Information Officer jobs in United States, Virginia, Arlington

In this role, you will:

• Perform Independent Risk Management (IRM) oversight, advisory, and credible challenge of CIB financial crimes-related issues, controls and initiatives, ensuring compliance with Bank Secrecy Act (BSA), Anti-Money Laundering (AML), Sanctions regulatory and policy requirements.

• Evaluate long-term implications and consequences of strategic business decisions and recommend appropriate alternatives for risk management.

• Deliver solutions that are long-term, large-scale and require vision, creativity, innovation, advanced analytical thinking, and coordination of highly complex issue-related activities and guidance to key stakeholders and other members of CIB Financial Crimes Advisory.

• Advise CIB functional leaders on customer and product risk, and ensure alignment with Wells Fargo's policies and business line objectives.

• Identify potential risks when implementing change along with developing mitigation strategies and plans.

• Act as an escalation point for complex customer and product issues between 1st and 2nd LOB, issue management and initiatives.

• Determine appropriate strategies and actions of multiple business groups to meet moderate to high complex deliverables in managing financial crimes risk.

• Interpret procedures and processes, and provide leadership to strategize and execute a variety of financial crime programs, services, and initiatives that are significant in scope, complexity, and risk.

• Collaborate with and influence functional business partners, leaders, and executive management to provide support and drive strategic initiatives for the business.

Required Qualifications:

• 7+ years of Financial Crimes, Operational Risk, Fraud, Sanctions, Anti-Bribery, Corruption experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.

Desired Qualifications:

• 7+ years of experience within global financial institutions, regulatory, law enforcement or intelligence community working on international financial crime and emerging risk programs.

• Strong understanding of Anti-Money Laundering regulatory principles covering correspondent banking, wholesale banking, markets, and MSB/Payment portfolios and federal and state money transmitter requirements covering MSBs and Payment Intermediariespreferred.

• Develop strategic and tactical financial crimes risk assessments using data and analytics to inform senior business and financial crime leadership of emerging risk within the CIB platform.

• Collect intelligence from multiple sources (open source, professional networks, etc.) and provide actionable recommendations to senior management.

• Knowledge of United States and International AML and Sanction Regulations as well as emerging financial crimes risk associated with cybercrime andcryptocurrencies.

• Ability to work with multiple teams and stakeholders to deliver on company objectives.

• Experienced communicator at all levels within an organization from senior executives to junior staff.

• Strong written communication who is able to provide guidance and supportive feedback to business and operational teams on company policies and procedures.

• Bilingual speaking, reading, and writing proficiency in: Spanish, Arabic, or Mandarin.

Job Expectations:

• Willingness to work on-site at stated location on the job opening.

• This position offers a hybrid work schedule.

• This position is not eligible for Visa sponsorship.

• This position is subject to FINRA Background Screening Requirements, including successful completion and clearing of a background check. Internal transfers are subject to compliance with 17 CFR 240.17f-2 of the Securities Exchange Act of 1934 and FINRA Bylaws, Article III, Section 3, which states that Associated Persons should not be subject to statutory disqualification. Successful candidates must also meet ongoing regulatory requirements including additional screening and are required to report certain incidents.

401 S Tryon Street, Charlotte, NC

1753 Pinnacle Dr, Mclean, VA

401 Las Colinas Blvd W, Bldg B, Irving, TX

Texas – Irving Pay Range: $159,000.00 - 254,000.00 USD Annually

North CarolinaCharlotte Pay Range:$159,000.00 - 254,000.00 USD Annually

VirginiaMcLean Pay Range: $191,000.00 - 305,000.00 USDAnnually

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

Responsibilities:

• Be a leader at a premiere technology and financial services company

• Lead a team of Product Security advisory professionals, responsible for Divisional cyber strategy integration and execution, identification and management of risk for top business initiatives and technology platforms, threat and vulnerability management, incident management, supply chain cyber risk management, cyber risk oversight and reporting.

