Capital One Sr Director Cyber Risk & Analysis Retail Bank 

United States, Virginia, Arlington 

9978045

Responsibilities:

• Possesses an understanding of technology systems at an aggregate level, including networks, applications, cloud computing, and data.

• Maintains a broad understanding of relevant operating systems and their respective vulnerabilities in order to quickly identify the severity of potential issues [doesn't just know how the tools and reports work, but also how to recognize risk].

• Demonstrates a broad understanding of major categories of cyber threats, how those threats can occur in our environment, and the measures required to safeguard the enterprise.

• Leverages reporting & tools [doesn't build them] to perform analysis on different types of projects, efforts, or datasets & uses data to inform policies and drive change. Understands associated reporting metrics and is able to inform on cyber risk.

• May use code to perform and/or automate analysis and repeatable tasks, but not a baseline requirement for the role. Leverages tools [e.g. Excel/Gsheets] to analyze data and create charts to support cyber risk management efforts.

• Quickly and accurately analyzes data, assesses risk, & prioritizes published vulnerabilities and potential risks to differentiate critical, high-risk, and low-risk issues, and escalate as appropriate.

• Researches, assembles, and/or evaluates information regarding industry practices or applicable regulatory changes affecting cyber security policies or programs; recommends sound, practical solutions to complex issues.

• Makes recommendations regarding changes to policy, procedures, and control programs to mitigate evolving risks.

• Effectively self-challenges cyber control programs as part of first line duties and escalates risks where appropriate.

• Demonstrates sound lifecycle program management to include documenting and communicating action plans, impediments and risks, and stakeholder engagement.

• Reports on vulnerability assessment to ensure proper functionality and alignment with Information Security Standards [able to understand and explain, but not required to resolve].

• Advises Accountable Executives of cyber-related risk on a consistent basis via relevant risk forums and through existing processes such as exception and issue management.

• Keeps pace with evolving cyber threat landscape to ensure ongoing relevance of cyber risk mitigation and has knowledge of leading Technology and Cybersecurity frameworks

Basic Qualifications:

• Bachelor's Degree or military experience

• At least 7 years of experience with Technology or Cyber Security Risk Management

• At least 7 years of experience in People Management

Preferred Qualifications:

• Master’s Degree

• Process or Project Management certification (i.e. Lean, Six Sigma, PMP), Business Management certification

• 10+ years of experience with Technology or Cyber Security Risk Management

• 9+ years of experience in People Management

. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.