IT Security Architect

At Kia, we’re creating award-winning products and redefining what value means in the automotive industry. It takes a special group of individuals to do what we do, and we do it together. Our culture is fast-paced, collaborative, and innovative. Our people thrive on thinking differently and challenging the status quo. We are creating something special here, a culture of learning and opportunity, where you can help Kia achieve big things and most importantly, feel passionate and connected to your work every day.

Kia provides team members with competitive benefits including premium paid medical, dental and vision coverage for you and your dependents, 401(k) plan matching of 100% up to 6% of the salary deferral, and paid time off. Kia also offers company lease and purchase programs, company-wide holiday shutdown, paid volunteer hours, and premium lifestyle amenities at our corporate campus in Irvine, California.

Status

Exempt

Summary

The IT Security Architect is responsible for protecting Kia America (KUS) and affiliated companies from cyber threats and carrying out various administrative and technical preventive measures. This important role will support affiliated companies, develop policies, and conduct security assessments. This role will be responsible for coordinating with affiliate IT or security organizations, designing and implementing security controls and measures, and assisting with overall security matters. This role also works to align Kia America security strategy with the Kia global and Kia North America strategy.

Major Responsibilities

1st Priority - 20%

Develops security policies, standards, procedures, and education programs for affiliated companies across Kia North America. It includes coordinating regular updates and ensuring employees and contractors are aware of them. This also includes coordinating alignment with global Information Security policies and standards.

2nd Priority - 20%
Supports security risk management activities including project risk assessments, vendor assessments and scheduling of penetration tests. Works with IT service provider to perform most of these tasks and ensure the results are timely and of high quality.

3rd Priority - 20%
Conducts investigations and creates detailed reports on security threats and incidents. Recommends solutions to executive leadership as required and leads related team members and partners to a resolution, helping them understand why measures need to be put in place. 

4th Priority - 20%
Stays up-to-date with the latest trends and advancements in security technology, regulations, and industry best practices. Continually updates security plans, architecture, threats, vulnerabilities, and mitigation plans to ensure Kia’s policies and technology are keeping pace with developing technology and threats.

5th Priority - 20%
Provides information security consulting services to key stakeholders across all business units and partners.

Education/Certification

• Bachelor’s degree in Computer Science, Information Technology, or a related field required.
• Master’s degree preferred.
• Certification(s) in cyber security (CISSP, CEH, CISA, CISM, or equivalent) preferred
   

Overall Experience

• 5+ years of cyber security experience in an organization with mature security processes in a related field required.

Directly Related Experience

• Fluency in both English and Korean required.
• In-depth knowledge and practical experience with various IT and security systems
• Familiar with security related regulations and compliance requirements
• Strong understanding of security frameworks and standards (e.g., NIST, ISO, CIS).
• Experience in policy development and implementation.
• Strong understanding of network security, application, and infrastructure

Other:

• Must be proactive, self-motivated, and lead team to multiple concurrent solutions.
• Travel required domestically and/or internationally up to 30% 
• Perform other duties as assigned
   

Skills

Ability to analyze technical architectures and identify security vulnerabilities then remediation efforts.Ability to manage external vendors in the development and delivery of related products, programs, and services.Excellent verbal and written communication skills with the ability to communicate across all levels of an organization.Leadership skills to effectively lead a functional area and establish new protocols and procedures.Must be self-initiating; able to work under minimal supervision.Strong knowledge and understanding of the attack chain, adversary tactics, techniques, and procedures, emerging threats and vulnerabilities.Strong organizational, planning, analytical, and technical skills.

Competencies

Care for PeopleChase Excellence, Every DayDare to Push BoundariesEmpower People to ActMove Further, Together

Pay Range

$95,000 - $133,000

Pay will be based on several variables that are unique to each candidate, including but not limited to, job-related skills, experience, relevant education or training, etc.

 

Equal Employment Opportunities

KUS provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, ancestry, national origin, sex, including pregnancy and childbirth and related medical conditions, gender, gender identity, gender expression, age, legally protected physical disability or mental disability, legally protected medical condition, marital status, sexual orientation, family care or medical leave status, protected veteran or military status, genetic information or any other characteristic protected by applicable law.  KUS complies with applicable law governing non-discrimination in employment in every location in which KUS has offices.  The KUS EEO policy applies to all areas of employment, including recruitment, hiring, training, promotion, compensation, benefits, discipline, termination and all other privileges, terms and conditions of employment.

 

Disclaimer:  The above information on this job description has been designed to indicate the general nature and level of work performed by employees within this classification and for this position.  It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.