Capital One National Association
Cyber Risk and Analysis Lead
Capital One National Association, Chicago, Illinois, United States, 60290
Cyber Risk and Analysis Lead
Capital One is seeking an energetic, self-motivated Risk and Analysis Manager with experience evaluating and analyzing technology and cybersecurity risks interested in becoming part of our Cyber team.
Responsibilities
Write comprehensive cybersecurity risk assessments identifying threats & vulnerabilities and recommend remediation.
Conduct formal, systematic threat modeling of IT systems using STRIDE methodology.
Apply deep knowledge of procedure-based controls of a cybersecurity program including qualitative risk analysis steps, vulnerability and patch management, threat modeling, Identity and Access Management (IAM), cybersecurity frameworks (NIST CSF, PCI-DSS and CIS).
Practice expert level assessment skills using technology-based controls of a cybersecurity program including cloud security, Artificial Intelligence / GenAI risks, penetration testing results, cryptography & network security fundamentals, malware defense, data loss prevention and endpoint security.
Compile professional security assessment reports, slides, and lead discussions to effectively communicate the risks and remediation options to partners.
Demonstrate sound knowledge of Incident Management Respond and Recover functions from a cyber resiliency perspective.
Basic Qualifications
High School Diploma, GED, or equivalent certification
At least 4 years of cybersecurity risk management experience
At least 4 years of experience troubleshooting end user issues
Preferred Qualifications
Bachelor's Degree
6+ years in cybersecurity
5+ years in 3rd party vendors risk assessment
2+ years of experience with Zero Trust architecture
2+ years of experience assessing security for cloud platforms such as SaaS, PaaS, and IaaS
2+ years of experience in network, OS, and Database security administration
CISM Certification
CISSP Certification
At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer).
Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.
Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate’s offer letter.
Chicago, IL: $144,000 - $164,400 for Manager, Cyber Risk & Analysis McLean, VA: $158,400 - $180,800 for Manager, Cyber Risk & Analysis Plano, TX: $144,000 - $164,400 for Manager, Cyber Risk & Analysis Richmond, VA: $144,000 - $164,400 for Manager, Cyber Risk & Analysis
Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City’s Fair Chance Act; Philadelphia’s Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.
#J-18808-Ljbffr
Responsibilities
Write comprehensive cybersecurity risk assessments identifying threats & vulnerabilities and recommend remediation.
Conduct formal, systematic threat modeling of IT systems using STRIDE methodology.
Apply deep knowledge of procedure-based controls of a cybersecurity program including qualitative risk analysis steps, vulnerability and patch management, threat modeling, Identity and Access Management (IAM), cybersecurity frameworks (NIST CSF, PCI-DSS and CIS).
Practice expert level assessment skills using technology-based controls of a cybersecurity program including cloud security, Artificial Intelligence / GenAI risks, penetration testing results, cryptography & network security fundamentals, malware defense, data loss prevention and endpoint security.
Compile professional security assessment reports, slides, and lead discussions to effectively communicate the risks and remediation options to partners.
Demonstrate sound knowledge of Incident Management Respond and Recover functions from a cyber resiliency perspective.
Basic Qualifications
High School Diploma, GED, or equivalent certification
At least 4 years of cybersecurity risk management experience
At least 4 years of experience troubleshooting end user issues
Preferred Qualifications
Bachelor's Degree
6+ years in cybersecurity
5+ years in 3rd party vendors risk assessment
2+ years of experience with Zero Trust architecture
2+ years of experience assessing security for cloud platforms such as SaaS, PaaS, and IaaS
2+ years of experience in network, OS, and Database security administration
CISM Certification
CISSP Certification
At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer).
Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.
Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate’s offer letter.
Chicago, IL: $144,000 - $164,400 for Manager, Cyber Risk & Analysis McLean, VA: $158,400 - $180,800 for Manager, Cyber Risk & Analysis Plano, TX: $144,000 - $164,400 for Manager, Cyber Risk & Analysis Richmond, VA: $144,000 - $164,400 for Manager, Cyber Risk & Analysis
Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City’s Fair Chance Act; Philadelphia’s Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.
#J-18808-Ljbffr