Capital One
Company Overview
Capital One is a rapidly growing organization dedicated to the customer experience, innovation, and technology leadership. Our technology & data risk management (TDRM) team, made up of ~200 professionals, oversees the cybersecurity, reliability, and data management of ~14,000 developers. TDRM provides strategic guidance, independent testing, and risk measurement so business leaders have accurate risk data to drive decision making.
Role Summary As a Director of Cyber and Tech Risk Execution, you will support and guide the first line of business with the practical application of our Risk Levelling Program, ensuring Tech and Cyber risks are consistently defined, measured, and mitigated across the organization. You will lead cross‑functional risk framework activities, mentor senior managers, and influence executives to embrace risk‑aware decision making.
Responsibilities
Influence executives across the Lines of Business to take accountability for complex (and sometimes sensitive) technology and cyber risks
Execute the Risk Leveling program across centralized and decentralized divisions
Leverage leadership experience and executive influencing skills to continuously improve our risk maturity journey
Constructively debate issues and connect the dots across various assessments (risk and control self‑assessments, critical business process‑level assessments, initiatives, scenario analysis, risk acceptance challenges, etc.)
Identify opportunities to influence risk‑taking strategies
Demonstrate robust risk management oversight in supporting internal audits and regulatory exams
Mentor and develop associates to meet their professional development goals
Maintain a broad, expert understanding of technology risk frameworks, applying this knowledge to risk identification and mitigation
Communicate subject‑matter expertise in risk categorization, risk occurrence in new environments, and required safeguards
Exhibit strong critical thinking and communication skills, navigating the unknown
Leverage reporting and tools to analyze data, inform policies, and drive change; understand reporting metrics for tech and cyber risks
Demonstrate sound lifecycle program management, including action planned, impediments, risks, and stakeholder engagement
A Successful Candidate Will Have
Superb communication skills, including active listening and executive presentation capabilities
Proven analytical behavior with data‑driven decision making for both technical and non‑technical audiences
Expertise in technology and cybersecurity domains, able to identify risks and propose multiple mitigation options
Excellent influencing skills across all levels, tailoring style and content to audience needs
Adept at understanding materiality of stakeholder feedback, deciding when to act or listen, and driving resolution discussions
A track record of strategic direction, peer and stakeholder collaboration, and outcome‑focused results
Basic Qualifications
Bachelor’s degree and at least 7 years of experience in information security, IT, or risk management; OR High School Diploma/GED and at least 9 years of experience in the same fields
Minimum 5 years of experience developing, evaluating, or implementing cybersecurity, technology, or risk assessment activities
Professional security or risk management certification: CISSP, CISM, CISA, CRISC, CIPP, or Open FAIR
Preferred Qualifications
Master’s degree
Knowledge of supervisory expectations expressed in the FFIEC IT Handbook, Federal Reserve supervisory letters, OCC bulletins, or FDIC letters
At this time, Capital One will not sponsor a new applicant for employment authorization for this position.
Compensation McLean, VA: $226,000 – $257,900 New York, NY: $246,500 – $281,300 Plano, TX: $205,400 – $234,400 Richmond, VA: $205,400 – $234,400
This role is eligible for performance‑based incentive compensation and may include long‑term incentives.
Benefits Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits supporting your total well‑being.
This role is expected to accept applications for a minimum of 5 business days.
Equal Opportunity Employer No agencies please. Capital One is an equal opportunity employer (EOE, including disability/veteran) committed to non‑discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug‑free workplace. Capital One will consider qualified applicants with a criminal history in a manner consistent with applicable laws governing background inquiries. If you require accommodations, contact Capital One Recruiting at 1‑800‑304‑9102 or RecruitingAccommodation@capitalone.com. All information provided will be kept confidential and used only to the extent required to provide needed accommodations.
For technical support or recruiting questions, contact Careers@capitalone.com.
