Capital One Director / Assistant General Counsel - Cyber Business 

United States, Virginia, Arlington 

318005984

About the Role:

As a Capital One Cybersecurity counsel, you will have an opportunity to directly influence how Capital One responds to a constantly evolving threat landscape, while navigating a rapidly changing set of laws and regulations that govern our preparedness and response. You will actively partner with Capital One’s cyber organization to brainstorm and problem-solve in ways that anticipate and mitigate legal, operational, and reputational risk. Because our work is increasingly interdisciplinary, it requires an entrepreneurial approach … and this is what makes it fun. Your legal advice and strategic counsel will be informed by active collaboration with stakeholders from across the enterprise, and you’ll do it in an environment that values your insight, promotes continuous learning, and rewards creative thinking.

To succeed in this role:

• You are someone who craves meaning in your work, and are eager to drive solutions that reduce risk to our company.

• You are an engagement multiplier who is both pragmatic and practical. You view your role as not only a lawyer, but as a trusted business advisor who enables your clients to achieve core objectives in a way that is legally supported and well-managed.

• You are a self-starter who thrives in a fast-paced environment, exercising judgment and discretion as you prioritize (and sometimes reprioritize) myriad time-sensitive matters.

• You are comfortable being uncomfortable. You’re not afraid to lean into gray space when situations are unfamiliar, digging in to understand and focus on what really matters.

• You are an effective translator. You can communicate regulatory requirements and legal guardrails to developers and engineers just as easily as you can deconstruct complex technical subjects in a way that other lawyers can understand and appreciate.

• You bring an ownership mentality to your work. You want to be in the trenches with your clients, and will not hesitate to pull in legal colleagues to ensure that your clients reap the full benefit of our amazing legal department’s experience and expertise.

Specific responsibilities include, but are not limited to:

• Legal counsel to the cybersecurity organization and leadership, specifically the cybersecurity operations center, insider threat and technical investigations teams, red team, pen testing activities and more.

• Guide and provide ongoing counsel to cyber incident response investigations, ensuring that the company is meeting all regulatory and contractual notification obligations and investigative steps are carried out in a manner that minimizes litigation and regulatory risk.

• Review of board reports, executive committee presentations, regulatory filings, and other legal disclosures to ensure accuracy and completeness of cyber legal representations.

• Serve as a critical partner to cyber operations, intelligence, technology risk management, and compliance professionals in their collective efforts to maintain a cybersecurity program that timely detects, investigates, contains, and mitigates threats to Capital One customers, associates, and confidential information.

• Support cybersecurity and technology tabletop exercises and simulated incidents.

• Monitor the cyber legal and legislative landscape for key developments and actionable guidance that helps to inform business decisions, seize opportunities, and position stakeholders to overcome future legal and policy related challenges.

• Maintain strong relationships and lines of communication with business partners and other key stakeholders across the organization.

Basic Qualifications:

• Juris Doctor from an accredited law school

• Active member in good standing of at least one state bar

• At least seven 7 years of experience as an attorney in a law firm, in-house legal department, or government agency.

Preferred Qualifications:

• 5 + years of legal experience supporting a technology or information security team

• Knowledge with the cyber threat landscape

• Knowledge of government or corporate investigations

• Experience with U.S. cybersecurity laws and regulations (e.g., Computer Fraud and Abuse Act, Cybersecurity Information Sharing Act) and general familiarity with global cybersecurity laws, regulations, and standards

• Knowledge of federal and state privacy laws

• Knowledge of U.S. cybersecurity standards, frameworks, risk assessments and certification processes (e.g., SOC 1 & 2, NIST Cybersecurity Framework, PCI DSS)

• Previous experience in the financial industry a plus, but not required

This role is hybrid meaning associates spend 3 days per week in-person at one of our offices listed on this job posting. Fridays are enterprise-wide virtual work days. Monday, Tuesday, Wednesday and Thursday are options for in-person days for associates to spend time together working in our beautifully designed team areas.

McLean, VA: $226,000 - $257,900 for Director, Asst General Counsel Richmond, VA: $205,400 - $234,400 for Director, Asst General CounselThis role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan.

. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.