Excelsior University is seeking a visionary and results-driven Senior Director of Infrastructure & Operations to lead and transform the university's technology foundation during a period of growth and expansion. This executive-level leader will provide strategic direction and oversight for all infrastructure and operations services, including network and telecom, cloud and hosting environments, end-user computing and collaboration, enterprise application support (ERP and other systems), and IT operations. The Senior Director will play a critical role in enabling the university's expansion to hybrid sites and integrating acquired technology platforms while ensuring infrastructure is scalable, resilient, secure, and future-ready. The role emphasizes proactive, data-driven, and business-oriented leadership, leveraging industry best practices, ITIL frameworks, agile methodologies, and continuous improvement principles. This leader will balance solidifying operational fundamentals with driving innovation, AI-driven automation, and advanced analytics to optimize performance, reduce risk, and elevate team maturity. The role is also required to build and sustain a high-performing team aligned with Excelsior University's mission, values, and culture. The ideal candidate will possess substantial hands-on experience leading infrastructure integration during mergers, acquisitions, and partnerships. This includes planning and executing the seamless integration/consolidation of IT systems, networks, data centers, cloud environments, and security frameworks while minimizing operational disruption. The candidate must demonstrate a proven ability to assess the technical landscape of involved entities, identify integration risks, develop comprehensive roadmaps, and deliver results within established timelines and budgets. Strong change management expertise and the ability to balance speed with operational stability are critical.This is a full-time hybrid role with a minimum of two required days at Excelsior's home office of 7 Columbia Circle, Albany, NY, with the remainder of the days worked from home. Key Responsibilities Strategic Leadership & Vision Develop and articulate a comprehensive infrastructure strategy aligned with the university's growth, digital transformation initiatives, and mission-critical priorities. Lead architecture, design, and implementation of scalable, secure, and resilient infrastructure solutions across campuses, hybrid sites, and cloud environments. Continuously evaluate emerging technologies, trends, and vendors, with a focus on leveraging AI, machine learning, and automation to optimize operations and service delivery. Develop long-term infrastructure roadmaps, including budgeting, resource planning, and risk management. Drive transformative change through proactive planning, measurable outcomes, and continuous improvement. Cloud Transformation & Hybrid Environments Accelerate and optimize the university's cloud adoption strategy (IaaS, PaaS, SaaS), integrating on-premise and cloud resources efficiently. Implement cloud-native principles, containerization, and serverless architectures where appropriate. Manage strategic relationships with cloud providers, ensuring alignment with university needs, cost optimization, and security compliance. Network & Connectivity Oversee the design, implementation, and management of secure, high-performance networks supporting all campuses, hybrid sites, and remote users. Implement software-defined networking (SDN), network virtualization, and other advanced networking practices to optimize connectivity, performance, and scalability. Ensure robust LAN/WAN, Wi-Fi, and private network performance to support academic and administrative operations. Data Center & Edge Computing Strategically manage and optimize data center footprints, including modernization and consolidation initiatives. Develop and implement edge computing strategies to meet real-time operational and academic technology needs. Ensure infrastructure aligns with institutional goals for efficiency, resiliency, and sustainability. Cybersecurity & Resilience Collaborate closely with the CISO to embed security into all infrastructure services and operations. Ensure disaster recovery, business continuity, and high availability strategies are robust and operationally effective. Leverage AI and predictive analytics for threat detection, risk mitigation, and proactive incident prevention. Operational Excellence, Automation & AI Innovation Drive operational efficiency through Infrastructure as Code (IaC), orchestration, AI-driven operations (AIOps), and predictive analytics. Establish and monitor KPIs, SLAs, and performance trends to ensure proactive, measurable service management. Introduce innovative solutions that reduce operational toil, accelerate incident resolution, and improve service quality, while maintaining rigorous core operational standards. Implement robust monitoring, alerting, and incident response processes grounded in industry best practices. Team Leadership & Development Build, mentor, and lead a high-performing team of infrastructure architects, engineers, and operations specialists. Foster a culture of innovation, continuous learning, and operational rigor. Manage vendor relationships, contract negotiations, and partnerships with technology providers. Collaboration & Stakeholder Management Partner with other ITS leaders (CIO, CISO, Applications, BI, Help Desk, Web Services) and university stakeholders to align infrastructure services with institutional priorities. Communicate complex technical concepts and strategies clearly to non-technical audiences and executive leadership. Support institutional initiatives by projecting impact, enabling informed decision-making, and ensuring operational readiness. Qualifications Bachelor's degree in Computer Science, Information Systems, Engineering, or a related field; Master's degree preferred. Minimum 10 years of progressive leadership experience in