Capital One Risk Manager SOC ISO 

United States, Virginia, Richmond 

490886630

Risk Manager (SOC 2, ISO)

You will:

• Serve as interdepartmental liaison, interfacing with lines of business and staff functions such as HR and other areas of Risk

• Gather data and reporting; perform initial analysis or potentially evaluate data provided by team analysts

• Design and implement internal governance processes

• Perform process and technology risk assessments to determine the optimal control mix for the products pursuing an engagement (SOC 2)

• Interpret, communicate, and present appropriate control design to senior leadership.

• Influence leadership with recommendations for Controls and Process improvements on an ongoing basis.

• Evaluate control deviations and their impact on management's opinion over the design, implementation, and operating effectiveness of the controls in place to address the frameworks we pursue.

• Draft Management Responses that are presented within Attestation Reports.

• Partner with the product teams to answer any customer inquiries on issues listed within an attestation report.

• Facilitate evidence requests made by external auditors to support their independent attestation requirements.

• Provide advisory to control owners on ensuring the evidence they are submitting will meet the needs of the auditors.

• Partner with external auditors to establish evidence collection timelines and deadlines.

The associate should be able to:

• Be well organized and able to manage multiple requests

• Demonstrate strong ability to analyze information and data and leverage to support recommendations

• Work in collaboration across multiple teams while maintaining business relationships

• Develop and communicate quality recommendations to the program

• Demonstrate strong subject matter expertise and sound judgment to align appropriate risk level

• Work with diverse contacts throughout Capital One

• Communicate technical issues to non-technical people

• Demonstrate strong problem-solving and conceptual thinking abilities

• Demonstrate capacity to think broadly but go deep into subject matter when needed
  

Basic Qualifications:

• High School Diploma, GED, or equivalent certification

• At least 4 years of experience with Internal Controls, Risk Management, or Audit

• At least 2 years of experience in identifying and assessing IT general, IT application, data movement, and systems implementation controls

Preferred Qualifications:

• Bachelor’s Degree

• 5+ years of experience in Auditing and Control Evaluation

• 1+ years of experience with Cloud technologies (AWS, Azure, or GCP)

• CISA, CISSP, or CRISC certification
  

Plano, TX: $132,800 - $151,600 for Risk Manager McLean, VA: $146,100 - $166,700 for Risk Manager Richmond, VA: $132,800 - $151,600 for Risk ManagerThis role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan.

. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.