Sr. Cloud Security Architect

Sr. Cloud Security Architect Hyundai Capital America

Join to apply for the Sr. Cloud Security Architect role at Hyundai Capital America

Posted: Dec 1, 2025

Primary Location: United States, California, Irvine

Salary Range: $132,000.00 $204,600.00

Employment Type: Full-time

Who We Are

Through our service brands Hyundai Motor Finance, Genesis Finance, and Kia Finance, Hyundai Capital America offers a wide range of financial products tailored to meet the needs of Hyundai, Genesis, and Kia customers and dealerships. We provide vehicle financing, leasing, subscription, and insurance solutions to over 2 million consumers and businesses. Embodying our commitment to grow, innovate, and diversify, we strive to reimagine the customer and dealer experience and launch innovative new products that broaden our market reach. We believe that success comes from within and are proud to support our team members through skill development and career advancement. Hyundai Capital America is an Equal Opportunity Employer committed to creating a diverse and inclusive culture for our workforce. We are a values?driven company dedicated to supporting both internal and external communities through volunteering, philanthropy, and the empowerment of our Employee Resource Groups. Together, we strive to be the leader in financing freedom of movement.

We Take Care of Our People

Along with competitive pay, as an employee of HCA, you are eligible for the following benefits:

• Medical, Dental and Vision plans that include no-cost and low-cost plan options
• Immediate 401(k) matching and vesting
• Vehicle purchase and lease discounts plus monthly vehicle allowances
• Paid Volunteer Time Off with company donation to a charity of your choice
• Tuition reimbursement
  

What To Expect

The Sr. Cloud Security Architect is a strategic technical leader responsible for designing and implementing secure cloud architecture across multiple platforms and service models. This role ensures that enterprise cloud environmentsSaaS, PaaS, and IaaSare resilient, compliant, and aligned with cybersecurity standards. The architect will work closely with the IT Infrastructure Platform team to integrate security into infrastructure services and cloud-native platforms, including securing the Microsoft 365 (M365) ecosystem. This role will champion the adoption of Zero Trust principles and industry best practices, working cross-functionally to elevate the organizations cloud security posture.

Responsibilities

• Design secure cloud architecture across AWS, OCI, GCP, and other platforms.
• Assess and secure IaaS, PaaS, SaaS solutions, identifying risk and remediation activitiesfor example, securing Salesforce, M365, and other solutions.
• Design and implement security controls for AI/ML workloads in cloud environments.
• Develop reference architectures and security patterns aligned with Zero Trust principles.
• Lead threat modeling and risk assessments for cloud and hybrid workloads.
• Manage and monitor cloud-native security solutions and monitoring tools.
• Provide technical leadership and guidance to Security operations teams, leading incident responses related to cloud security events.
• Review, monitor and optimize cloud security solutions, improving efficiency and integration; create continuous monitoring of cloud security compliance.
• Collaborate with infrastructure and DevOps teams to implement security controlsincluding IAM, encryption, segmentation, and monitoring.
• Integrate cloud security tools (CSPM, CWPP, CIEM) into CI/CD pipelines and runtime environments.
• Drive automation and infrastructure-as-code (IaC) practices.
• Define cloud security monitoring requirements and integrate with SIEM and SOAR platforms.
• Support incident response and forensic investigations related to cloud and hybrid environments.
• Conduct root cause analysis and recommend architectural improvements to prevent recurrence.
• Partner with IT Infrastructure, IT Application, DevOps, IAM, DLP, Security Operations, Information Protection Governance, and business units to integrate security into digital transformation initiatives.
• Research and evaluate emerging cybersecurity technologies (e.g., AI-driven threat detection, PasswordLess authentication).
• Design automated security workflows using tools like SOAR platforms.
• Mentor junior architects and engineers, fostering a culture of security awareness.
• Act as a subject matter expert for cloud and hybrid security across the enterprise.
• Influence strategic decisions around cloud adoption, migration, and modernization with a security-first mindset.
• Ensure cloud security architecture meets financial regulationsPCI DSS, GDPR, Korean SOX, FFIEC, NYDFSthrough secure design and audit-ready configurations.
• Contribute to development of cybersecurity policies and standards.
• Assess third-party vendors and MSSPs for compatibility with architectural designs and compliance needs.
• Promote and enforce industry best practices for cloud security architecture, operations, and governance.
• Create and maintain detailed architecture diagrams, design documents, standards, and runbooks to support implementation, audits, and incident response.
• Present architectural designs, risk assessments, and recommendations to senior leadership, articulating business impacts.
• Develop metrics to validate architectural effectiveness and drive continuous improvement.
  