Capital One does not provide, endorse, nor guarantee third‑party products or services. Capital One Financial is a different entity; positions posted for Canada, the United Kingdom, or the Philippines belong to respective CapQuest entities.
#J-18808-Ljbffr
Role Summary As a Director of Cyber and Tech Risk Execution, you will support and guide the first line of business with the practical application of our Risk Levelling Program, ensuring Tech and Cyber risks are consistently defined, measured, and mitigated across the organization. You will lead cross‑functional risk framework activities, mentor senior managers, and influence executives to embrace risk‑aware decision making.
Responsibilities
Influence executives across the Lines of Business to take accountability for complex (and sometimes sensitive) technology and cyber risks
Execute the Risk Leveling program across centralized and decentralized divisions
Leverage leadership experience and executive influencing skills to continuously improve our risk maturity journey
Constructively debate issues and connect the dots across various assessments (risk and control self‑assessments, critical business process‑level assessments, initiatives, scenario analysis, risk acceptance challenges, etc.)
Identify opportunities to influence risk‑taking strategies
Demonstrate robust risk management oversight in supporting internal audits and regulatory exams
Mentor and develop associates to meet their professional development goals
Maintain a broad, expert understanding of technology risk frameworks, applying this knowledge to risk identification and mitigation
Communicate subject‑matter expertise in risk categorization, risk occurrence in new environments, and required safeguards
Exhibit strong critical thinking and communication skills, navigating the unknown
Leverage reporting and tools to analyze data, inform policies, and drive change; understand reporting metrics for tech and cyber risks
Demonstrate sound lifecycle program management, including action planned, impediments, risks, and stakeholder engagement
A Successful Candidate Will Have
Superb communication skills, including active listening and executive presentation capabilities
Proven analytical behavior with data‑driven decision making for both technical and non‑technical audiences
Expertise in technology and cybersecurity domains, able to identify risks and propose multiple mitigation options
Excellent influencing skills across all levels, tailoring style and content to audience needs
Adept at understanding materiality of stakeholder feedback, deciding when to act or listen, and driving resolution discussions
A track record of strategic direction, peer and stakeholder collaboration, and outcome‑focused results
Basic Qualifications
Bachelor’s degree and at least 7 years of experience in information security, IT, or risk management; OR High School Diploma/GED and at least 9 years of experience in the same fields
Minimum 5 years of experience developing, evaluating, or implementing cybersecurity, technology, or risk assessment activities
Professional security or risk management certification: CISSP, CISM, CISA, CRISC, CIPP, or Open FAIR
Preferred Qualifications
Master’s degree
Knowledge of supervisory expectations expressed in the FFIEC IT Handbook, Federal Reserve supervisory letters, OCC bulletins, or FDIC letters
At this time, Capital One will not sponsor a new applicant for employment authorization for this position.
Compensation McLean, VA: $226,000 – $257,900 New York, NY: $246,500 – $281,300 Plano, TX: $205,400 – $234,400 Richmond, VA: $205,400 – $234,400
This role is eligible for performance‑based incentive compensation and may include long‑term incentives.
Benefits Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits supporting your total well‑being.
This role is expected to accept applications for a minimum of 5 business days.
Equal Opportunity Employer No agencies please. Capital One is an equal opportunity employer (EOE, including disability/veteran) committed to non‑discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug‑free workplace. Capital One will consider qualified applicants with a criminal history in a manner consistent with applicable laws governing background inquiries. If you require accommodations, contact Capital One Recruiting at 1‑800‑304‑9102 or RecruitingAccommodation@capitalone.com. All information provided will be kept confidential and used only to the extent required to provide needed accommodations.
For technical support or recruiting questions, contact Careers@capitalone.com.
Capital One does not provide, endorse, nor guarantee third‑party products or services. Capital One Financial is a different entity; positions posted for Canada, the United Kingdom, or the Philippines belong to respective CapQuest entities.
#J-18808-Ljbffr