• Deliver Cyber agenda and integration of Information Security within business objectives for line of business area

• Serve as the central point of contact for your line of business technology executives into Capital One’s Cyber risk management priorities

• Educate and influence executive leadership and associates to effectively leverage security capabilities and solutions to mitigate risks and emerging threats

• Provide security expertise on prioritizing and managing information security risks and initiatives

• Escalate and manage cyber security risk

• Provide regular updates to executive leadership with your line of business on the overall information security health and risk environment

• Work with business leadership to anticipate their objectives and needs to better serve them

• Be an advocate for security and an advocate for the business and digital innovation. Instills a culture that works toward the highest standards in cyber (safeguard the business) while ensuring that business requirements are understood and adhered to (enabling the business).

• Plays a key leadership role within Cyber’s community of leaders, drives innovation activity as an outcome; partner extensively with other Cyber and Technology organizations to derive solutions enabling industry leading products

• Build relationships and influence with risk management functions across lines of defense

• Become knowledgeable and advise on Capital One’s Cyber’s services, policies, procedures and standards

• Staying current on the changing regulatory environment and understanding the impacts to the organization

• Recruits, develops, and retains top talent, and uses excellent people leadership skills.

• Build your team to provide top-notch information security and risk management expertise and guidance

About You:

• You are a demonstrated leader with team-oriented interpersonal skills and the ability to interface effectively with a broad range of people and roles, including business executives, technology leaders, and enterprise suppliers

• You are a focused individual who thrives in a fast-paced, dynamic, and collaborative team environment.

• You have a deep passion for securing forward leaning, modern computing platforms

• You have intuitive knowledge and experience with Offensive and Defensive Security techniques

• You are comfortable with technologies and innovation including, Generative AI, Data Lakes, Cloud Services, Containers, Microservices, Serverless, APIs, DevOps, Encryption and Zero Trust

• You have a strong desire to continually learn about new technologies

• You enjoy leveraging your engineering experience to problem solve and continually learn new technology concepts to solve issues.

• You display strong judgment, data/risk based decisioning, leadership, integrity, and communication skills.

• You are able to tailor communications and analysis to the intended audience.

• You have a passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions.

• You maintain calmness and clarity of thought under pressure and ability to maintain confidentiality

• You are able to work well under minimal supervision

• You have a deep understanding of strategic business objectives and the ability to drive results toward those objectives

• You have the ability to describe the risks of a security exposure or vulnerability in business-impact terms

Basic Qualifications:

• Bachelor's degree

• At least 9 years of experience in Information Security

• At least 7 years of experience in people management

• At least 5 years of experience with cyber policies, standards, and procedures

• At least 5 years of experience in securing public cloud environments and services (AWS, GCP, Azure)

Preferred Qualifications:

• Masters degree or PhD in Computer Science, Information Systems, or Engineering

• 10+ years experience in technology and cybersecurity risk

• 8+ years experience in leading applications security, vulnerability management and incident response

• 8+ years experience performing security risk assessments

• 5+ years experience in security automation and integrating security into software development pipelines

• 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS)

• 3+ years experience with information technology audit or compliance management

• 2+ years in payment security including securing digital payments and payment cryptography

• 2+ years experience utilizing agile methodologies within DevOps environments

• Industry-recognized professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), AWS Certified Solutions Architect, Certified Information Security Manager (CISM)

• 4+ years experience in a regulated environment

• 2+ years experience in financial services industry

. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.

Director, Information Security Officer, you will lead security for one of our key lines of business. You will work with business and technology partners to achieve goals and objectives in a secure manner with a heavy forward lean on modern software and technology architectures. At Capital One, you will help advise on strategic initiatives, programs, and projects to create business value in a risk-based and agile manner. You will build and lead a team of talented and experienced Information Security professionals delivering product security advisory services to a line of business portfolio. You are pragmatic and practical in your understanding of security and associated risks, but also willing to know when to collaborate with experts and escalate as required. You believe in making the secure way easy and see yourself as an advocate in the value of data driven business decisions and products. You are comfortable with modern software, big data ecosystems, and cloud based technologies as well as associated protective methods.

Responsibilities:

• Be a leader at a premiere technology and financial services company

• Build cybersecurity strategy tailored for the line of business, partnering closely with business leaders, the Divisional CIO, and cybersecurity leaders across the company.

