10318 - Cyber Defense Head of Department (HOD)

Company Overview: Hyundaiu00a0AutoEveru00a0America (HAEA), the dynamic IT powerhouse behind Hyundai Motor Corporation, a Fortune 500 global leader in the automotive industry. As a key affiliate, we provideu00a0cutting-edgeu00a0IT services and support to top brands including Kia, Genesis, Hyundaiu00a0Translead, Hyundai Mobis, Hyundai Capital, andu00a0Glovis.u00a0 HAEA offers a truly global and collaborative environment. Here,u00a0youu2019llu00a0drive innovation, boost operational efficiency, and help shape the future of mobility for the Hyundai Motor Group.u00a0 At HAEA, we understand that IT is the cornerstone of todayu2019s fast-evolving digital world. By uniting all IT resources under one roof, we deliver consistent, top-quality solutions while serving as the crucial information link between Hyundaiu2019s Global Headquarters and North American operations.u00a0 Ifu00a0youu2019reu00a0passionate about technology and eager to make a real impact at a world-class company, Hyundaiu00a0AutoEveru00a0America is the place to grow your career. Join us and be part of the transformationu00a0thatu2019su00a0driving the future of automotive innovation.u00a0 u00a0 Role Overview: TheCyber Security Defenseu00a0Head of Department (HOD) willu00a0lead and mature our organizationu2019s end-to-end defensive security capabilities. This senior leadership role oversees the Security Operations Center (SOC), Blue Team, Red Team, Penetration Testing, Incident Response, Threat & Vulnerability Management (TVM), Application Security, and Adversary Simulation functions. The ideal candidate is both a visionary leader and a seasoned technical expert capable of building high-performing teams, implementing modern security practices, andu00a0driving continuous improvement across all cyber defense operationsu00a0functions.u00a0The key responsibilities of this role are as described below:u00a0 Strategic Leadership & Governanceu00a0 + Develop and execute the Cyber Defense strategy aligned with organizational goals, customeru00a0requirementsu00a0andu00a0theu00a0evolving threat landscapes.u00a0 + Establish frameworks, processes, and KPIs for SOC, Incident Response, TVM, AppSec, Red/Blue Teaming, and Adversary Simulation.u00a0 + Serve as a senior advisor to the CISO and executive leadership on cyber risks, readiness, and emerging threats.u00a0 Security Operations & Blue Team Oversightu00a0 + Oversee 24x7 SOC operations, ensuring effective monitoring, detection, and response to security events, across levels 1-3.u00a0 + Drive continuous enhancement of detection engineering, threat hunting, and security analytics.u00a0 + Implement best-in-class security tooling, automation, and operational processes.u00a0 Adversarial Security: Red Team & Penetration Testingu00a0 + Lead internal Red Team and offensive security capabilities, including penetration testing.u00a0 + Define testing methodologies, operational rules of engagement, and reporting standards.u00a0 + Translate offensive findings into actionable improvements for defensive teams and architecture.u00a0 Incident Response & Crisis Managementu00a0 + Oversee the Incident Response program, ensuring rapid and effective handling of security incidents.u00a0 + Lead tabletop exercises, simulation drills, and readiness assessments.u00a0 + Facilitate and lead high/critical incidentu00a0responses,u00a0when the Incident Response Manager is unavailable.u00a0Coordinate with legal, communications, and executive stakeholders during major incidents.u00a0 Threat & Vulnerability Management (TVM)u00a0 + Own the enterprise-wide vulnerability management strategy, including prioritization, remediation, and reporting.u00a0 + Drive continuous scanning, assessment, and metrics to reduce risk across infrastructure, applications, and cloud environments.u00a0 + Collaborate with engineering and operations teams to ensureu00a0timelyu00a0and effective remediation.u00a0 + Facilitate andu00a0the zero-day vulnerability response process, when the Incident Response Manager is unavailable.u00a0u00a0 Application Security (AppSec)u00a0 + Lead the organizationu2019s AppSec program, including secure SDLC practices, code reviews, SAST/DAST tools, and developer enablement.u00a0 + Partner with software engineering to embed security into product and platform design.u00a0 Adversary Simulation & Cyber Readinessu00a0 + Develop and run adversary simulation programs that mimic real-world threat actors.u00a0 + Use intelligence-led scenarios to evaluate detection capabilities, response effectiveness, and organizational resilience.u00a0 Basicu00a0Qualifications: + Experience & Leadership:u00a015u201320 yearsof progressive experience acrossu00a0the various cyber defense disciplinesu00a0(SOC, Incident Response, Red/Blue teams, or similar defensive/offensive functions.)u00a0Proven experience leadingu00a0cyber defense teams.u00a0Demonstrated ability to hire, mentor, and lead high-performing technical teams.u00a0 + Education: Bacheloru2019s degree in Cybersecurity, Information Technology,u00a0Computeru00a0Scienceu00a0oru00a0a relatedu00a0discipline.u00a0 + Technical Expertise:u00a0Strong knowledge of threat detection,u00a0incident response,u00a0adversary tactics (MITRE ATT&CK), vulnerability management, and secure software development.u00a0Excellent incident management, communication, and executive reporting skills.u00a0 + Language Skills: Proficient in English for effective communication and coordination.u00a0u00a0 + Availability:u00a0In theu00a0absenceu00a0ofu00a0IRu00a0team members,u00a0utilizeu00a0a flexible work schedule tou00a0facilitateu00a0the security incident response process for high/critical incidents.u00a0 Preferred Qualifications: + Education andu00a0Certifications:u00a0Mastersu00a0degree in Cybersecurity,u00a0Information Technology,u00a0Computeru00a0Scienceu00a0or a relatedu00a0discipline is preferred.u00a0Industry-recognized credentials such asu00a0CISSP, CISM, OSCP/OSCE, GIAC (GSEC, GCIA, GCIH, GPEN, GXPN)u00a0are highly desirable.u00a0u00a0 + Frameworku00a0Experience:u00a0Familiarityu00a0with, and prior participation withu00a0FIRST (Forum of Incident Response and Security Teams) is preferred.u00a0 + Language Skills:u00a0Bi-lingual in English andu00a0Korean languageu00a0proficiencyu00a0is preferred to support global coordination and communication.u00a0u00a0 Team Culture:u00a0 The team fosters a high-performance, collaborative environment centered around proactive cybersecurity defenseu00a0and excellent customer service. Members are expected tou00a0lead withu00a0accountability, communicate effectively across functions, and adapt to dynamic challenges. The culture values technical excellence, continuousu00a0improvement, and global coordination, ensuring readiness and resilience in the face of evolving threats.u00a0u00a0 + Collaborative Leadership:u00a0Team members lead cross-functionalu00a0service deliveryu00a0efforts, coordinating with internal stakeholders, MSSPs, and external partners to driveu00a0delivery of servicesu00a0andu00a0maintainu00a0transparency.u00a0u00a0 + Continuous Improvement & Accountability:u00a0The team regularlyu00a0adjusts the Information Security strategy and roadmap in alignment with customer needs, changing threat landscape and industry trends.u00a0 Base Salary Range: $181,240 - $ 259,160u00a0 Powered by JazzHR

Created: 2026-01-12