Senior Associate, Information Security Office (ISO) Consultant

About Capital One

Center 3 (19075), United States of America, McLean, Virginia

Senior Associate, Information Security Office (ISO) Consultant

Capital One is one of the fastest growing organizations in the world today. The growth of the business is being accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. Cybersecurity Risk professionals at Capital One are trusted expert advisers who shape decisions, challenge activities to ensure they meet our standards, and generally oversee technology, cybersecurity, and information security risk across the business and the central technology organization.

Cybersecurity is a strategic priority at Capital One, with heavy engagement from the Board, the Chief Executive Officer, and the executive committee. By joining Capital One, you will be providing these executives with the trusted, independent voice they need to ensure our company’s cybersecurity risks are appropriately managed. The position affords opportunities for substantial growth. The demands and high-visibility nature of this position require an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately.

Job Responsibilities:

• Ensure consistency and develop data-driven assurance practices that will facilitate deeper technical risk reviews in order support strategic decision-making for Cyber and Technology leadership
• Evaluate and standardize various risk sloping & scoring methods for a variety of tech and cyber domains and activities such as Vulnerability Management, Data Security, and Network Security across the enterprise
• Standardize the review of mitigating factors and controls in support of risk management activities so that technology and business teams can prioritize risk reduction activities in order to allow teams to focus on the areas of the greatest impact
• Work cross-functionally with Advisory, Assessment, and Risk Operations functions within the Information Security Office to measure cybersecurity and technology risk
• Work with the Information Security Office leadership team on senior leader initiatives
• Be knowledgeable about Capital One’s Information Security offerings, policies, procedures and standards
• Collaborate effectively with colleagues, stakeholders, and leaders across multiple organizations to achieve strategic objectives.
• Excellent verbal and written communication skills across levels of leadership.

Basic Qualifications:

• High School Diploma, GED or equivalent certification
• At least 2 years of experience working in cybersecurity or information technology
• At least 1 year of experience providing guidance and oversight of cybersecurity concepts

Preferred Qualifications:

• Bachelor’s Degree
• 3+ year of experience performing security risk assessments and security architecture reviews
• Experience utilizing Agile methodologies
• Professional certifications such as AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP)

Visa Sponsorship

At this time, Capital One will not sponsor a new applicant for employment authorization for this position.

Benefits

Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

This role is expected to accept applications for a minimum of 5 business days.

No agencies please. Capital One is an equal opportunity employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex (including pregnancy, childbirth or related medical conditions), race, color, age, national origin, religion, disability, genetic informatio