Finding the best job has never been easier
Share
At Capital One, you will be a vital contributing member to the cyber risk innovation team responsible for identifying cybersecurity gaps and seams and solutioning on how to address them, to include highlighting the need for new or enhanced projects that create business value and reduce critical cyber risk. You are pragmatic and practical in your understanding of security and associated risks, but also willing to know when to pull in experts to inform your efforts and escalate when necessary. You will work with Technical Program Managers and interface closely with product, engineering, architecture, and line-of-business teams to seek input, socialize and validate proposed solutions, and facilitate agreement on implementation and execution.
Responsibilities:
Support the team on collectively mapping technologies to a standardized framework in order to identify and execute on best practices in risk reduction through the configuration of cybersecurity tools and platforms.
Support the development, modification, and use of capability, risk, or threat classification frameworks and standardization methodologies to facilitate the conduct of correlative capability, maturity, and effectiveness evaluations.
Support the identification and operationalization of cross-programmatic linkages among a.) threats and risks, b.) controls, capabilities, and tooling, and c.) data analytics in order to facilitate initiative prioritization and decisioning on spending and resource allocation.
Support data validation and communications on the impact of identified operational, compliance, process, control, and tooling gaps and potential remediation courses of action to multiple audiences, including leadership, to support the enhancement of their cybersecurity postures.
About You:
You are innovative and experienced in driving change to achieve desired outcomes
You are familiar with capability, risk, or threat classification frameworks and know how to perform qualitative and quantitative analysis.
You have experience with issue identification and corrective action implementation
You are familiar with cybersecurity tool and platform capabilities
You have strong written and verbal communication skills
You are experienced in providing excellent customer and stakeholder service and support
You have strong organizational skills and the ability to drive tasks to completion
You are team-oriented and have the ability to interface effectively with a broad range of people and roles, including upper management and technology leaders
Basic Qualifications:
High School Diploma, GED or equivalent certification
At least 6 years of experience with Information Technology operations
At least 4 years of experience with technology or cyber security risk management frameworks
Preferred Qualifications:
Bachelor's Degree
Professional certifications such as CISSP, AWS Cloud Practitioner, or AWS Certified Solutions Architect
Experience with monitoring, gathering, and assessing artifacts as part of continuous security monitoring (POA&M, MITRE, NIST 800-53)
. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.
If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
These jobs might be a good fit