• Lead a team of Product Security advisory professionals, responsible for Divisional cyber strategy integration and execution, identification and management of risk for top business initiatives and technology platforms, threat and vulnerability management, incident management, supply chain cyber risk management, cyber risk oversight and reporting.

• Deliver Cyber agenda and integration of Information Security within business objectives for line of business area

• Serve as the central point of contact for your line of business technology executives into Capital One’s Cyber risk management priorities

• Educate and influence executive leadership and associates to effectively leverage security capabilities and solutions to mitigate risks and emerging threats

• Provide security expertise on prioritizing and managing information security risks and initiatives

• Escalate and manage cyber security risk

• Provide regular updates to executive leadership with your line of business on the overall information security health and risk environment

• Work with business leadership to anticipate their objectives and needs to better serve them

• Plays a key leadership role within Cyber’s community of leaders, drives innovation activity as an outcome; partner extensively with other Cyber and Technology organizations to derive solutions enabling industry leading products

• Build relationships and influence with risk management functions across lines of defense

• Become knowledgeable and advise on Capital One’s Cyber’s services, policies, procedures and standards

• Staying current on the changing regulatory environment and understanding the impacts to the organization

• Recruits, develops, and retains top talent, and uses excellent people leadership skills.

• Build your team to provide top-notch information security and risk management expertise and guidance

About You:

• You are a demonstrated leader with team-oriented interpersonal skills and the ability to interface effectively with a broad range of people and roles, including business executives, technology leaders, and enterprise suppliers

• You are a focused individual who thrives in a fast-paced, dynamic, and collaborative team environment.

• You have a deep passion for securing forward leaning, modern computing platforms

• You are comfortable with technologies and innovation including Generative AI, Data Lakes, Cloud Services, Containers, Microservices, Serverless, APIs, DevOps, Encryption and Zero Trust

• You have a strong desire to continually learn about new technologies

• You enjoy leveraging your engineering experience to problem solve and continually learn new technology concepts to solve issues.

• You display strong judgment, data/risk based decisioning, leadership, integrity, and communication skills.

• You are able to tailor communications and analysis to the intended audience.

• You have a passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions.

• You maintain calmness and clarity of thought under pressure and ability to maintain confidentiality

• You are able to work well under minimal supervision

• You have a deep understanding of strategic business objectives and the ability to drive results toward those objectives

• You have the ability to describe the risks of a security exposure or vulnerability in business-impact terms

Basic Qualifications:

• Bachelor's degree

• At least 7 years of experience in Information Security

• At least 5 years of experience in people management

• At least 5 years of experience with cyber policies, standards, and procedures

• At least 5 years of experience in securing public cloud environments and services (AWS, GCP, Azure)

Preferred Qualifications:

• Masters degree or PhD in Computer Science, Information Systems, or Engineering

• 10+ years experience in information technology and cybersecurity

• 7+ years experience in leading applications security, vulnerability management and incident response

• 7+ years experience performing security risk assessments

• 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS)

• 2+ years experience utilizing agile methodologies within DevOps environments

• Industry-recognized professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), AWS Certified Solutions Architect, Certified Information Security Manager (CISM)

• 4+ years experience in a regulated environment

• 2+ years experience in financial services industry

• 2+ years of experience with modern Payment network security technologies

• 2+ years of experience in security integration for Mergers and Acquisitions

. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.

Responsibilities:

• Act as a central point of contact for your line of business to the rest of Capital One’s Information Security and Risk Management

• Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management

• Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards

• Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes

• Escalate and manage cyber security risk

• Provide ad hoc support on special Information Security hot topics for the business

• Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment

• Work with line of business leadership to anticipate their objectives and needs to better serve the line of business

About You:

• You have a desire to work in a very fast moving, forward leaning, and modern computing environment

• You have a deep passion for Securing modern computing platforms

• You have a strong desire to continually learn about new technologies

• You possess strong conceptual thinking and communication skills

• You are able to work well under minimal supervision

• You are a demonstrated leader with team-oriented interpersonal skills and the ability to interface effectively with a broad range of people and roles, including upper management, IT leaders, and technology vendors

