Capital One Principal Associate - Script Governance 

United States, Virginia, Richmond 

697884802

This position – Principal Associate, Script Governance – will play a key role in the organization’s second line of defense independent controls review program by helping to establish an enterprise-level governance program for registering scripts, helping to develop and implement adequate controls around scripts and providing training to the first line on how to appropriately govern its scripts. Additionally, this role may provide technical expertise in assessing the overall effectiveness of the company’s technology (including both cybersecurity and technology) controls environment.

As a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributingimmediately.

Essential Functions (Responsibilities):

• Assist in the development of standard requirements for scripts across the enterprise

• Provide guidance and training to the first line on script governance implementation

• Assist in the development of compliance monitoring over script registration and ongoing governance

• Assist with the ongoing second line governance and assurance over the enterprise script governance program

• Perform independent controls review of the company’s cybersecurity and technology control environment

• Perform assessments of first line control testing programs to determine sufficiency of processes and effectiveness of execution

• Provide challenge, expertise and advice on enhancing the design, effectiveness, and maturity of the company’s technology controls and capabilities

• Collaborate effectively with colleagues, stakeholders, and leaders across multiple organizations to achieve objectives

• Coordinate program-related activities and deliverables to ensure effective collaboration within the team and across stakeholder groups

• Communicate in a compelling manner to any audience, including internal and external stakeholders

Basic Qualifications:

• Bachelor’s degree or military experience

• At least 2 years of experience in the development or implementation of technology or data management processes and controls

• At least 1 year of experience with providing oversight and governance over initiatives

• At least 2 years of experience supporting, partnering and interacting with internal or external business clients

Preferred Qualifications:

• Professional security management certifications, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC), Certified Cloud Security Professional (CCSP), AWS Cloud Practitioner Certification

• Experience managing large-scale programs or projects

• Experience working with financial institutions or in financial services

• Experience using automated testing tools

• Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate

• Passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions

• Ability to manage multiple projects while maintaining superior results

• Ability to work individually and as part of a team

• Execution oriented and a self-motivator