Senior Manager, Customer Trust & Field Security Specialist - Capital One Software (Remote)

About The Position

Requirements

• At least 7 years of progressive experience in a cybersecurity or information security role, with a strong understanding of security frameworks and best practices, and a focus on horizontal expertise across various domains.
• At least 4 years in customer - facing roles , acting as a trusted advisor to senior security and IT leaders.
• Deep technical understanding of cybersecurity principles, data protection, privacy, and compliance frameworks.
• Familiarity with common cybersecurity concepts, including access control, encryption, network security, and incident response.
• Excellent written and verbal communication skills with the ability to translate complex technical information into clear, concise, and professional responses for both technical and non-technical audiences.
• Meticulous and organized, with a proven ability to manage multiple projects and deadlines simultaneously and great attention to detail .
• Ability to influence and collaborate effectively with cross-functional teams.

Nice To Haves

• Experience in developing and implementing scalable Customer Trust programs.
• 3+ years experience with Third Party Risk Management programs.
• Strong business acumen and the ability to translate complex technical concepts into business value.
• Professional certifications such as CISSP, CISM, CIPP/E, or CompTIA Security+
• Experience with cloud services and cloud technologies (e.g., AWS, Microsoft Azure, GCP), cybersecurity technologies, data cloud platforms (e.g., Snowflake, Databricks).

Responsibilities

• Customer Trust & Transparency: Scale and build upon existing programs like the Customer Trust Center, providing customers with self-service access to relevant security, privacy, and compliance information.
• Customer Engagement: Act as a trusted technical and security advisor, engaging customer security teams and IT leaders to align on their cybersecurity & business needs. Serve as the internal subject matter expert on security for the GTM team, supporting sales and account managers in client-facing discussions and presentations.
• Industry Thought Leadership: Represent the company externally in security and technology conversations, shaping best practices and positioning our solutions as industry-leading.
• Go-to-Market & Sales Acceleration: Bridge the gap between technical value and business outcomes, aligning security messaging with sales and marketing strategies to drive adoption of our products.
• Cross-functional Influence & Collaboration: Work closely with the engineering, legal, risk, cyber, and compliance teams to ensure our security responses are accurate and reflect our latest technical and regulatory standing.
• RFI/RFP Response: Analyze and respond to cybersecurity sections of RFIs (Requests for Information) and RFPs (Requests for Proposal), providing detailed and precise information about our security controls, policies, and procedures.
• Security Documentation: Maintain and update a knowledge base of our security posture, including security policies, certifications (e.g., SOC 2, ISO 27001), and compliance documentation.
• Continuous Improvement: Identify trends in customer security inquiries to help improve our documentation and proactive communication strategies.
• Third-Party Risk & Due Diligence: Support third-party risk and due diligence processes, helping customers efficiently evaluate our security posture.
• Product Roadmap Contribution: Provide insights on emerging cybersecurity trends and customer expectations to contribute to the product roadmap.
• Security Sales Playbook Development: Develop and standardize security sales playbooks, equipping sales teams with messaging, objection handling, and case studies, as applicable.

Benefits

• Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being.
• Learn more at the Capital One Careers website .
• Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.