Identity Access Management (IAM) Engineer
Hyundai Capital America

Job Info

---

Description

Who We Are

Through our service brands Hyundai Motor Finance, Genesis Finance, and Kia Finance, Hyundai Capital America offers a wide range of financial products tailored to meet the needs of Hyundai, Genesis, and Kia customers and dealerships. We provide vehicle financing, leasing, subscription, and insurance solutions to over 2 million consumers and businesses. Embodying our commitment to grow, innovate, and diversify, we strive to reimagine the customer and dealer experience and launch innovative new products that broaden our market reach. We believe that success comes from within and are proud to support our team members through skill development and career advancement. Hyundai Capital America is an Equal Opportunity Employer committed to creating a diverse and inclusive culture for our workforce. We are a values-driven company dedicated to supporting both internal and external communities through volunteering, philanthropy, and the empowerment of our Employee Resource Groups. Together, we strive to be the leader in financing freedom of movement.

We Take Care of Our People

Along with competitive pay, as an employee of HCA, you are eligible for the following benefits:

• Medical, Dental and Vision plans that include no-cost and low-cost plan options

• Immediate 401(k) matching and vesting

• Vehicle purchase and lease discounts plus monthly vehicle allowances

• Paid Volunteer Time Off with company donation to a charity of your choice

• Tuition reimbursement

What to Expect

The Sr. Identity Access Management (IAM) Engineer will be responsible for designing, implementing, and maintaining robust IAM systems to ensure secure and efficient access control across the organization. This position will utilize a deep understanding of IAM principles, best practices, and compliance requirements to safeguard sensitive information and support business operations.

What You Will Do

1. Design and Implementation

• Architect and deploy IAM solutions using SailPoint, CyberArk, and PING products to ensure authentication and authorization protocols.

• Design, develop, test, and implement IAM systems and solutions.

• Implement role-based access controls (RBAC) and least privilege principles.

• Oversee the administration of IAM platforms, ensuring high availability and performance.

2. Identify and Resolve Issues

• Identify, analyze, and resolve issues related to identities, systems, access, accounts, authentication, and authorization.

• Respond to security incidents related to IAM and implement corrective actions.

3. Administration

• Perform regular system upgrades, patches, and enhancements.

• Generate reports on IAM metrics, access controls, and compliance status.

• Maintain comprehensive documentation of IAM configurations, workflows, and processes.

4. Collaboration

• Work closely with cross-functional teams to integrate IAM solutions with other enterprise systems.

• Work with stakeholders to understand requirements and drive improvements to IAM systems.

5. Compliance

• Develop and maintain IAM policies, standards, and procedures in alignment with organizational goals and regulatory requirements.

• Conduct regular security assessments and audits to ensure compliance with industry regulations.

Qualifications

What You Will Bring

• Minimum 8 years Identity & Access Management experience with deep understanding of architecture and IAM tools and systems.

• Bachelor's degree in Computer Science, Information Technology, or a related field OR 6+ years of IT Security experience in an IAM functional role.

• Vendor certifications preferred in SailPoint Certified IdentityNow Engineer, CyberArk Defender, or PING Identity Certified Professional.

• Certified Information Systems Security Professional (CISSP); Certified Information Security Manager (CISM); Other relevant IAM or security certifications a plus.

• Strong understanding of IAM concepts, including authentication, authorization, SSO, MFA, and federation.

• Strong understanding of networking protocols, architecture, & infrastructure

• Proven expertise with SailPoint IdentityIQ/IdentityNow, CyberArk PAS solutions, and PING Identity products (PingFederate, PingAccess, PingID).

• Proficiency in security protocols and standards such as SAML, OAuth, OpenID Connect, LDAP, and SCIM.

• Experience with scripting languages (e.g., Python, PowerShell) for automation.

• Familiarity with cloud platforms (AWS, Azure, GCP) and integrating IAM solutions in cloud environments.

• Knowledge of database systems and directory services.

Work Environment

Employees in this class are subject to extended periods of sitting, standing and walking, vision to monitor and moderate noise levels. Work is performed in an office environment.

The posted salary range for this job takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; geographic location, and other business and organizational needs. Successful candidates may be hired anywhere in the salary range based on these factors. It is uncommon to hire candidates at or near the top of the range.

California Privacy Notice

This notice only applies to our applicants who reside in the State of California.

The latest version of our Privacy Policy can be found here. This Privacy Policy provides you with notice, at or before the point of collection, about the categories of personal information to be collected from you, the purposes for which your personal information is collected or used, and whether that information is sold or shared, so that you can exercise meaningful control over our use of your personal information. We are providing this notice to comply with the California Consumer Privacy Act of 2018, as amended as amended by the California Privacy Rights Act of 2020 ("CCPA").

If you have any questions about CCPA regarding California residents or HCA team members, please contact the Privacy Team at Privacy2@hcs.com.

---