Capital One National Association
Senior Audit Manager - Cyber, Risk, & Analysis Technology Audit
Capital One National Association, Mc Lean, Virginia, us, 22107
Overview
Senior Audit Manager - Cyber, Risk, & Analysis Technology Audit. Capital One’s Audit function delivers quality assurance to the organization’s Audit Committee. The team is collaborative, agile, and focused on independent, proactive insights and technology-enabled improvements. Capital One seeks an energetic Technology Senior Manager with experience in evaluating and analyzing technology and cybersecurity risks to join the Tech Audit team. The role focuses on integrated audits and audits of critical technology functions including payment networks support, cloud-based technology implementations, application controls, and cybersecurity risks. Responsibilities
Execute major components of audits, including critical technology functions, cloud-based infrastructure, emerging technology, cybersecurity, risk management, application and third-party management, and lead small to medium-size audits including integrated audits. Perform risk assessments of business units and technology operations; design and execute audit procedures to verify control effectiveness; identify and define issues; review and analyze evidence; document client processes and procedures. Understand the broader financial, legal, reputational, and other risk implications for the business and critical technology functions. Establish and maintain good client relations during engagements. Communicate audit results to management via written reports and oral presentations. Identify client expectations and support the client experience. Prepare clear, organized, and complete documentation to support work performed. Self-prioritize and effectively plan own work activities, managing multiple priorities across the team to deliver quality results. Coordinate with others and proactively take on additional work. Deliver appropriate, succinct, and organized information, tailoring communication to the audience. Communicate information, issues, and audit progress to teammates, clients, and the audit lead. Perform engagement administration, including hours and budget tracking. Provide periodic on-the-job coaching and direct supervision over less experienced associates. Ideal Teammate
You are a critical thinker who seeks to understand the business and its control environment. You value insight and objectivity as core elements of assurance on governance, risk management, and internal controls. You maintain a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious, asking questions and testing assumptions. You develop influential relationships based on shared risk objectives and trust to deliver business impact. You believe a strong understanding of data, innovation, and technology enhances auditing; you leverage data analytics and advance technical expertise. You are a teacher who leads by example, coaches others, and drives change with candor and optimism. You foster an environment of trust, collaboration, and belonging to attract and retain top talent. Qualifications
Basic Qualifications:
Bachelor’s Degree or military experience. At least 7 years in information technology (operations, software delivery, access management, microservices), information security (application/network security, cyber security, data protection), information systems risk management, information systems auditing, or a combination in banking/financial services. At least 4 years of experience leading a team to deliver initiatives or equivalent. At least 4 years of experience managing audit engagements, project management, or equivalent. At least 4 years of experience analyzing data extracts to identify trends and anomalies, including 1 year in test scripting or coding. At least 2 years of experience in cloud computing and controls (design, operation, risk management, or auditing). At least 2 years of people management experience. Preferred Qualifications
Certifications related to Cloud, Cyber, or Technology Operations (e.g., cloud provider certs, CISSP, CISM). Certifications related to Auditing (CIA, CISA). 7+ years of experience with IT control frameworks. 2+ years planning and leading audits; 2+ years auditing cyber or information security; 2+ years auditing emerging technologies. 4+ years of experience in cloud computing (AWS, GCP, Azure) and controls, or 1+ year auditing cloud-based controls. 4+ years in risk and data management; 4+ years performing data analysis in internal auditing. 2+ years of experience with payment technologies (e.g., HPE Nonstop, IBM Mainframe, Mobile Payments, Tokenized services, cloud-based/virtualized environments; Windows and Linux). 2 years of experience in the payments network industry, including MANIC model, network participant roles, PCI standards, and international payment regulations. Note on Sponsorship : Capital One will not sponsor a new applicant for employment authorization for this position. Work Arrangement : This role is hybrid; associates spend 3 days per week in-person at an office listed in the posting. Fridays are enterprise-wide virtual work days. Monday-Thursday are in-person days in team areas. The salary range is listed by location and is intended for candidates hired for work in those locations. Salaries for part-time roles are prorated. Locations listed: Charlotte, NC; Chicago, IL; McLean, VA; New York, NY; Plano, TX; Richmond, VA; Riverwoods, IL. Candidates hired to work in other locations will be paid according to that location’s range. This role may be eligible for performance-based incentive compensation, including cash bonuses and/or long-term incentives. Capital One offers a comprehensive benefits package. Eligibility varies by status and level. For accommodations during the application process, contact Capital One Recruiting at 1-800-304-9102 or via email for recruiting accommodations. Capital One is an equal opportunity employer and maintains a drug-free workplace. References to third-party products or information are not endorsed or guaranteed by Capital One. This posting may reference requirements for Canada, the United Kingdom, or the Philippines based on location. Posts in those regions correspond to local Capital One entities.