infrastructure, cloud, and operations management. Demonstrated success in building high-performing, proactive, and forward-looking teams aligned with institutional mission and culture. Proven experience in implementing ITIL-based service management, agile practices, and continuous improvement initiatives. Deep technical expertise across hybrid/multi-cloud environments, enterprise networking, end-user computing, storage, compute, and application support. Experience in leveraging AI, machine learning, or analytics to improve operational efficiency, reliability, and performance. Track record of leading complex technology transformations, including cloud adoption, data center modernization, and network optimization. Strong financial management skills, including budgeting, resource planning, and vendor management. Exceptional communication, influencing, and stakeholder engagement skills. Experience in higher education or similarly complex, mission-driven organizations. Experience leading technology integration following mergers, acquisitions, or multi-site expansions. Knowledge of regulatory and accreditation requirements (FERPA, SOC 2, ISO 27001, GDPR). Demonstrated success in leading data-driven operations and infrastructure modernization initiatives. Key Competencies Visionary Leadership: Anticipates future needs, develops strategy, and guides infrastructure forward. Transformational Change Agent: Drives modernization, operational excellence, and measurable outcomes. Innovation & AI Expertise: Applies AI, automation, and analytics to improve infrastructure performance while maintaining operational fundamentals. Business & Customer Orientation: Aligns technology solutions with institutional priorities, ensuring user impact is positive and measurable. Data-Driven Decision-Making: Uses metrics, analytics, and trend data to guide strategic and operational decisions. Collaboration & Influence: Builds alignment across IT functions and institutional stakeholders. The hiring salary range for this position is $120,000.00 - $135,000.00. The hiring salary range above represents the University's good faith estimate at the time of posting Application Information If you have problems with online submission, please call . Excelsior University offers competitive compensation and a generous benefits package that includes paid time off, retirement, and excellent health insurance. Interested candidates should submit a letter of application, resume, and the names of three professional references. Please submit requested information by clicking the Apply Now button on this page. Excelsior University is an equal opportunity employer committed to ensuring all qualified applicants receive consideration for employment without regard to any legally protected characteristic. AA/EOE/ADA Excelsior University is an equal opportunity employer committed to ensuring all qualified applicants receive consideration for employment without regard to any legally protected characteristic.
10/21/2025
Full time
Excelsior University is seeking a visionary and results-driven Senior Director of Infrastructure & Operations to lead and transform the university's technology foundation during a period of growth and expansion. This executive-level leader will provide strategic direction and oversight for all infrastructure and operations services, including network and telecom, cloud and hosting environments, end-user computing and collaboration, enterprise application support (ERP and other systems), and IT operations. The Senior Director will play a critical role in enabling the university's expansion to hybrid sites and integrating acquired technology platforms while ensuring infrastructure is scalable, resilient, secure, and future-ready. The role emphasizes proactive, data-driven, and business-oriented leadership, leveraging industry best practices, ITIL frameworks, agile methodologies, and continuous improvement principles. This leader will balance solidifying operational fundamentals with driving innovation, AI-driven automation, and advanced analytics to optimize performance, reduce risk, and elevate team maturity. The role is also required to build and sustain a high-performing team aligned with Excelsior University's mission, values, and culture. The ideal candidate will possess substantial hands-on experience leading infrastructure integration during mergers, acquisitions, and partnerships. This includes planning and executing the seamless integration/consolidation of IT systems, networks, data centers, cloud environments, and security frameworks while minimizing operational disruption. The candidate must demonstrate a proven ability to assess the technical landscape of involved entities, identify integration risks, develop comprehensive roadmaps, and deliver results within established timelines and budgets. Strong change management expertise and the ability to balance speed with operational stability are critical.This is a full-time hybrid role with a minimum of two required days at Excelsior's home office of 7 Columbia Circle, Albany, NY, with the remainder of the days worked from home. Key Responsibilities Strategic Leadership & Vision Develop and articulate a comprehensive infrastructure strategy aligned with the university's growth, digital transformation initiatives, and mission-critical priorities. Lead architecture, design, and implementation of scalable, secure, and resilient infrastructure solutions across campuses, hybrid sites, and cloud environments. Continuously evaluate emerging technologies, trends, and vendors, with a focus on leveraging AI, machine learning, and automation to optimize operations and service delivery. Develop long-term infrastructure roadmaps, including budgeting, resource planning, and risk management. Drive transformative change through proactive planning, measurable outcomes, and continuous improvement. Cloud Transformation & Hybrid Environments Accelerate and optimize the university's cloud adoption strategy (IaaS, PaaS, SaaS), integrating on-premise and cloud resources efficiently. Implement cloud-native principles, containerization, and serverless architectures where appropriate. Manage strategic relationships with cloud providers, ensuring alignment with university needs, cost optimization, and security compliance. Network & Connectivity Oversee the design, implementation, and management of secure, high-performance networks supporting all campuses, hybrid sites, and remote users. Implement software-defined networking (SDN), network virtualization, and other advanced networking practices to optimize connectivity, performance, and scalability. Ensure robust LAN/WAN, Wi-Fi, and private network performance to support academic and administrative operations. Data Center & Edge Computing Strategically manage and optimize data center footprints, including modernization and consolidation initiatives. Develop and implement edge computing strategies to meet real-time operational and academic technology needs. Ensure infrastructure aligns with institutional goals for efficiency, resiliency, and sustainability. Cybersecurity & Resilience Collaborate closely with the CISO to embed security into all infrastructure services and operations. Ensure disaster recovery, business continuity, and high availability strategies are robust and operationally effective. Leverage AI and predictive analytics for threat detection, risk mitigation, and proactive incident prevention. Operational Excellence, Automation & AI Innovation Drive operational efficiency through Infrastructure as Code (IaC), orchestration, AI-driven operations (AIOps), and predictive analytics. Establish and monitor KPIs, SLAs, and performance trends to ensure proactive, measurable service management. Introduce innovative solutions that reduce operational toil, accelerate incident resolution, and improve service quality, while maintaining rigorous core operational standards. Implement robust monitoring, alerting, and incident response processes grounded in industry best practices. Team Leadership & Development Build, mentor, and lead a high-performing team of infrastructure architects, engineers, and operations specialists. Foster a culture of innovation, continuous learning, and operational rigor. Manage vendor relationships, contract negotiations, and partnerships with technology providers. Collaboration & Stakeholder Management Partner with other ITS leaders (CIO, CISO, Applications, BI, Help Desk, Web Services) and university stakeholders to align infrastructure services with institutional priorities. Communicate complex technical concepts and strategies clearly to non-technical audiences and executive leadership. Support institutional initiatives by projecting impact, enabling informed decision-making, and ensuring operational readiness. Qualifications Bachelor's degree in Computer Science, Information Systems, Engineering, or a related field; Master's degree preferred. Minimum 10 years of progressive leadership experience in infrastructure, cloud, and operations management. Demonstrated success in building high-performing, proactive, and forward-looking teams aligned with institutional mission and culture. Proven experience in implementing ITIL-based service management, agile practices, and continuous improvement initiatives. Deep technical expertise across hybrid/multi-cloud environments, enterprise networking, end-user computing, storage, compute, and application support. Experience in leveraging AI, machine learning, or analytics to improve operational efficiency, reliability, and performance. Track record of leading complex technology transformations, including cloud adoption, data center modernization, and network optimization. Strong financial management skills, including budgeting, resource planning, and vendor management. Exceptional communication, influencing, and stakeholder engagement skills. Experience in higher education or similarly complex, mission-driven organizations. Experience leading technology integration following mergers, acquisitions, or multi-site expansions. Knowledge of regulatory and accreditation requirements (FERPA, SOC 2, ISO 27001, GDPR). Demonstrated success in leading data-driven operations and infrastructure modernization initiatives. Key Competencies Visionary Leadership: Anticipates future needs, develops strategy, and guides infrastructure forward. Transformational Change Agent: Drives modernization, operational excellence, and measurable outcomes. Innovation & AI Expertise: Applies AI, automation, and analytics to improve infrastructure performance while maintaining operational fundamentals. Business & Customer Orientation: Aligns technology solutions with institutional priorities, ensuring user impact is positive and measurable. Data-Driven Decision-Making: Uses metrics, analytics, and trend data to guide strategic and operational decisions. Collaboration & Influence: Builds alignment across IT functions and institutional stakeholders. The hiring salary range for this position is $120,000.00 - $135,000.00. The hiring salary range above represents the University's good faith estimate at the time of posting Application Information If you have problems with online submission, please call . Excelsior University offers competitive compensation and a generous benefits package that includes paid time off, retirement, and excellent health insurance. Interested candidates should submit a letter of application, resume, and the names of three professional references. Please submit requested information by clicking the Apply Now button on this page. Excelsior University is an equal opportunity employer committed to ensuring all qualified applicants receive consideration for employment without regard to any legally protected characteristic. AA/EOE/ADA Excelsior University is an equal opportunity employer committed to ensuring all qualified applicants receive consideration for employment without regard to any legally protected characteristic.
