CrawlJobs Logo

Security Strategy and Risk Management Head of Department

haeaus.com Logo

Hyundai AutoEver America

Location Icon

Location:
United States , Irvine

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

181240.00 - 259160.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

The Security Strategy and Risk Management Head of Department is a senior leadership role accountable for driving the unified governance, risk, compliance, strategy, and planning disciplines that underpin the Information Security program. This leader integrates both Integrated Risk Management (IRM) and Security Strategy & Planning (SS&P) functions into a cohesive organizational capability, ensuring the security program is well-governed, risk-informed, strategically aligned, and operationally effective.

Job Responsibility:

  • Lead enterprise-wide risk assessment, risk issue management, and risk exception management
  • Maintain and enhance risk management frameworks aligned with industry best practices
  • Deliver insightful, data-driven risk reporting to senior leadership
  • Oversee the Information Security compliance and control assurance program
  • Lead coordination of internal and external audits, assessments, and certification processes
  • Lead the Third-Party Risk Management (TPRM) program
  • Oversee creation, governance, maintenance, and communication of Information Security policies, standards, and procedures
  • Direct the Information Security Training and Awareness program
  • Partner with the CISO to define and maintain the Information Security strategic roadmap
  • Lead budget planning, forecasting, tracking, and optimization for the full Information Security organization
  • Oversee resource and capacity planning across global security teams
  • Develop and maintain dashboards and reporting structures for Key Performance Indicators (KPIs), Key Risk Indicators (KRIs), and OKRs
  • Build, lead, and mentor a team across IRM, strategy, and planning functions

Requirements:

  • 15–20 years of progressive experience across Information Security, GRC/Risk Management, customer/vendor security management and/or strategic operations
  • Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, Business Administration or a related discipline
  • Excellent stakeholder management, communication, and leadership skills
  • Demonstrated experience working across multi-disciplinary teams to achieve common objectives
  • Proficient in English for effective communication and coordination

Nice to have:

  • Masters degree in Cybersecurity, Risk Management or Business Administration is preferred
  • Industry-recognized credentials such as PMP, PRINCE2, CISA, CISM, or CISSP are highly desirable
  • Familiarity with ISO 27001, NIST CSF, SOC2 Type II or similar security and risk management frameworks is an advantage
  • Bi-lingual in English and Korean language proficiency is preferred to support global coordination and communication
  • Background in cybersecurity consulting or advisory services, particularly in risk management, is a plus

Additional Information:

Job Posted:
December 09, 2025

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Hyundai AutoEver America - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Security Strategy and Risk Management Head of Department

Global Head of Securities Finance Client Operations

The successful individual will be a key member of the Securities Finance Operati...
Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Senior and relevant experience, including significant years of experience in a managerial role within Operations, and/or a similar position with a strong internal operational focus on client-related activities
  • Subject Matter Expertise in multiple or specific skill sets, business areas, or products relevant to Operations
  • Exceptional internal stakeholder management skills, with the ability to build long-term relationships with business partners (e.g., Client Executives, Product teams) and senior stakeholders
  • Outstanding communication and presentation skills, capable of leading senior internal stakeholder meetings (e.g., Steering Committees) to discuss client-related operational matters and strategies
  • Significant industry knowledge and experience
  • Robust commercial awareness and understanding of the Securities Finance business is a benefit.
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain comprehensive client scorecards, integrating key performance indicators such as Straight-Through Processing (STP) rates and wallet share
  • Review and drive decrease of client related manual, bespoke and End-User Computing (EUC) processes
  • Serve as the primary point of contact for client inquiries from Business Unit, efficiently triaging and directing them to the appropriate internal subject matter experts
  • Centralise reporting of client escalations and complaints
  • Assess the potential impact of new client engagements and product launches on operational capacity, risk exposure, and the introduction of new End-User Computing (EUC) tools
  • Engage with Product on changes requested by existing clients
  • Evaluate the impact of such changes on STP and overall operational efficiency
  • Manage the execution of operational aspects of change management
  • Proactive risk management and cooperation with necessary internal stakeholders to minimise operational and project risk
  • Advise and coach new or junior level staff on procedures and work processes across multiple departments.
What we offer
What we offer
  • Competitive base salary reviewed annually
  • Hybrid working model (up to 2 days working at home per week)
  • Business casual workplace
  • Additional benefits to support you and your family to be well, live well, and save well.
  • Fulltime
Read More
Arrow Right
New

