Capital One Manager Cyber Business Risk 

United States, Virginia, Arlington 

340728052

At Capital One, you will be a vital contributing member to the cyber risk innovation team responsible for identifying cybersecurity gaps and seams and solutioning on how to address them, to include highlighting the need for new or enhanced projects that create business value and reduce critical cyber risk. You are pragmatic and practical in your understanding of security and associated risks, but also willing to know when to pull in experts to inform your efforts and escalate when necessary. You will work with Technical Program Managers and interface closely with product, engineering, architecture, and line-of-business teams to seek input, socialize and validate proposed solutions, and facilitate agreement on implementation and execution.

Responsibilities:

• Support the team on collectively mapping technologies to a standardized framework in order to identify and execute on best practices in risk reduction through the configuration of cybersecurity tools and platforms.

• Support the development, modification, and use of capability, risk, or threat classification frameworks and standardization methodologies to facilitate the conduct of correlative capability, maturity, and effectiveness evaluations.

• Support the identification and operationalization of cross-programmatic linkages among a.) threats and risks, b.) controls, capabilities, and tooling, and c.) data analytics in order to facilitate initiative prioritization and decisioning on spending and resource allocation.

• Support data validation and communications on the impact of identified operational, compliance, process, control, and tooling gaps and potential remediation courses of action to multiple audiences, including leadership, to support the enhancement of their cybersecurity postures.

About You:

• You are innovative and experienced in driving change to achieve desired outcomes

• You are familiar with capability, risk, or threat classification frameworks and know how to perform qualitative and quantitative analysis.

• You have experience with issue identification and corrective action implementation

• You are familiar with cybersecurity tool and platform capabilities

• You have strong written and verbal communication skills

• You are experienced in providing excellent customer and stakeholder service and support

• You have strong organizational skills and the ability to drive tasks to completion

• You are team-oriented and have the ability to interface effectively with a broad range of people and roles, including upper management and technology leaders

Basic Qualifications:

• High School Diploma, GED or equivalent certification

• At least 6 years of experience with Information Technology operations

• At least 4 years of experience with technology or cyber security risk management frameworks

Preferred Qualifications:

• Bachelor's Degree

• Professional certifications such as CISSP, AWS Cloud Practitioner, or AWS Certified Solutions Architect

• Experience with monitoring, gathering, and assessing artifacts as part of continuous security monitoring (POA&M, MITRE, NIST 800-53)

New York City (Hybrid On-Site): $163,300 - $186,400 for Manager, Cyber Risk & AnalysisThis role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.