The point where experts and best companies meet
Share
General Responsibilities:
Execute and inform processes for monitoring adherence to information security standards with unassailable reporting
Provide reporting and analysis solutions that demonstrate how our Cyber control program is performing
Apply your analytical skills to combine a variety of data sources
Collaborate with peers in Cyber and the enterprise
Perform compliance reviews of risk assessments and relevant testing based on the risks and processes associated with the Cyber area/tool being assessed
Execute governance reviews of Cyber areas including, but not limited to procedures, controls, and requirements
Document processes and procedures, review and analyze evidence, and identify potential issues
Self prioritize and effectively plan your own work activities managing multiple priorities and tasks across the team to deliver quality results. Proactively take on additional work to support the team when possible
Establish and maintain good working relationships during engagement. Effectively communicate information and project process to team and other stakeholders involved
Candidates for this role will have:
An appreciation for clear and concise communication to avoid confusion
Experience working across different stakeholder groups (ex. Business, technology, audit)
Understanding and compassion for the different stakeholders in the risk management framework and the outcomes they hope to achieve
Exceptional communication and collaboration skills
Excellent problem solving and influencing skills
Basic Qualifications:
High School Diploma, GED, or equivalent certification
At least 4 years of information security or risk management experience
At least 3 years of experience in cybersecurity, privacy, or technology industry standards (ISO 27001/27002, NIST 800 series, GLBA, GDPR, FFIEC, COBIT, PCI-DSS, ITIL, or FISMA)
Preferred Qualifications:
Bachelor's degree
1+ years of experience managing policy, standards, procedures, internal controls, risk assessments, exceptions, and internal IT control testing or operational auditing
1+ years of experience in the domain of consulting or advisory
1+ years of experience with building basic SQL queries or dashboards on Tableau or PowerBI
Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Privacy Professional (CIPP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or AWS certifications
. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.
If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
These jobs might be a good fit