Information Security Officer

The Information Security Officer will be responsible for the development, implem...
Location
Location
France , Tassin-la-Demi-Lune
Salary
Salary:
Not provided
lumapps.com Logo
LumApps
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
  • 5+ years of experience in information security, risk management, or IT auditing
  • Deep understanding of network security, cloud security (GCP/Azure), IAM (Identity and Access Management)
  • Ability to translate complex technical risks into "business language" for executive leadership
  • A calm, analytical approach to high-pressure crisis situations
  • Absolute commitment to ethics and confidentiality
Job Responsibility
Job Responsibility
  • Develop and maintain an enterprise-wide information security strategy and roadmap
  • Create, document, and enforce security policies, standards, and procedures (e.g., Access Control, Data Encryption, Incident Response)
  • Lead regular risk assessments and vulnerability audits
  • coordinate with department heads to mitigate identified risks
  • Ensure the organization meets regulatory requirements such as SOC2 and ISO 27001
  • Design and oversee security training programs for all employees to reduce human-factor risks like phishing
  • Evaluate the security posture of third-party vendors and supply chain partners
  • Customers main point of contact for security requests
What we offer
What we offer
  • Hybrid work model – 2 days at the office, 3 days remote
  • RTT days – ~10 extra days off per year
  • Meal vouchers (SWILE) + free snacks & coffee
  • Yoga classes – Take a mindful break in our Paris office
  • Supportive parental leave and family moments — yes, even a Christmas party for your kids !
  • Health insurance (ALAN) – 60% covered + full life & disability cover
  • Afterworks, team celebrations & seasonal parties
  • Equipment
  • French & English lessons, professional development & access to Leeto CSE
  • Fulltime
Read More
Arrow Right

Loss Prevention Manager

The Loss Prevention Manager is responsible for leading and managing all loss pre...
Location
Location
Salary
Salary:
Not provided
https://www.marriott.com Logo
Marriott Bonvoy
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Criminal Justice, Security Management, Hospitality Management, or a related field
  • Professional certifications in security, loss prevention, or safety are highly desirable
  • Minimum 7–10 years in loss prevention, security management, or safety operations within a luxury hospitality environment, ideally a resort or hotel chain
  • Proven experience with Marriott or other international hotel brand standards (LSOPs, BSA, Fire & Life Safety audits)
  • Demonstrated track record in risk management, investigations, emergency response, and compliance audits
  • Experience in leading and developing security teams, including scheduling, training, and performance management
  • Experience collaborating with cross-functional departments (Engineering, HR, Finance, Operations)
  • Leadership & Team Management: Ability to inspire, coach, and maintain a disciplined, professional, and service-oriented team
  • Security & Risk Management: Expertise in proactive risk mitigation, surveillance systems, access control, and investigation procedures
  • Emergency Preparedness: Knowledgeable in crisis management, fire safety, medical emergency response, and evacuation procedures
Job Responsibility
Job Responsibility
  • Ensure full compliance with Marriott LSOPs, BSA, and Fire & Life Safety audit standards
  • Maintain continuous audit readiness through routine inspections and internal audits, accurate documentation and evidence management, and timely closure of corrective action plans (CAPs)
  • Partner with Engineering to ensure fire detection, alarm, suppression, and evacuation systems meet Marriott Life Safety standards and preventive maintenance and testing schedules are documented and compliant
  • Lead and document emergency drills (fire, evacuation, bomb threat, medical, natural disasters)
  • Develop and implement proactive loss prevention strategies to minimize theft, shrinkage, fraud, vandalism, and property damage
  • Conduct risk assessments across all resort areas, including guest rooms, public areas, wellness facilities, back-of-house, and residences
  • Oversee surveillance systems (CCTV), access control, key management, and alarm monitoring
  • Lead investigations related to guest incidents, associate misconduct, losses, accidents, and security breaches
  • Serve as the primary responder and coordinator for all emergency situations
  • Ensure all associates are trained and conversant with Fire & Life Safety procedures, crisis response protocols, and medical emergency response and escalation
  • Fulltime
Read More
Arrow Right

