Information Security and Data Manager (Irvine, California, US) in Irvine, CA at Kia Motors America

Date Posted: 10/26/2019

Job Snapshot

  • Employee Type:
    Full-Time
  • Location:
    Irvine, CA
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:
    10/26/2019

Job Description

At Kia, we’re creating award-winning products and redefining what value means in the automotive industry. It takes a special group of individuals to do what we do, and we do it together. Our culture is fast-paced, collaborative, and innovative. Our people thrive on thinking differently and challenging the status quo. We are creating something special here, a culture of learning and opportunity, where you can help Kia achieve big things and most importantly, feel passionate and connected to your work every day.

Kia provides team members with competitive benefits including 100% premium paid medical, dental and vision coverage for you and your dependents, 401(k) plan matching of 100% up to 6% of the salary deferral, and time off starting at 14 days per year. Kia also offers company lease and purchase programs, company-wide holiday shutdown, paid volunteer hours, and premium lifestyle amenities at our corporate campus in Irvine, California.

Status
Exempt
Summary

Under the direction of Digital Technology Management, the Information Security and Data Manager is responsible for owning, defining, and delivering information security and data governance across the enterprise managing Information Security policy, Data Loss Prevention program (DLP), and ensuring that governance processes are in place to maintain controls and compliance. Responsibilities include assisting in security audits, ensuring overall adherence to policy standards, overseeing the Security Awareness program and facilitating the highest level of legal compliance through assessment, remediation and escalation as necessary.

The Information Security and Data Manager works closely with various business units, affiliates and vendors to manage information security, data controls, cybersecurity, PII data control enforcement and legal compliance. This position will also provide valuable insights for enterprise security framework and best practices.   

This position develops policies for standardizing Information Security and Data Governance practice across enterprise.

Major Responsibilities

Priority 1st - 25%

Review existing information security controls and implement program to enhance information and cyber security controls. Serve as a Subject Matter Expert (SME) on Information Security and Data Governance critical processes, best practices and tools. Responsible to ensure the process aligns to regulatory, statutory and industry requirements.

Priority 2nd - 25%

Develop, maintain and manage Information Security strategies, standards, policies and programs to assess, prioritize and mitigate business risks. Advise the organization with current trends about information security and related regulatory issues, including analysis & proposal of security products and services to determine best risk management environment.

Priority 3rd - 25%

Work with business, legal, IT stakeholders and external vendors to deliver a data governance program to improve data quality, access controls, usage and data management processes. Act as a facilitator within the organization and is able to work with business stakeholders at all levels to ensure data goals and objectives are met.

Priority 4th - 25%

Manage all aspects of data governance, data strategy and architecture, creating and maintaining standards and best practices for data provisioning and data integration.

Education/Certification
  • Bachelor’s degree in computer science or cyber security or related field
  • Security certification(s) such as Certified Information Security manager (CISM) or Certified Information Systems Security Professional (CISSP)
Overall Experience
  • 10 years of experience in Information Security Governance, Risk and Compliance
  • 5+ years’ experience in enterprise data governance and management
  • Experience with security frameworks such as ISO 27001/27002, NIST, COBIT, PCI DSS and Automotive SAE J3061
  • Good understanding of network security concepts related to DNS routing, authentication, VPN, proxy services and such
  • Experience with technologies such as SAP, Big data Hadoop ecosystem and Oracle Exadata
  • Exposure to security aspects of automotive technologies such as Telematics, Connected vehicle and Connected services
Directly Related Experience

Other:

  • Must be proactive, self-motivated, and lead team to multiple concurrent solutions.
Skills
High level organizational, planning and analytical skills
Excellent communication skills required (written and oral)
Customer Service
Ability to assess systems support operations and lead process improvement.
Leading internal and external teams/task forces.
Ability to manage external vendors in the development and delivery of related products, programs, and services.
Competencies
Challenge
Collaboration
Customer
Globality
People
Adapting to Change
Championing Customer Needs
Communicating Effectively
Delivering High Quality Work
Entrepreneurial Thinking
Managing Resources
Developing Talent
Driving Continuous Improvement
Inspiring and Motivating Others
Managing Risk
Setting a Strategic Vision

Equal Employment Opportunities

KMA provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, ancestry, national origin, sex, including pregnancy and childbirth and related medical conditions, gender, gender identity, gender expression, age, legally protected physical disability or mental disability, legally protected medical condition, marital status, sexual orientation, family care or medical leave status, protected veteran or military status, genetic information or any other characteristic protected by applicable law.  KMA complies with applicable law governing non-discrimination in employment in every location in which KMA has offices.  The KMA EEO policy applies to all areas of employment, including recruitment, hiring, training, promotion, compensation, benefits, discipline, termination and all other privileges, terms and conditions of employment.

Disclaimer:  The above information on this job description has been designed to indicate the general nature and level of work performed by employees within this classification and for this position.  It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.

CHECK OUT OUR SIMILAR JOBS

  1. IT Jobs
  2. IT Manager Jobs