Who We Are
Through our service brands Hyundai Motor Finance, Genesis Finance, and Kia Finance, Hyundai Capital America offers a wide range of financial products tailored to meet the needs of Hyundai, Genesis, and Kia customers and dealerships. We provide vehicle financing, leasing, subscription, and insurance solutions to over 3 million consumers and businesses. Embodying our commitment to grow, innovate, and diversify, we strive to reimagine the customer and dealer experience and launch innovative new products that broaden our market reach. We believe that success comes from within and are proud to support our team members through skill development and career advancement. Hyundai Capital America is an Equal Opportunity Employer committed to creating a diverse and inclusive culture for our workforce. We are a values-driven company dedicated to supporting both internal and external communities through volunteering, philanthropy, and the empowerment of our Employee Resource Groups. Together, we strive to be the leader in financing freedom of movement.
We Take Care of Our People
Along with competitive pay, as an employee of HCA, you are eligible for:
- Medical, dental, and vision plans with no-cost and low-cost options
- Annual employer HSA contribution
- 401(k) matching and immediate vesting
- Vehicle purchase and lease discounts, plus monthly vehicle allowances by job level - Manager / Sr. Manager: $600
- 100% employer-paid life and disability insurance
- No-cost health and wellbeing programs, including a gym benefit
- Six weeks of paid parental leave
- Paid Volunteer Time Off, plus a company donation to a charity of your choice
What to Expect
The Senior Cybersecurity Risk Manager leads the organization’s security risk management strategy in a rapidly evolving threat landscape. This role oversees the internal security risk posture by proactively identifying, assessing, and mitigating risks that may impact business operations, financial stability, and regulatory compliance. The position also supports the evaluation of third‑party vendor and partner security risks to ensure alignment with cybersecurity policies, regulatory requirements, and risk mitigation strategies.
What You Will Do
- Develop and executive internal security risk assessments, threat modeling, and impact analyses to identify vulnerabilities across internal leveraged solutions, systems, applications, and processes including guiding and supporting team to ensure effective collaboration for assigned projects and work efforts
- Develop, execute and enhance a cybersecurity risk management framework aligned with business objectives and regulatory requirements
- Establish and maintain security risk metrics by tracking Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs), along with reporting mechanisms to communicate cybersecurity effectiveness and provide actionable insights to executives and stakeholders
- Manage governance around internal cybersecurity risks, ensuring compliance with internal security policies and regulatory requirements
Qualifications
What You Will Bring
- Minimum of 8 years in progressive cybersecurity governance, risk management, or compliance roles
- Bachelor’s degree in finance, business or related discipline
- Strong expertise in information security and risk management, including GRC processes and IT general controls such as asset classification, risk assessments, vulnerability and threat analysis, risk treatment, audit remediation, vendor risk management, IT risk reporting, SDLC, and the evolving threat landscape
- Proficiency in applying industry‑recognized security and risk frameworks, including ISO 27001/27002, ISO 31000:2018, ISO 27005:2022, and NIST Special Publications and methodologies (e.g., SP 800‑12, 30, 37, 39, 53, 150, 161)
- Working knowledge of California Consumer Privacy Act (CCPA), Gramm-Leach-Bliley Act (GLBA), NYDFS Cybersecurity Regulation, PCI-DSS, FFIEC, SOX, and other relevant laws and regulations
- Strong understanding of financial regulatory frameworks and cybersecurity best practices
- Ability to communicate complex security concepts and provide strategic guidance to business leaders and technical teams
- Strong attention to detail and quality, with a results‑driven mindset and a reputation for integrity, creativity, and sound judgment
- Ability to work effectively both independently and collaboratively, with excellent verbal, written, interpersonal, and presentation skills to partner successfully across cross‑functional teams
- Financial services industry preferred
- CISSP, CISM, CRISC, CGEIT, and ITIL certifications are highly desirable
Work Environment
Employees in this class are subject to extended periods of sitting, standing, and walking, vision to monitor and moderate noise levels. Work is performed in an at home and office environment.
The posted salary range for this job takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; geographic location, and other business and organizational needs. Successful candidates may be hired anywhere in the salary range based on these factors. It is uncommon to hire candidates at or near the top of the range.
California Privacy Notice
This notice only applies to our applicants who reside in the State of California.
The latest version of our Privacy Policy can be found here. This Privacy Policy provides you with notice, at or before the point of collection, about the categories of personal information to be collected from you, the purposes for which your personal information is collected or used, and whether that information is sold or shared, so that you can exercise meaningful control over our use of your personal information. We are providing this notice to comply with the California Consumer Privacy Act of 2018, as amended as amended by the California Privacy Rights Act of 2020 (“CCPA”).
If you have any questions about CCPA regarding California residents or HCA team members, please contact the Privacy Team at Privacy2@hcs.com.
out CCPA regarding California residents or HCA team members, please contact the Privacy Team at Privacy2@hcs.com.
