Capital One
Do you love building and pioneering in the technology space? Do you enjoy solving complex business problems in a fast-paced, collaborative, inclusive and iterative delivery environment? At Capital One, you’ll be part of a big group of makers, breakers, doers and disruptors who love to solve real problems and meet real customer needs. We are seeking Cyber Security Engineers who are passionate about marrying data with emerging technologies to join our team. As a Cyber Security Engineer, you’ll have the opportunity to be on the forefront of driving a major transformation within Capital One.
Responsibilities
Optimize cybersecurity program processes and output.
Contribute to the broader program roadmap.
Drive reporting accuracy and demand excellence in department deliverables.
Actively manage and elevate risk and customer-impacting issues within the day-to-day role to management.
Manage and execute cybersecurity risk assessments using qualitative and quantitative methodologies to support the organization’s overall security posture.
Maintain an awareness of emerging cybersecurity threats by analyzing and reporting on cybersecurity risk against various Cybersecurity Frameworks (NIST CSF, NIST 800-53, PCI DSS).
Perform in-depth analysis of security issues and vulnerabilities using tools including WhiteHat, Veracode, and Qualys to ensure compliance with audit, regulatory and legal requirements.
Design metrics and develop advanced capabilities to ensure confidentiality, integrity, availability, authentication, and non-repudiation to communicate elevated risk in a business friendly manner to Cybersecurity Leadership and 2nd line partners.
Proactively identify and report control deficiencies as issues within action plans.
Conduct strategic and operational effectiveness assessments as required for cyber events, and regulatory and audit reviews.
Utilize ServiceNow and Cyber Risk System for risk management and risk remediation, processing potential security exceptions and/or risk acceptances against established security policies and standards.
Gather and challenge data, evidence, or statuses for accuracy to achieve initiative and risk mitigation completion.
Basic Qualifications
High School Diploma, GED, or equivalent certification
At least 4 years of cybersecurity experience
At least 4 years of experience in Mainframe Security Risk Assessment & Remediation
Preferred Qualifications
Bachelor’s Degree
6+ years in Identity and Access Management
4+ years of experience in RACF Administration (z/OS 2.1 and above)
4+ years of experience issuing RACF and Top Secret Commands & Diagnostic Expertise
4+ years of Privilege Access Management (CyberArk, SailPoint IIQ)
GIAC
CISSP
At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer).
Remote (Regardless of Location): $175,800 - $200,700 for Manager, Cyber Technical Chicago, IL: $175,800 - $200,700 for Manager, Cyber Technical McLean, VA: $193,400 - $220,700 for Manager, Cyber Technical Plano, TX: $175,800 - $200,700 for Manager, Cyber Technical Richmond, VA: $175,800 - $200,700 for Manager, Cyber Technical.
Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.
Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.
#J-18808-Ljbffr
Responsibilities
Optimize cybersecurity program processes and output.
Contribute to the broader program roadmap.
Drive reporting accuracy and demand excellence in department deliverables.
Actively manage and elevate risk and customer-impacting issues within the day-to-day role to management.
Manage and execute cybersecurity risk assessments using qualitative and quantitative methodologies to support the organization’s overall security posture.
Maintain an awareness of emerging cybersecurity threats by analyzing and reporting on cybersecurity risk against various Cybersecurity Frameworks (NIST CSF, NIST 800-53, PCI DSS).
Perform in-depth analysis of security issues and vulnerabilities using tools including WhiteHat, Veracode, and Qualys to ensure compliance with audit, regulatory and legal requirements.
Design metrics and develop advanced capabilities to ensure confidentiality, integrity, availability, authentication, and non-repudiation to communicate elevated risk in a business friendly manner to Cybersecurity Leadership and 2nd line partners.
Proactively identify and report control deficiencies as issues within action plans.
Conduct strategic and operational effectiveness assessments as required for cyber events, and regulatory and audit reviews.
Utilize ServiceNow and Cyber Risk System for risk management and risk remediation, processing potential security exceptions and/or risk acceptances against established security policies and standards.
Gather and challenge data, evidence, or statuses for accuracy to achieve initiative and risk mitigation completion.
Basic Qualifications
High School Diploma, GED, or equivalent certification
At least 4 years of cybersecurity experience
At least 4 years of experience in Mainframe Security Risk Assessment & Remediation
Preferred Qualifications
Bachelor’s Degree
6+ years in Identity and Access Management
4+ years of experience in RACF Administration (z/OS 2.1 and above)
4+ years of experience issuing RACF and Top Secret Commands & Diagnostic Expertise
4+ years of Privilege Access Management (CyberArk, SailPoint IIQ)
GIAC
CISSP
At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer).
Remote (Regardless of Location): $175,800 - $200,700 for Manager, Cyber Technical Chicago, IL: $175,800 - $200,700 for Manager, Cyber Technical McLean, VA: $193,400 - $220,700 for Manager, Cyber Technical Plano, TX: $175,800 - $200,700 for Manager, Cyber Technical Richmond, VA: $175,800 - $200,700 for Manager, Cyber Technical.
Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.
Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.
#J-18808-Ljbffr