Vehicle Security Architect

Apply now »

Date: Apr 4, 2024

Location: Irvine, California, US, 92606

Company: Kia America, Inc.

At Kia, we’re creating award-winning products and redefining what value means in the automotive industry. It takes a special group of individuals to do what we do, and we do it together. Our culture is fast-paced, collaborative, and innovative. Our people thrive on thinking differently and challenging the status quo. We are creating something special here, a culture of learning and opportunity, where you can help Kia achieve big things and most importantly, feel passionate and connected to your work every day.

Kia provides team members with competitive benefits including premium paid medical, dental and vision coverage for you and your dependents, 401(k) plan matching of 100% up to 6% of the salary deferral, and time off starting at 14 days per year. Kia also offers company lease and purchase programs, company-wide holiday shutdown, paid volunteer hours, and premium lifestyle amenities at our corporate campus in Irvine, California.

Status

Exempt

Summary

The Sr. Vehicle Security Architecture Manager is responsible for protecting Kia America (KUS) and affiliated companies from cyberattacks which can result in impaired vehicle operations, disruption in business operations, loss of sensitive data, and/or harm to the company brand. This position will report to the Head of Information Security and play a lead role within the Information Security team. 

This role will be responsible for protecting the safety and security of our vehicles from cyber related threats, including those associated with connected cars, EV cars and specialized equipment. This acting as the subject matter expert for implementing and maintaining robust security measures to protect our vehicles from theft, unauthorized access, and other potential risks. The Senior Manager will design, develop, and implement key vehicle security measures. 

This role will lead the necessary proactive and reactive measures to protect vehicle connectivity systems such as conducting security risk architecture reviews, coordinating vehicle penetration tests and analyzing vehicle system logs.  This role will investigate the security vulnerabilities of vehicle systems and coordinate with responsible teams to provide solutions and methods to remediate them. This role will provide guidance and direction to internal and external parties to conduct root cause analysis and implement corrective and preventive plans.

The Senior Manager works closely with other KUS business leaders, affiliated companies and security service providers to develop optimal solutions for short-term and long-term enhancements of KUS’s connected car security maturity. 
 

Major Responsibilities

1st Priority - 20%

Lead the development and implementation of comprehensive vehicle security protocols and procedures to safeguard against theft, vandalism, and unauthorized access.

2nd Priority - 20%

Direct/Perform the execution of regular risk assessments to identify vulnerabilities and potential security threats related to our vehicles.

3rd Priority - 20%

Oversee the inspection of vehicles for any security vulnerabilities in wireless interfaces, communication to back-end servers, telematics over-the-air updates, sensors, ECUs, and other areas.

4th Priority - 20%

Conduct investigations and create detailed reports on security threats and incidents. Recommends solutions to executive leadership as required and lead InfoSec team members and partners to a resolution. Leads groups to come to a solution and help them understand why measures needs to be put in place. 

5th Priority - 10%

Stay up-to-date with the latest trends and advancements in vehicle security technology, regulations, and industry best practices. Continually update  vehicle security plans, architecture, threats, vulnerabilities, and mitigation plans to ensure Kia’s policies and technology are keeping pace with developing technology and threats. 

6th Priority - 10%

Consult key stakeholders across all business departments and partners on information security matters.

Education/Certification

  • Bachelor’s degree in Computer Science, Engineering or related field
  • Master’s degree preferred.
  • Certification(s) in cyber security (CISSP, CEH, CISA, CISM, or equivalent) preferred

Overall Experience

  • Over 10 years of experience in an organization with mature security processes in a related field

Directly Related Experience

  • A minimum of 5 years of experience in vehicle security or a related field is required
  • In-depth knowledge and practical experience with various vehicle systems, including telematics, CAN bus, remote entry/start, OTA, EV charging are highly desired.
  • 5 years as a manager/lead in automotive industry.
  • Familiar with the latest advancements in vehicle security technology is a plus.
  • Automotive industry work experience is required
  • Familiar with security related regulations and compliance requirements
  • Familiar with the information security auditing process and evidence collection
  • Must be proactive, self-motivated, and lead team to multiple concurrent solutions.
     

Skills

Ability to analyze technical architectures and identify security vulnerabilities then remediation efforts.
Ability to manage external vendors in the development and delivery of related products, programs, and services.
Able to demonstrate evidence recovery techniques, log data analytics, incident categories, IR event handling methodologies, intrusion detection systems, network protocol and packet analysis
Demonstrated leadership skills with technical and non-technical teams.
Excellent verbal and written communication skills with the ability to communicate across all levels of an organization.
Expert level knowledge and understanding of the attack chain, adversary tactics, techniques, and procedures, emerging threats and vulnerabilities.
Leadership skills to effectively lead a functional area and establish new protocols and procedures.
Must be self-initiating; able to work under minimal supervision and under high pressure with multiple same time deadlines.
Solid understanding of secure application development, authentication and access control methods, and network security principles
Strong organizational, planning, analytical, and technical skills.

Competencies

Care for People
Chase Excellence, Every Day
Dare to Push Boundaries
Empower People to Act
Move Further, Together

Pay Range

$114,529 - $165,084

Pay will be based on several variables that are unique to each candidate, including but not limited to, job-related skills, experience, relevant education or training, etc.

 

Equal Employment Opportunities

KUS provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, ancestry, national origin, sex, including pregnancy and childbirth and related medical conditions, gender, gender identity, gender expression, age, legally protected physical disability or mental disability, legally protected medical condition, marital status, sexual orientation, family care or medical leave status, protected veteran or military status, genetic information or any other characteristic protected by applicable law.  KUS complies with applicable law governing non-discrimination in employment in every location in which KUS has offices.  The KUS EEO policy applies to all areas of employment, including recruitment, hiring, training, promotion, compensation, benefits, discipline, termination and all other privileges, terms and conditions of employment.

 

Disclaimer:  The above information on this job description has been designed to indicate the general nature and level of work performed by employees within this classification and for this position.  It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.


Nearest Major Market: Irvine California
Nearest Secondary Market: Los Angeles
Job Segment: Information Security, Architecture, Compliance, Application Developer, Technology, Engineering, Legal, Automotive