National Guard Employment Network
Cybersecurity Governance Manager - Irvine, CA
National Guard Employment Network, Irvine, California, United States, 92713
Job Description
ATTENTION MILITARY AFFILIATED JOB SEEKERS
- Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warriors, and their Caregivers. If you have the required skill set, education requirements, and experience, please click the submit button and follow the next steps. Unless specifically stated otherwise, this role is "On-Site" at the location detailed in the job post.
Through our service brands Hyundai Motor Finance, Genesis Finance, and Kia Finance, Hyundai Capital America offers a wide range of financial products tailored to meet the needs of Hyundai, Genesis, and Kia customers and dealerships. We provide vehicle financing, leasing, subscription, and insurance solutions to over 2 million consumers and businesses. Embodying our commitment to grow, innovate, and diversify, we strive to reimagine the customer and dealer experience and launch innovative new products that broaden our market reach. We believe that success comes from within and are proud to support our team members through skill development and career advancement. Hyundai Capital America is an Equal Opportunity Employer committed to creating a diverse and inclusive culture for our workforce. We are a values-driven company dedicated to supporting both internal and external communities through volunteering, philanthropy, and the empowerment of our Employee Resource Groups. Together, we strive to be the leader in financing freedom of movement.
We Take Care of Our People
Along with competitive pay, as an employee of HCA, you are eligible for the following benefits:
• Medical, Dental and Vision plans that include no-cost and low-cost plan options
• Immediate 401(k) matching and vesting
• Vehicle purchase and lease discounts plus monthly vehicle allowances
• Paid Volunteer Time Off with company donation to a charity of your choice
• Tuition reimbursement
What to Expect
The Cybersecurity Governance Manager plays a critical role in the organization's second line of defense, ensuring policies, governance frameworks, and regulatory adherence in cybersecurity governance, risk and compliance across the organization. This role establishes oversight mechanisms, monitors compliance with industry regulations, and ensures access-related risks are effectively managed. In addition, this role ensures governance and compliance strategies are aligned with business objectives and security standards.
What You Will Do
1. Cybersecurity Governance and Risk Management
• Manage, maintain and enforce security policies, standards and guidelines related to Cybersecurity governance processes.
• Develop, implement, maintain and execute a Cybersecurity Risk Register, Policy Risk Exception Process, and Procedures.
• Conduct risk assessments and impact analyses to identify risks, manage remediations, to ensure compliance across business systems, IT Infrastructure, and network operating environments.
2. Cybersecurity Risk Assessment
• Perform Global Integrated Security Framework (GSIF) assessments, monitor and ensure remediations are following GSIF ISO 27001 standards across cross-functional departments.
• Collaborate with Cybersecurity Risk Management, Cybersecurity Engineering Operations, and IT to ensure security best practices are integrated within each project and system deployment.
3. Cybersecurity Governance and Risk Reporting
• Develop metrics and reporting for senior management and stakeholders that identify security risks and provide actionable insights to address gaps.
• Develop and maintain the governance mechanisms and automation tools track the Risk Register, and compliance status across the organization.
• Develop and maintain dashboards and regular reporting to manage management performance metrics, risk metrics.
Additional Qualifications/Responsibilities
Qualifications
What You Will Bring
• Minimum 5-7 years progressive experience in cybersecurity governance, risk management, or compliance within financial services with a deep understanding of the IT systems.
• Bachelor's degree in Cybersecurity, Information Security, Risk Management or a related field
• Master's degree a plus.
• Certifications such as CISSP, CISM, CRISC, CGEIT, CISA, and ITIL are highly desirable.
• Working knowledge of Cybersecurity risk management frameworks, Governance, Risk, and Compliance process, IT general controls (e.g. asset classification, risk assessments, vulnerability and threat analysis, risk treatment, audit controls and remediation, vendor risk management, and IT risk management & reporting).
• Working knowledge of Information Security & Risk Frameworks including ISO 27001/2, ISO 31000:2009, ISO 27005:2008; NIST Special Publications and Methodologies (e.g. SP800-12, 30, 37, 39, 53,150, 161).
• Working knowledge of California Consumer Privacy Act (CCPA), Gramm-Leach-Bliley Act (GLBA), NYDFS Cybersecurity Regulation, PCI-DSS, FFIEC, SOX, and other relevant laws and regulations.
• Basic understanding of financial regulatory frameworks and cybersecurity best practices.
• Ability to communicate complex security concepts to business leaders and technical teams.
Work Environment
Employees in this class are subject to extended periods of sitting, standing and walking, and using a computer. Work is performed in an office environment.
The posted salary range for this job takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; geographic location, and other business and organizational needs. Successful candidates may be hired anywhere in the salary range based on these factors. It is uncommon to hire candidates at or near the top of the range.
