Manager, Cyber Risk & Analysis
About The Position
As a Manager, you will apply your technical expertise, risk management acumen, and project management skills to drive Risk Management Strategy for a major technology modernization program within Capital One’s Retail Bank Division. This high-visibility role involves partnering closely with technology and product executives to identify and mitigate risks across technology, cyber, data, and resiliency domains. You will collaborate with passionate and intelligent teams with the shared goal of ensuring program risks are effectively addressed. The ideal candidate will possess a solid understanding and hands-on experience of risk management frameworks (such as NIST 800-53, NIST CSF), technology functions, and organizational structures. Success in this role requires first-rate communication, strong analytical capabilities, strategic thinking, planning, and organizational skills. This position reports to the Tech & Cyber Risk Director within the Retail Bank.
Requirements
- At least 4 years experience in System Transformation, Cybersecurity, Technology, Consulting, Audit or Risk Management
- At least 4 years of experience managing multiple projects or initiatives
Nice To Haves
- Experience in a Large Financial Services industry or Big4 consulting organization
- Hands-on experience in Technology, Software Engineering or Risk Management
- Experience in leading large system transformation initiatives as a Risk Manager
- Cybersecurity and technology risk certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM) or related certifications
Responsibilities
- Lead Tech and Cyber risk advisor for a multi year technology transformation program
- Partner with product and engineering teams to assess artifacts (customer journeys, Product Requirement Documents, architectures) and technology transformations to identify risks and build proactive mitigation plans.
- Lead risk assessments for technology change initiatives, ensuring non-compliance areas are identified, documented, and remediated prior to deployment.
- Cultivate robust partnerships with control owners and various stakeholders to drive agreement on strategies for risk mitigation and remediation.
- Rationalize controls (tech, cyber, data) focusing on key risks and alignment with technology processes.
- Leverage industry-standard risk frameworks (e.g., NIST, ISO, COBIT) to drive continuous program enhancements and proactively mitigate emerging threats to the business.
- Influence updates to policies, standards, control description to enhance risk management activities.
- Foster strong partnerships with line of business risk offices and team members to analyze how technology risk influences essential business processes.
- Demonstrate high-level organizational agility and communication skills to influence outcomes and inform stakeholders across all levels of the organization.
- Coordinate and prepare for internal and external audits, and assist with the response process.
Benefits
- comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Manager
Education Level
No Education Listed
Number of Employees
5,001-10,000 employees