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, International Risk Management (ES Risk) Capital One is one of the fastest growing organizations in the world today and we are growing our teams globally. As Director for International Risk Management, you will play a pivotal role in developing and driving our international risk management agenda-from day one. Teamwork is at the heart of our innovation and we empower each other to think big. We welcome diverse perspectives and experiences as we reshape the financial industry. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. The Director for International Risk Management will support our Enterprise Services (ES) Risk office in Capital One's first line of defense, and will execute high-priority enterprise-level technology and cyber security and risk management initiatives related to our international expansion, influence across the organization, and drive the implementation of our strategy. Specifically, in this position, you will help lead and manage the international risk management function for ES, which includes executing and enhancing our risk management processes across Capital One, driving project and program delivery, and influencing outcomes supporting the broader International Risk Strategy for Capital One. You will collaborate closely with associates and senior Executives across all lines of defense, Lines of Business, and other risk management teams to support this work. This includes implementing risk management tools and frameworks for the organization and managing a sustainable and mature process to identify, assess, mitigate, and monitor risk. This role will also be responsible for big picture thinking, strategic direction, and partnering across teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders and associates. Your contributions will drive organizational change through risk identification, measurement, analysis and reporting in order to better manage the company's risk in an open and collaborative environment. This position is highly visible and requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Proficiency in risk management is key to success in this role. The successful candidate will be an experienced risk management professional who understands technology and cyber functions and organizations, with strong analytical, planning, strategic thinking, organizational and communication skills. Responsibilities: Drive and coordinate work related to Capital One's emerging international risk management function, working with the first line of defense Technology and Cyber teams, LOB, and second line of defense teams, to ensure effective collaboration within the team and across stakeholder groups. Assist the ES Risk leadership team and country leadership team(s) in delivering their strategy and service model. Lead the development of international processes and the related risk management framework by providing thought leadership, oversight, and coordination with LOBs and other risk management associates across the company. Drive program and process-level risk assessments to identify risks and mitigation plans based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction. Be a trusted advisor and drive effective and relevant technology and cyber risk conversations. Stay current on emerging cyber threats and potential implications to the firm. Stay current on the changing regulatory environment and understand the impacts to our international expansion efforts. Assist and drive project and program delivery, including project and process management, reporting, engagement in senior leadership meetings, drafting and reviewing materials for Senior Management. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aides. Draft, contribute to, edit, and deliver presentations that aid in the design, development, refinement, and usage of risk methods. Participate in risk and other management forums and contribute to continuous improvement of risk and project / program management practices. Support direction, manages expectations, and leads cross-functional teams through various initiatives, including oversight of third party resources. Support interactions with Internal Audit and Regulatory agencies related to our work, as applicable. Participate in and execute other special projects for the team, as needed. Basic Qualifications: Bachelor's Degree or military experience At least 7 years experience in Cybersecurity, Technology, Risk Management, or Audit or a combination of the the four At least 7 years of experience planning and leading risk assessments and audits At least 4 years of project or process management experience At least 4 years of People Management experience At least 2 years of experience implementing an International program or leading an International or Country Risk Management program Preferred Qualifications: 10 years experience in Cybersecurity, Technology, Risk Management, International Risk, or External Audit, or a combination of these 8 years of experience performing information security or technology risk identification and assessments, such as Control Self Assessments (CSAs), or completing assessments within established industry risk frameworks 8 years experience performing data analysis in support of internal risk assessments and control design and operating effectiveness reviews 5 years of experience performing data analysis in support of cybersecurity assessments and control design in a cloud environment (preferably AWS) 5 years of project management experience leading cross-functional projects and programs 3 years of Financial Services industry experience, including familiarity with regulatory practices Cybersecurity and technology risk and/or project management certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Project Management Professional (PMP) Certification, or Masters Certificate of Project Management (CPM) or related certifications Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation . click apply for full job details
10/21/2025
Full time