Head of IT & Security

As Head of IT & Security at Dexory, you will own and drive the strategy, executi...
Location
Location
Wallingford
Salary
Salary:
Not provided
dexory.com Logo
Dexory Using
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in a senior IT leadership role (Head of IT, IT Director or equivalent) in a high-growth mid-sized technology company (100–500 employees) or scaling organisation
  • Strong background managing IT infrastructure for a high-technology company (servers, workstations, network, cloud, endpoints), service delivery, onboarding/off-boarding, vendor management and IT budgeting
  • Solid experience in IT security and compliance: risk assessment, incident management, identity & access management, policy formulation, and experience with relevant standards (e.g. ISO 27001, SOC1/SOC2, GDPR)
  • Excellent stakeholder management and cross-functional collaboration skills – able to translate business needs into IT/security solutions and influence senior leadership
  • Strong team leadership and people development experience: building and managing teams (internal and via partners) across IT and security disciplines
  • Excellent verbal and written communication skills
  • ability to present to senior management, articulate trade-offs and make strategic decisions
  • A proactive, results-driven mindset, comfortable in a fast-paced, evolving environment.
Job Responsibility
Job Responsibility
  • Define and execute the IT strategy in alignment with business objectives: infrastructure (on-premises, cloud, hybrid), end-user computing, collaboration tools, service desk and lifecycle management
  • Define and own the IT security & compliance strategy: policies, controls, risk frameworks, audits, vendor assessment, incident response, identity & access management and data governance
  • Manage the IT / Security budget and vendor contracts, ensuring cost-effectiveness and service delivery for employees across multiple teams and countries
  • Lead the IT onboarding and off-boarding processes: ensure every new team member is provisioned with the right systems, access rights, collaboration tools, security training, and that existing team members are properly de-provisioned
  • Ensure the operational stability of the IT estate: network, servers, endpoints, cloud services, backups, disaster recovery, patching, monitoring – while maintaining high service levels across the business
  • Collaborate cross-functionally with Heads of Departments (Operations, Engineering, HR, Finance, Product) to ensure their systems and workflows are supported, secure and scalable
  • Build, lead and mentor the IT & security team and managed service partners – drive a culture of service, reliability, security awareness and proactive innovation
  • Monitor and report on key metrics/KPIs: uptime, service desk performance, security incident rate, audit/compliance status, cost per user, vendor performance
  • Lead incident response and business continuity planning: coordinate investigation of security incidents, implement corrective actions and ensure resilience of systems and processes
  • Stay up-to-date with current and emerging technologies, threats and regulatory requirements relevant to our sector and growth stage
What we offer
What we offer
  • Private healthcare via Bupa with 24/7 medical helpline
  • Life insurance
  • Income protection
  • Pension: 4+% employee with option to opt into salary exchange, 5% employer
  • Employee Assistance Programme - mental wellbeing, financial and legal advice/support
  • 25 holidays per year
  • Full meals onsite in Wallingford
  • Fun team events on and offsite, snacks of all kinds in the office
Read More
Arrow Right
New

Gaza Area Manager

As the Gaza Area Manager, you’ll take the lead in ongoing and future WHH operati...
Location
Location
Palestine, State of , Gaza
Salary
Salary:
Not provided
agrotec-spa.net Logo
Agrotec Spa
Expiration Date
March 29, 2026
Flip Icon
Requirements
Requirements
  • At least 5 years experience in a humanitarian organization with minimum 3 years at a management role is required
  • Experience in high risk conflict zones and politically complex environments is required
  • Expert knowledge on project cycle management and good skills in humanitarian and development project design is required
  • Excellent spoken and written English is required
  • Good Microsoft Office skills are required
  • Ability and willingness to be based in Gaza is a must
Job Responsibility
Job Responsibility
  • Lead in establishing WHH as a key humanitarian and development organization in Gaza
  • Represent WHH in humanitarian and development coordination meetings
  • Ensure that all projects implemented in the region are reported adequately to clusters, and in a quality manner to donors or the head office
  • Ensure that WHH is taking active part in rapid response in Gaza
  • Develop high-quality strategies and plans
  • Provide monthly situation briefs
  • Work actively with partners to build their capacity
  • Actively lead identification of needs, facilitate response to these needs
  • Actively participate in the design of proposals and strategies
  • Ensure overall implementation of the programs in Gaza with direct oversight of the project managers and/or partners
What we offer
What we offer
  • Fair Compensation: A fair and equal remuneration based on a transparent salary scale
  • Commitment to Well-Being: We attach great importance to our duty of care with a focus on safety, security & health
  • Modern & Agile Work Environment: Be part of a forward thinking organization that fully embraces digitalization and innovation across all areas
  • Personal & Professional Growth: Access diverse learning and development opportunities to advance your career
  • Team: Join our dedicated and diverse teams, where passion, expertise, and joy come together to create a better world
  • Staff care package with access to rest and recuperation (R&R) periods in Jordan
  • Fulltime
!
Read More
Arrow Right