• You maintain calmness and clarity of thought under pressure and ability to maintain confidentiality

• You have a deep understanding of strategic business objectives and the ability to drive results toward those objectives

Basic Qualifications:

• High School Diploma, GED, or equivalent certification

• At least 4 years of experience providing guidance and oversight of Security concepts

• At least 3 years of experience performing security risk assessments and security architecture reviews

• At least 3 years of experience with Architecture design, software design, networking or Cloud infrastructure

Preferred Qualifications:

• Bachelor’s Degree

• 6+ years of experience with Architecture design, software design, networking or Cloud infrastructure

• 4+ years of experience in securing a public cloud environment (AWS, GCP, or Azure)

• 2+ years of experience utilizing Agile methodologies

• 2+ years of experience in Enterprise Monitoring

• 2+ years of experience with technologies supporting finance, fintech, banking, payment cards, or a related domain

• 2+ years of experience with web and mobile application security, and solid understanding of the OWASP Top Ten

• 2+ years of experience with security testing, such as penetration testing, red teaming, vulnerability scanning, SAST and DAST

• 2+ years of scripting or programming experience (Python, SQL, PHP, PowerShell)

• Professional certifications such as AWS Certified Solutions Architect or Certified Information Systems Security Professional (CISSP)

. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.

Responsibilities:

The Senior Lead ISO Consultant will provide cyber security architecture advisory support needed to build the Technology & Business capabilities on a novel Modern platform, that will enable customer set-up, use, and management of a Capital One Credit Card, including Data Product. In this role, the responsibilities will include:

• Act as a central Information Security point of contact for the Global Payment Networks line of business

• Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management

• Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards

• Collaborating with enterprise cyber teams and tech architects in defining and driving the cyber architecture strategy and guiding principles for the architecting and designing of the modern platforms.

• Support security architecture and implementation needs for technology modernization efforts

• Overseeing all cyber related dependencies across the multiple components being built for the modernization effort.

• Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes

• Escalate and manage cyber security risk

• Provide ad-hoc support on special Information Security hot topics for the business

• Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment

• Work with line of business leadership to anticipate their objectives and needs to better serve the line of business

• Support the team on collectively mapping technologies to a standardized framework in order to identify and execute on best practices in risk reduction through the configuration of cybersecurity tools and platforms.

• Support the development, modification, and use of capability, risk, or threat classification frameworks and standardization methodologies to facilitate the conduct of correlative capability, maturity, and effectiveness evaluations.

• Support data validation and communications on the impact of identified operational, compliance, process, control, and tooling gaps and potential remediation courses of action to multiple audiences, including leadership, to support the enhancement of their cybersecurity postures.

About You:

• You have a desire to work in a very fast moving, forward leaning, and modern computing environment

• You have a deep passion for Securing modern computing platforms

• You have a strong desire to continually learn about new technologies

• You possess strong conceptual thinking and communication skills

• You are able to work well under minimal supervision

• You are a demonstrated leader with team-oriented interpersonal skills and the ability to interface effectively with a broad range of people and roles, including upper management, IT leaders, and technology vendors

• You maintain calmness and clarity of thought under pressure and ability to maintain confidentiality

• You have a deep understanding of strategic business objectives and the ability to drive results toward those objectives

Basic Qualifications:

• High School Diploma, GED or equivalent certification

• At least 6 years of experience working in cybersecurity or information technology

• At least 5 years of experience providing guidance and oversight of cyber security concepts

• At least 5 years of experience performing cyber security risk assessments or cyber security architecture reviews

• At least 4 years of experience with cloud security

Preferred Qualifications:

• Bachelor’s Degree

• 7+ years of experience in securing a public cloud environment (AWS, GCP, Azure)

• 6+ years of cyber security advisory and technology consulting experience

• 6+ years of experience in Cyber Risk Management

• 3+ years of experience on cryptography, HSMs and similar systems

• Knowledge of HPNS, ATM, Mainframe technologies and other payment networks infrastructure technologies

• Experience in security integration for Mergers and Acquisitions

• Experience with PCI and Payment Network Compliance.

• Professional certifications AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP)

. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.