The point where experts and best companies meet
Capital One Senior Associate Cyber Governance & Risk - Exceptions Analyst United States, Virginia, Arlington 841821098
Share
Responsibilities:
Serve as a Cyber Exceptions Analyst to review and advise on non-compliant scenarios while helping teams find appropriate mitigating factors that better mitigate risk during the non-adherence period as well as finding possible alternatives
Analyze and create dashboards and reports that help your colleagues and leadership better understand the trending issues that drive and trigger Exceptions
Support the development, implementation, and execution of continuous improvement programs, including risk aggregation, issue identification, corrective action implementation, new risk management tools, and results validation
Develop processes and tools that will enhance Cyber’s ability to better identify the impact of Cyber Exceptions to Capital One’s overall risk posture
Effectively communicate the impact of identified operational, compliance, process, control, and tooling gaps and potential remediation courses of action to multiple audiences, including leadership, to support the enhancement of their cybersecurity postures
Stay current on emerging Cloud computing technology vulnerabilities, threats, controls, and potential implications to expose Capital one and integrate that knowledge into you and your colleagues’ workstreams
About You:
You are innovative and experienced in driving change to achieve desired outcomes
You are familiar with risk management and governance, as well as some experience with threats and know how to perform qualitative and quantitative analysis
You have experience with issue identification and corrective action implementation
You have working knowledge of cybersecurity tools and related platform capabilities
You have strong written and verbal communication skills
You are experienced in providing excellent customer and stakeholder service and support
You have strong organizational skills and the ability to drive tasks to completion
You possess the ability to negotiate and influence results without direct authority
You are team-oriented and have the ability to interface effectively with a broad range of people and roles, including upper management and technology leaders
Basic Qualifications:
High school diploma, GED, or equivalent certification
At least 1.5 years of experience with information technology, program management, or risk management
At least 1.5 years of experience with cyber security risk or risk-based frameworks such as ISO 27001, NIST, MITRE ATTACK, MITRE DEFEND, FFIEC, COBIT, PCI-DSS, or FAIR
At least 1.5 years of experience working with or leading cyber risk assessments
At least 1 year of experience working with Cloud Service Providers or their products or services
Preferred Qualifications:
Bachelor's degree
3+ years of experience with cloud risk, governance, controls, and security
3+ years of experience utilizing Agile methodologies
CISSP, CISM, CISA, AWS Cloud Practitioner, AWS Certified Solutions Architect Associate, or AWS Security Certification
. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.
If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
These jobs might be a good fit