Minimum Salary: $92,500.00 Maximum Salary: $143,500.00
ATTENTION MILITARY AFFILIATED JOB SEEKERS
- Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warriors, and their Caregivers. If you have the required skill set, education requirements, and experience, please click the submit button and follow the next steps. Unless specifically stated otherwise, this role is "On-Site" at the location detailed in the job post.
Through our service brands Hyundai Motor Finance, Genesis Finance, and Kia Finance, Hyundai Capital America offers a wide range of financial products tailored to meet the needs of Hyundai, Genesis, and Kia customers and dealerships. We provide vehicle financing, leasing, subscription, and insurance solutions to over 2 million consumers and businesses. Embodying our commitment to grow, innovate, and diversify, we strive to reimagine the customer and dealer experience and launch innovative new products that broaden our market reach. We believe that success comes from within and are proud to support our team members through skill development and career advancement. Hyundai Capital America is an Equal Opportunity Employer committed to creating a diverse and inclusive culture for our workforce. We are a values-driven company dedicated to supporting both internal and external communities through volunteering, philanthropy, and the empowerment of our Employee Resource Groups. Together, we strive to be the leader in financing freedom of movement.
We Take Care of Our People
Along with competitive pay, as an employee of HCA, you are eligible for the following benefits:
• Medical, Dental and Vision plans that include no-cost and low-cost plan options
• Immediate 401(k) matching and vesting
• Vehicle purchase and lease discounts plus monthly vehicle allowances
• Paid Volunteer Time Off with company donation to a charity of your choice
• Tuition reimbursement
What to Expect
The Cybersecurity Governance Manager plays a critical role in the organization's second line of defense, ensuring policies, governance frameworks, and regulatory adherence in cybersecurity governance, risk and compliance across the organization. This role establishes oversight mechanisms, monitors compliance with industry regulations, and ensures access-related risks are effectively managed. In addition, this role ensures governance and compliance strategies are aligned with business objectives and security standards.
What You Will Do
1. Cybersecurity Governance and Risk Management
• Manage, maintain and enforce security policies, standards and guidelines related to Cybersecurity governance processes.
• Develop, implement, maintain and execute a Cybersecurity Risk Register, Policy Risk Exception Process, and Procedures.
• Conduct risk assessments and impact analyses to identify risks, manage remediations, to ensure compliance across business systems, IT Infrastructure, and network operating environments.
2. Cybersecurity Risk Assessment
• Perform Global Integrated Security Framework (GSIF) assessments, monitor and ensure remediations are following GSIF ISO 27001 standards across cross-functional departments.
• Collaborate with Cybersecurity Risk Management, Cybersecurity Engineering Operations, and IT to ensure security best practices are integrated within each project and system deployment.
3. Cybersecurity Governance and Risk Reporting
• Develop metrics and reporting for senior management and stakeholders that identify security risks and provide actionable insights to address gaps.
• Develop and maintain the governance mechanisms and automation tools track the Risk Register, and compliance status across the organization.
• Develop and maintain dashboards and regular reporting to manage management performance metrics, risk metrics.
Additional Qualifications/Responsibilities
Qualifications
What You Will Bring
• Minimum 5-7 years progressive experience in cybersecurity governance, risk management, or compliance within financial services with a deep understanding of the IT systems.
• Bachelor's degree in Cybersecurity, Information Security, Risk Management or a related field
• Master's degree a plus.
• Certifications such as CISSP, CISM, CRISC, CGEIT, CISA, and ITIL are highly desirable.
• Working knowledge of Cybersecurity risk management frameworks, Governance, Risk, and Compliance process, IT general controls (e.g. asset classification, risk assessments, vulnerability and threat analysis, risk treatment, audit controls and remediation, vendor risk management, and IT risk management & reporting).
• Working knowledge of Information Security & Risk Frameworks including ISO 27001/2, ISO 31000:2009, ISO 27005:2008; NIST Special Publications and Methodologies (e.g. SP800-12, 30, 37, 39, 53,150, 161).
• Working knowledge of California Consumer Privacy Act (CCPA), Gramm-Leach-Bliley Act (GLBA), NYDFS Cybersecurity Regulation, PCI-DSS, FFIEC, SOX, and other relevant laws and regulations.
• Basic understanding of financial regulatory frameworks and cybersecurity best practices.
• Ability to communicate complex security concepts to business leaders and technical teams.
Work Environment
Employees in this class are subject to extended periods of sitting, standing and walking, and using a computer. Work is performed in an office environment.
The posted salary range for this job takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; geographic location, and other business and organizational needs. Successful candidates may be hired anywhere in the salary range based on these factors. It is uncommon to hire candidates at or near the top of the range.
Minimum Salary: $92,500.00 Maximum Salary: $143,500.00