Staff Program Manager, Business Continuity

We are seeking a highly experienced Staff Program Manager to drive our operation...
Location
Location
Netherlands , Amsterdam
Salary
Salary:
Not provided
uber.com Logo
Uber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of demonstrated success establishing and managing robust Business Continuity, Enterprise Resilience, or similar risk management programs, preferably within a technology and operations environment
  • Proven ability to define program scope and translate leadership vision into effective, aligned organizational business objectives
  • Strong understanding of risk assessment methodologies, Business Impact Analysis (BIA), and the ability to develop practical resilience strategies
  • Extensive experience developing, implementing, and testing actionable Business Continuity Plans (BCPs)
  • Exceptional analytical, project management, communication, and collaboration skills for effective work with cross-functional and external teams
Job Responsibility
Job Responsibility
  • Define the scope and strategic direction for the Global Operational Resilience program, ensuring alignment with Uber’s organizational objectives and industry standards (e.g., ISO 22301, NIST)
  • Lead enterprise-wide Business Impact Analyses (BIAs) and risk assessments to accurately identify critical functions, services, and interdependencies
  • Evaluate potential threats (e.g., cyberattacks, pandemics, disasters) and their operational impact
  • Govern and maintain enterprise-wide Business Continuity Plans (BCPs) and Disaster Recovery (DR) policies across engineering and operational departments
  • Manage and coordinate regular simulation drills, tabletop exercises, and post-incident reviews
  • Update plans and strategies based on lessons learned
  • Track and drive the remediation of findings from continuity assessments and internal/external audits
  • Identify and assess operational and system vulnerabilities within technical teams to strengthen resilience
  • Implement an enterprise-wide methodology for identifying critical services, setting impact tolerances, assessing associated risks, and defining necessary remediation actions
  • Act as the primary liaison with IT, security, facilities, and various department heads to ensure comprehensive continuity alignment
Read More
Arrow Right

Vice President, Senior ALM Specialist

The Vice President, Asset Liability Management (ALM) is a senior leadership role...
Location
Location
United States Of America , NEW YORK
Salary
Salary:
115000.00 - 160000.00 USD / Year
credit-agricole.com Logo
Crédit Agricole
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor Degree / BSc Degree or equivalent
  • 6 - 10+ years of experience in ALM, Treasury, or Liquidity Risk within a large bank or FBO
  • Demonstrated hands-on experience with: Internal liquidity stress testing (beyond LCR/NSFR)
  • Cash-flow forecasting frameworks
  • CFP design and governance
  • FR 2052a or equivalent granular liquidity reporting
  • Direct exposure to regulatory exams and supervisory dialogue
  • Strong understanding of: U.S. liquidity regulation and supervisory expectations
  • EPS Category IV implications for ALM
  • Interactions between liquidity, funding, capital, and balance sheet strategy
Job Responsibility
Job Responsibility
  • Senior Ownership of Liquidity & Balance Sheet Risk: Own major components of the internal liquidity framework: Internal Liquidity Stress Testing (ILST)
  • Cash-Flow Forecasting (CFF)
  • Survival horizon and liquidity buffer analysis
  • Early Warning Indicators (EWIs)
  • Independently analyze and explain drivers of liquidity risk movements
  • Ensure ALM outputs are logically coherent, consistent over time, and defensible under scrutiny
  • ALCO & Executive Communication: Act as a trusted senior voice in ALCO discussions
  • Draft and deliver clear, structured, regulator-grade written materials for: ALCO decks
  • Senior management memos
  • Internal governance documentation
  • Fulltime
Read More
Arrow Right

Cyber Security Defense Head of Department

The Cyber Security Defense Head of Department (HOD) will lead and mature our org...
Location
Location
United States , Irvine
Salary
Salary:
181240.00 - 259160.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15–20 years of progressive experience across the various cyber defense disciplines (SOC, Incident Response, Red/Blue teams, or similar defensive/offensive functions)
  • Proven experience leading cyber defense teams
  • Demonstrated ability to hire, mentor, and lead high-performing technical teams
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science or a related discipline
  • Strong knowledge of threat detection, incident response, adversary tactics (MITRE ATT&CK), vulnerability management, and secure software development
  • Excellent incident management, communication, and executive reporting skills
  • Proficient in English for effective communication and coordination
  • In the absence of IR team members, utilize a flexible work schedule to facilitate the security incident response process for high/critical incidents
Job Responsibility
Job Responsibility
  • Develop and execute the Cyber Defense strategy aligned with organizational goals, customer requirements and the evolving threat landscapes
  • Establish frameworks, processes, and KPIs for SOC, Incident Response, TVM, AppSec, Red/Blue Teaming, and Adversary Simulation
  • Serve as a senior advisor to the CISO and executive leadership on cyber risks, readiness, and emerging threats
  • Oversee 24x7 SOC operations, ensuring effective monitoring, detection, and response to security events, across levels 1-3
  • Drive continuous enhancement of detection engineering, threat hunting, and security analytics
  • Implement best-in-class security tooling, automation, and operational processes
  • Lead internal Red Team and offensive security capabilities, including penetration testing
  • Define testing methodologies, operational rules of engagement, and reporting standards
  • Translate offensive findings into actionable improvements for defensive teams and architecture
  • Oversee the Incident Response program, ensuring rapid and effective handling of security incidents
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy