IT Cyber Security Consultant

About The Position

Requirements

• Bachelor’s degree in computer science, Information Technology, or a related field.
• 10+ years of experience as an IT Security Engineer or similar role in a corporate environment, preferably in the automotive industry.
• 5+ years of enterprise IT Cybersecurity architecture and implementation experience
• Bilingual speaker (English and Korean) is required
• Excellent stakeholder management and communication skills, with the ability to translate complex security concepts for non-technical audiences
• Deep understanding of security frameworks and standards, such as NIST CSF, ISO/IEC 27001, CIS Controls
• Proven expertise in network security, cloud security (AWS, Azure, GCP), and endpoint protection
• Hands-on experience with security technologies such as SIEM, IDS/IPS, firewalls, and vulnerability management tools
• Demonstrated ability to conduct qualitative and quantitative risk assessments, threat modeling, and security reviews
• Familiarity with regulatory and compliance requirements such as GDPR, HIPAA, SOX, PCI-DSS

Nice To Haves

• Master’s degree in Cybersecurity, Information Assurance, or a related discipline
• Industry certification such as CISSP, CISM, CRISC, CCSP, or TOGAF
• Track record of driving security projects to completion, including planning, execution, and post-implementation review
• Experience operating in hybrid and multi-cloud environments, including implementing Zero Trust and SASE architectures.
• Prior experience serving as regional or global liaison for cybersecurity initiatives.

Responsibilities

• Act as Liaison for global IT Cybersecurity Initiatives: Evaluate existing and planned security solutions for effectiveness, manageability, and compliance with regulations
• Translate global headquarters standards and roadmaps into optimized regional IT guidelines
• Coordinate and support headquarters-led security audits across the Americas to assess and strengthen the region’s security posture.
• Recommend enhanced security practices for critical business challenges not addressed by global HQ security policy
• Advise stakeholders on new initiatives and existing environments to ensure alignment with local regulatory requirements
• Security Risk Management: Collaborate with security operation teams during cybersecurity incident to minimize business impact
• Conduct comprehensive security architecture reviews to identify gaps and develop risk management plans.
• Lead enterprise-wide risk assessments—both qualitative and quantitative—to prioritize threats and vulnerabilities
• Partner with business and IT leaders to identify and prioritize critical functions, aligning mitigation strategies with organizational objectives.
• Maintain and update the security risk register, track remediation efforts, and drive closure of outstanding risk items.
• Develop and deliver risk reports and dashboards for senior leadership and governance committees.
• Operational Excellence: Assess regional IT cybersecurity maturity and implement continuous improvement initiatives
• Collaborate with Site Reliability Engineering and IT Infrastructure to maximize service availability and resilience
• Define and advocate regional IT security KPIs based on global metrics and local priorities
• Support implementation of IT cybersecurity solutions for new business entities
• Partner Relationship Management: Optimize service delivery and collaboration with Hyundai AutoEver and other key IT partners
• Identify, evaluate, and onboard emerging security technology partners to enhance regional capabilities
• Establish clear performance metrics and conduct ongoing partner performance reviews