Hyundai Capital Canada · 1 month ago
Sr. Cloud Security Architect
United States-Texas-Plano
Full-time
Onsite
Senior Level, Lead/Staff
$132K/yr - $205K/yr
8+ years expHyundai Capital America is a financial services company offering a range of products tailored to meet the needs of its customers. The Sr. Cloud Security Architect is responsible for designing and implementing secure cloud architecture across various platforms, ensuring compliance with cybersecurity standards, and leading efforts to enhance the organization’s cloud security posture.
AutomotiveFinanceFinancial Services
Responsibilities
Design Secure Cloud Infrastructure Environments: design and implement secure cloud architecture across AWS, OCI, GCP and other platforms
Assess and Secure IaaS, PaaS, SaaS solutions: Identify cybersecurity risk and remediation activities to ensure our SaaS solutions such a Salesforce, M365, and other solutions are aligned with industry’s best practices to ensure the security of our data stored and processed within these services
Secure AI Utilization: design and implement security controls for AI/ML workloads in cloud environments, including securing model training pipelines, protecting sensitive data, and mitigating risks associated with adversarial AI, model drift, and generative AI misuse
Develop reference architectures and security patterns that align with Zero Trust principles
Lead threat modeling and risk assessments for cloud and hybrid workloads
Cloud Security Solution Management: manage and monitor our cloud native security solutions and monitoring tools to ensure optimal performance and visibility
Provide Support and Guidance for Security Operations: Provide technical leadership and guidance to our Security ops teams and lead incident responses related to Cloud security events
Review, monitor and Optimize: review current Cloud solution implementations, optimize cloud security utilization and improve efficiency and integration when possible. Create continuous monitoring of Cloud Security Compliance
Collaborate with infrastructure and DevOps teams to implement security controls including IAM, encryption, segmentation, and monitoring
Integrate cloud security tools (CSPM, CWPP, CIEM) into CI/CD pipelines and runtime environments
Drive automation and infrastructure-as-code (IaC) practices using tools
Define cloud security monitoring requirements and integrate with SIEM and SOAR platforms
Support incident response and forensic investigations related to cloud and hybrid environments
Conduct root cause analysis and recommend architectural improvements to prevent recurrence
Cross-Functional Collaboration: Partner with IT Infrastructure and IT Application teams, DevOps, IAM, DLP, Security Operations, Information Protection Governance and business units to integrate security into digital transformation initiatives, such as cloud migrations, fintech innovations, and core banking systems
Technology Evaluation: Research and evaluate emerging cybersecurity technologies (e.g., AI-driven threat detection, PasswordLess authentication) to enhance architectural resilience and efficiency
Automation and Orchestration: Design automated security workflows using tools like SOAR platforms (e.g., Splunk SOAR, Palo Alto Cortex) to improve incident response and operational efficiency
Knowledge Sharing: Mentor junior architects and engineers, sharing best practices and fostering a culture of security awareness across the organization
Act as a subject matter expert (SME) for cloud and hybrid security across the enterprise
Influence strategic decisions around cloud adoption, migration, and modernization with a security-first mindset
Regulatory Compliance: Ensure cloud security architecture meets financial regulations (e.g., PCI DSS, GDPR, Korean SOX, FFIEC, NYDFS) through secure design, documentation, and audit-ready configurations
Policy Development: Contribute to the development of cybersecurity policies and standards, ensuring architectural designs align with regulatory and organizational requirements
Vendor Evaluation: Assess third-party vendors and Managed Security Service Providers (MSSPs) for compatibility with architectural designs and compliance needs
Promote and enforce industry best practices for cloud security architecture, operations, and governance
Architecture Documentation: Create and maintain detailed architectural diagrams, design documents, standards and runbooks to support implementation, audits, and incident response
Executive Communication: Present architectural designs, risk assessments, and recommendations to the Director of Cybersecurity, CISO, and senior leadership, articulating business impacts
Metrics and Validation: Develop metrics to validate architectural effectiveness (e.g., threat detection coverage, compliance adherence) and drive continuous improvement
Qualification
Required
Minimum 8 years progressive experience in cybersecurity with proven knowledge in cloud security architecture or engineering role designing secure cloud native systems
3+ years of experience in financial services, with a strong understanding of financial threats (e.g., fraud, data breaches) and regulations (e.g., PCI DSS, Korean SOX, GDPR)
Hands-on experience architecting secure network, cloud, and SaaS environments in complex, regulated industries
Bachelor's degree in computer science, Information Security, or related field; Master's degree preferred
At least one of the following: CISSP, CCSP, CISM, TOGAF, or equivalent
Hands-on security testing experience in cloud platforms, especially AWS and M365
Cloud security certifications such as: AWS Certified Security - Specialty, Microsoft Azure Security Engineer, Microsoft 365 Security, Google Professional Cloud Security Engineer, Other comparable certifications
Technical expert with deep experience in financial services, a strategic mindset, and the ability to align cybersecurity architecture with business objectives
Expertise in network security (e.g., NGFW, IDS/IPS, VPNs) and cloud security (AWS, Azure, Google Cloud, Oracle Cloud)
Proficiency in Microsoft 365 Security Tools: Microsoft Defender, Intune, Azure AD (Entra), ADFS
Knowledge of security frameworks such as NIST, ISO 27001, and COBIT
Strong knowledge of Cloud Native Security solutions and monitoring technology – (AWS CloudTrail, SecurityHub, GuardDuty)
Experience with secure software development lifecycles (SDLC) and DevSecOps practices
Familiarity with automation and scripting (e.g., Python, PowerShell, Terraform) for infrastructure-as-code and security orchestration
Hands-on experience with cloud security posture management (CSPM) and workload protection platforms
Proficiency in IAM frameworks (RBAC, MFA, PAM) and DLP technologies (data classification, policy enforcement)
Strong knowledge of SIEM (e.g., Splunk), SOAR, and threat intelligence platforms for architectural integration
Deep experience in the design and implementation of robust security architectures for SaaS platforms, ensuring secure integration, data protection, and compliance with industry standards such as SOC 2, ISO 27001, and others
Experience designing and implementing security controls for AI/ML workloads in cloud environments
Knowledge of financial systems (e.g., core banking platforms, payment gateways) and their security requirements
Strong problem-solving skills to address complex architectural challenges
Excellent communication skills to articulate technical concepts to technical and non-technical stakeholders
Strategic thinker with the ability to align cybersecurity architectures with business and regulatory goals
Preferred
Experience with AI-driven cybersecurity tools (e.g., ReliaQuest GreyMatter, Rapid7, etc.) for threat detection and response
Familiarity with zero-trust architectures and emerging technologies, such as SASE or decentralized identity
Knowledge of data encryption, tokenization, and secure API design for financial applications
Experience working with MSSPs to integrate external security services
Understanding of threat modeling frameworks
Benefits
Medical, Dental and Vision plans that include no-cost and low-cost plan options
Immediate 401(k) matching and vesting
Vehicle purchase and lease discounts plus monthly vehicle allowances
Paid Volunteer Time Off with company donation to a charity of your choice
Tuition reimbursement
Company
Hyundai Capital Canada
Hyundai Capital Canada provides auto finance and private finance services.
51-200 employees
Funding
Current Stage
Growth StageCompany data provided by crunchbase