This site uses cookies. To find out more, see our Cookies Policy

Sr. Analyst, Information Security Risk Mgmt in Newport Beach, CA at Hyundai Capital America

Date Posted: 6/19/2018

Job Snapshot

Job Description

General Summary:

The Sr. Analyst, Information Security Risk Mgmt assists in internal/external risk assessment processes, vendor assessment programs, identity and access reviews/certifications, policy exceptions, and vulnerability management. Aligns InfoSec risk management activities with business objectives and risk tolerance; identifies and mitigates potential risks through risk analysis; and supports initiatives for HCA global standards and compliance. This position excels at building stakeholder partnership, sound judgment, and learning agility.

Essential Job Function:


1.     Assist in Third Party / Vendor Information Security Risk Assessment programs and initiatives to support business objectives and manage risks to an acceptable level.

2.     Execute Identity and Access management reviews and certifications to satisfy compliance requirements and manage access control risks to an acceptable level.

3.     Execute Risk Management initiatives including the design and integration of solutions for threat management (including monitoring, detection, and controls of threats and vulnerabilities).

4.     Execute Risk Assessments and Analysis initiatives including the design and integration of solutions for risk assessments (internal or external assessments).

5.     Execute programs and processes for Information Security Policy Exceptions to manage risks across the infrastructure and information systems to an acceptable level.

6.     Perform all other duties as assigned.

Knowledge and Skills:


•         Information Risk Management and Compliance tasks and knowledge (e.g. asset classification, risk assessments, vulnerability and threat analysis, risk treatment, audit controls and remediation, vendor risk management, identity and access management, and risk monitoring & reporting.

•         Information Security & Risk Frameworks including ISO 27001/2, ISO 31000:2009, ISO 27005:2008; NIST Special Publications and Methodologies (e.g. SP800-12, 30, 37, 39, 150, 161).

•         Gramm-Leach-Bliley Act (GLBA), New York Department of Financial Services (NYDFS), Federal Financial Institutions Examination Council (FFIEC), and other regulatory requirements.

•         Inter-Department Collaboration, Business Requirement Alignment Orchestration, and Business Process Mapping.

•         Excellent verbal and written communication skills with strong ability to present persuasive ideas.

Education and Experience:


•         BS degree in Computer Science or relevant information security experience.

•         4 – 6 years progressive experience in information security.

•         6 – 8 years progressive experience in information technology/security overall.

•         CISSP, CISM, CISA, ITIL, or other related information security certification preferred.

•         Experience in medium size companies preferred.

•         Financial industry experience preferred.

Physical Requirements and Working Condition:


Employees in this class are subject to extended periods of sitting, standing and walking, vision to monitor and moderate noise levels. Work is performed in an office environment.

Hyundai is an Equal Opportunity Employer  M/F/D/V 

Primary Location:  United States-California-Newport Beach
Work Locations:  
Headquarters 2 (HCA_HQ2)
4000 MacArthur Blvd. Ste 1000 West Tower
Newport Beach, 92660

Job:  Information Protection
Job Type:  Regular
Job Level:  Individual Contributor
Schedule:  Full-time
Job Posting:  Jun 18, 2018