Qualifications

• Minimum 8 years progressive experience in cybersecurity with proven knowledge in cloud security architecture or engineering.
• 3+ years of experience in financial services, understanding of financial threats and regulations.
• Hands?on experience architecting secure network, cloud, and SaaS environments in complex, regulated industries.
• Bachelors degree in computer science, information security, or related field; masters degree preferred.
• At least one of the following certifications: CISSP, CCSP, CISM, TOGAF.
• Hands?on security testing experience in cloud platforms, especially AWS and M365.
• Cloud security certifications such as AWS Certified Security Specialty, Microsoft Azure Security Engineer, Microsoft 365 Security, Google Professional Cloud Security Engineer, or comparable.
  

Technical Skills

• Network security expertise (NGFW, IDS/IPS, VPNs) and cloud security (AWS, Azure, Google Cloud, Oracle Cloud).
• Proficiency with Microsoft 365 Security tools: Microsoft Defender, Intune, Azure AD (Entra), ADFS.
• Knowledge of security frameworksNIST, ISO 27001, COBIT.
• Strong knowledge of cloud?native security solutions and monitoring technologyAWS CloudTrail, SecurityHub, GuardDuty.
• Experience with secure SDLC and DevSecOps practices.
• Familiarity with automation and scriptingPython, PowerShell, Terraformfor IaC and security orchestration.
• Experience with CSPM and workload protection platforms.
• Proficiency with IAM frameworks (RBAC, MFA, PAM) and DLP technologies.
• Strong knowledge of SIEM, SOAR, and threat intelligence platforms for architectural integration.
• Experience designing robust security architectures for SaaS platforms, ensuring secure integration, data protection, and compliance with SOC?2, ISO?27001, and others.
• Experience designing and implementing security controls for AI/ML workloads.
• Knowledge of financial systems such as core banking platforms and payment gateways.
  

Soft Skills

• Strong problem?solving skills for complex architectural challenges.
• Excellent communication skills to articulate technical concepts to both technical and non?technical stakeholders.
• Strategic thinker aligning cybersecurity architectures with business and regulatory goals.
  

Preferred

• Experience with AI-driven cybersecurity tools for threat detection and response.
• Familiarity with zero?trust architectures and emerging technologies such as SASE or decentralized identity.
• Knowledge of data encryption, tokenization, and secure API design for financial applications.
• Experience working with MSSPs to integrate external security services.
• Understanding of threat?modeling frameworks.
  

Work Environment

Employees in this class are subject to extended periods of sitting, standing, and walking, vision to monitor and moderate noise levels. Work is performed in a home and office environment.

Employee Details

Posted salary range is based on factors such as skill set, experience, location, and other business needs. It is uncommon to hire candidates at or near the top of the range.

California Privacy Notice

This notice only applies to applicants residing in the State of California. The latest version of our Privacy Policy can be found here. This Privacy Policy provides notice about the categories of personal information collected, purposes for collection, and whether information is sold or shared. The notice complies with the CCPA and the California Privacy Rights Act of 2020. If you have any questions, contact the Privacy Team at Privacy2@hcs.com.

#J-18808-Ljbffr

---