to Apply Below
Position: 10393 - Security Strategy and Risk Management HOD

Company Overview

Hyundai Auto Ever America (HAEA), the dynamic IT powerhouse behind Hyundai Motor Corporation, a Fortune 500 global leader in the automotive industry. As a key affiliate, we provide cutting‑edge IT services and support to top brands including Kia, Genesis, Hyundai Translead, Hyundai Mobis, Hyundai Capital, and Glovis.

HAEA offers a truly global and collaborative environment. Here, you’ll drive innovation, boost operational efficiency, and help shape the future of mobility for the Hyundai Motor Group.

At HAEA, we understand that IT is the cornerstone of today’s fast‑evolving digital world. By uniting all IT resources under one roof, we deliver consistent, top‑quality solutions while serving as the crucial information link between Hyundai’s Global Headquarters and North American operations.

If you’re passionate about technology and eager to make a real impact at a world‑class company, Hyundai Auto Ever America is the place to grow your career. Join us and be part of the transformation that’s driving the future of automotive innovation.

What You Will Be Doing
  • Risk Governance & GRC Operations
    • Lead enterprise‑wide risk assessment, risk issue management, and risk exception management to ensure ongoing visibility and treatment of information security and operational risks.
    • Maintain and enhance risk management frameworks aligned with industry best practices (NIST, ISO, etc).
    • Deliver insightful, data‑driven risk reporting to senior leadership, governance bodies, and business units and fellow heads of department.
  • Compliance & Audit Management
    • Oversee the Information Security compliance and control assurance program, ensuring alignment with regulatory requirements and industry frameworks (ISO 27001, SOC 2, NIST, PCI DSS, etc.).
    • Lead coordination of internal and external audits, assessments, and certification processes.
    • Partner with Legal, Privacy, and other control functions to ensure controls are consistently implemented and effectively.
  • Third-Party Risk Management
    • Lead the Third-Party Risk Management (TPRM) program, utilizing a risk‑based due diligence, ongoing monitoring, and remediation process.
    • Collaborate with Procurement, Legal, and business stakeholders to ensure integration of vendor risk management into the enterprise risk framework.
  • Policy, Standards & Governance
    • Oversee creation, governance, maintenance, and communication of Information Security policies, standards, and procedures.
    • Manage policy exceptions, ensuring risk‑aware and consistent decision‑making aligned with regulatory and corporate expectations.
  • Information Security Training & Awareness
    • Direct the Information Security Training and Awareness program, promoting a strong security culture throughout the organization.
    • Develop metrics and campaigns to measure awareness effectiveness and employee engagement.
  • Security Strategy Development & Execution
    • Partner with the CISO to define and maintain the Information Security strategic roadmap, ensuring alignment with business goals, customer expectations, and risk priorities.
    • Drive annual and multi‑year planning, capability development, and maturity improvement initiatives.
    • Translate strategy into clear programs, timelines, milestones, and measurable outcomes.
  • Budget & Financial Management
    • Lead budget planning, forecasting, tracking, and optimization for the full Information Security organization.
    • Ensure financial transparency and cost‑efficiency across tools, services, staffing, and initiatives.
  • Resource Planning & Workforce Strategy
    • Oversee resource and capacity planning across global security teams, ensuring proper allocation of FTEs, contractors, and service providers.
    • Partner with HR and Talent teams to shape hiring strategies, workforce development, and organizational design.
  • KPI, Metrics & Service Delivery Monitoring
    • Develop and maintain dashboards and reporting structures for Key Performance Indicators (KPIs), Key Risk Indicators (KRIs), and OKRs across the Information Security program.
    • Ensure accurate Customer Business Unit (CBU) service delivery monitoring, SLA performance, and operational effectiveness assessments.
    • Provide executive‑level reporting that enables informed decision‑making and…
    • To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
    (If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search