#J-18808-Ljbffr
Senior Audit Manager - Cyber, Risk, & Analysis Technology Audit. Capital One’s Audit function delivers quality assurance to the organization’s Audit Committee. The team is collaborative, agile, and focused on independent, proactive insights and technology-enabled improvements. Capital One seeks an energetic Technology Senior Manager with experience in evaluating and analyzing technology and cybersecurity risks to join the Tech Audit team. The role focuses on integrated audits and audits of critical technology functions including payment networks support, cloud-based technology implementations, application controls, and cybersecurity risks. Responsibilities
Execute major components of audits, including critical technology functions, cloud-based infrastructure, emerging technology, cybersecurity, risk management, application and third-party management, and lead small to medium-size audits including integrated audits. Perform risk assessments of business units and technology operations; design and execute audit procedures to verify control effectiveness; identify and define issues; review and analyze evidence; document client processes and procedures. Understand the broader financial, legal, reputational, and other risk implications for the business and critical technology functions. Establish and maintain good client relations during engagements. Communicate audit results to management via written reports and oral presentations. Identify client expectations and support the client experience. Prepare clear, organized, and complete documentation to support work performed. Self-prioritize and effectively plan own work activities, managing multiple priorities across the team to deliver quality results. Coordinate with others and proactively take on additional work. Deliver appropriate, succinct, and organized information, tailoring communication to the audience. Communicate information, issues, and audit progress to teammates, clients, and the audit lead. Perform engagement administration, including hours and budget tracking. Provide periodic on-the-job coaching and direct supervision over less experienced associates. Ideal Teammate
You are a critical thinker who seeks to understand the business and its control environment. You value insight and objectivity as core elements of assurance on governance, risk management, and internal controls. You maintain a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious, asking questions and testing assumptions. You develop influential relationships based on shared risk objectives and trust to deliver business impact. You believe a strong understanding of data, innovation, and technology enhances auditing; you leverage data analytics and advance technical expertise. You are a teacher who leads by example, coaches others, and drives change with candor and optimism. You foster an environment of trust, collaboration, and belonging to attract and retain top talent. Qualifications
Basic Qualifications:
Bachelor’s Degree or military experience. At least 7 years in information technology (operations, software delivery, access management, microservices), information security (application/network security, cyber security, data protection), information systems risk management, information systems auditing, or a combination in banking/financial services. At least 4 years of experience leading a team to deliver initiatives or equivalent. At least 4 years of experience managing audit engagements, project management, or equivalent. At least 4 years of experience analyzing data extracts to identify trends and anomalies, including 1 year in test scripting or coding. At least 2 years of experience in cloud computing and controls (design, operation, risk management, or auditing). At least 2 years of people management experience. Preferred Qualifications
Certifications related to Cloud, Cyber, or Technology Operations (e.g., cloud provider certs, CISSP, CISM). Certifications related to Auditing (CIA, CISA). 7+ years of experience with IT control frameworks. 2+ years planning and leading audits; 2+ years auditing cyber or information security; 2+ years auditing emerging technologies. 4+ years of experience in cloud computing (AWS, GCP, Azure) and controls, or 1+ year auditing cloud-based controls. 4+ years in risk and data management; 4+ years performing data analysis in internal auditing. 2+ years of experience with payment technologies (e.g., HPE Nonstop, IBM Mainframe, Mobile Payments, Tokenized services, cloud-based/virtualized environments; Windows and Linux). 2 years of experience in the payments network industry, including MANIC model, network participant roles, PCI standards, and international payment regulations. Note on Sponsorship : Capital One will not sponsor a new applicant for employment authorization for this position. Work Arrangement : This role is hybrid; associates spend 3 days per week in-person at an office listed in the posting. Fridays are enterprise-wide virtual work days. Monday-Thursday are in-person days in team areas. The salary range is listed by location and is intended for candidates hired for work in those locations. Salaries for part-time roles are prorated. Locations listed: Charlotte, NC; Chicago, IL; McLean, VA; New York, NY; Plano, TX; Richmond, VA; Riverwoods, IL. Candidates hired to work in other locations will be paid according to that location’s range. This role may be eligible for performance-based incentive compensation, including cash bonuses and/or long-term incentives. Capital One offers a comprehensive benefits package. Eligibility varies by status and level. For accommodations during the application process, contact Capital One Recruiting at 1-800-304-9102 or via email for recruiting accommodations. Capital One is an equal opportunity employer and maintains a drug-free workplace. References to third-party products or information are not endorsed or guaranteed by Capital One. This posting may reference requirements for Canada, the United Kingdom, or the Philippines based on location. Posts in those regions correspond to local Capital One entities.
#J-18808-Ljbffr