Logo
Capital One

Senior Director, Advisory & Oversight, Technology Risk Management

Capital One, McLean, VA, United States

Senior Director, Advisory & Oversight, Technology Risk Management

Company: Capital One

Technology Risk Management (TRM) is a growing organization focused on providing expert advice, credible challenge, and effective oversight of information security and technology activities to identify, assess, control, and manage cyber and technology risk throughout the company. This organization plays a critical role in helping to ensure that the company’s risk-taking entities are aware of the risks inherent in their activities and decisions, the impact of their actions on the company at an enterprise level, and opportunities to reduce, mitigate, or avoid risks altogether.

We are currently seeking a dynamic leader with significant experience in engaging with business and technology leaders to identify and mitigate technology risk. This individual will oversee the operational leaders in charge of this execution providing expert advice on design, standards, and best practices via a risk lens.

Job Responsibilities:

  • Provide oversight and challenge to the LOB technology migration activities including strategy, tooling, processes and requirements.
  • Influence Capital One’s LOB technology migration decisions, representing our corporate risk appetite.
  • Work closely with LOB architects, product managers, engineers, and SRE teams to understand our current technologies, processes and approaches and influence change.
  • Advise on appropriate policies and standards to guide our technology migration efforts.

Basic Qualifications:

  • Bachelor’s Degree or military experience.
  • At least 10 years of experience in information security, technology or risk management.
  • At least 4 years of experience with financial payment processes and technologies.

Preferred Qualifications:

  • Cyber or Cloud certification (AWS Solutions Architect Associate or Professional and GCP Professional Cloud Architect, Certified Information Systems Security Professional (CISSP)).
  • Experience with financial sector regulatory practices and second line of defense effective challenge.
  • Experience with performing, documenting, and socializing risk assessments.
  • 3+ years practitioner experience with public cloud technologies (AWS and GCP), cloud tooling and technical practices.
  • Familiarity with NIST Cybersecurity Framework controls (NIST 800-53).

At this time, Capital One will not sponsor a new applicant for employment authorization for this position.

Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being.

This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer committed to diversity and inclusion in the workplace.

#J-18808-Ljbffr