Director, International Risk Management (ES Risk) Capital One is one of the fastest growing organizations in the world today and we are growing our teams globally. As Director for International Risk Management, you will play a pivotal role in developing and driving our international risk management agenda-from day one. Teamwork is at the heart of our innovation and we empower each other to think big. We welcome diverse perspectives and experiences as we reshape the financial industry. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. The Director for International Risk Management will support our Enterprise Services (ES) Risk office in Capital One's first line of defense, and will execute high-priority enterprise-level technology and cyber security and risk management initiatives related to our international expansion, influence across the organization, and drive the implementation of our strategy. Specifically, in this position, you will help lead and manage the international risk management function for ES, which includes executing and enhancing our risk management processes across Capital One, driving project and program delivery, and influencing outcomes supporting the broader International Risk Strategy for Capital One. You will collaborate closely with associates and senior Executives across all lines of defense, Lines of Business, and other risk management teams to support this work. This includes implementing risk management tools and frameworks for the organization and managing a sustainable and mature process to identify, assess, mitigate, and monitor risk. This role will also be responsible for big picture thinking, strategic direction, and partnering across teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders and associates. Your contributions will drive organizational change through risk identification, measurement, analysis and reporting in order to better manage the company's risk in an open and collaborative environment. This position is highly visible and requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Proficiency in risk management is key to success in this role. The successful candidate will be an experienced risk management professional who understands technology and cyber functions and organizations, with strong analytical, planning, strategic thinking, organizational and communication skills. Responsibilities: Drive and coordinate work related to Capital One's emerging international risk management function, working with the first line of defense Technology and Cyber teams, LOB, and second line of defense teams, to ensure effective collaboration within the team and across stakeholder groups. Assist the ES Risk leadership team and country leadership team(s) in delivering their strategy and service model. Lead the development of international processes and the related risk management framework by providing thought leadership, oversight, and coordination with LOBs and other risk management associates across the company. Drive program and process-level risk assessments to identify risks and mitigation plans based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction. Be a trusted advisor and drive effective and relevant technology and cyber risk conversations. Stay current on emerging cyber threats and potential implications to the firm. Stay current on the changing regulatory environment and understand the impacts to our international expansion efforts. Assist and drive project and program delivery, including project and process management, reporting, engagement in senior leadership meetings, drafting and reviewing materials for Senior Management. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aides. Draft, contribute to, edit, and deliver presentations that aid in the design, development, refinement, and usage of risk methods. Participate in risk and other management forums and contribute to continuous improvement of risk and project / program management practices. Support direction, manages expectations, and leads cross-functional teams through various initiatives, including oversight of third party resources. Support interactions with Internal Audit and Regulatory agencies related to our work, as applicable. Participate in and execute other special projects for the team, as needed. Basic Qualifications: Bachelor's Degree or military experience At least 7 years experience in Cybersecurity, Technology, Risk Management, or Audit or a combination of the the four At least 7 years of experience planning and leading risk assessments and audits At least 4 years of project or process management experience At least 4 years of People Management experience At least 2 years of experience implementing an International program or leading an International or Country Risk Management program Preferred Qualifications: 10 years experience in Cybersecurity, Technology, Risk Management, International Risk, or External Audit, or a combination of these 8 years of experience performing information security or technology risk identification and assessments, such as Control Self Assessments (CSAs), or completing assessments within established industry risk frameworks 8 years experience performing data analysis in support of internal risk assessments and control design and operating effectiveness reviews 5 years of experience performing data analysis in support of cybersecurity assessments and control design in a cloud environment (preferably AWS) 5 years of project management experience leading cross-functional projects and programs 3 years of Financial Services industry experience, including familiarity with regulatory practices Cybersecurity and technology risk and/or project management certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Project Management Professional (PMP) Certification, or Masters Certificate of Project Management (CPM) or related certifications Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation . click apply for full job details
Director, International Risk Management (ES Risk) Capital One is one of the fastest growing organizations in the world today and we are growing our teams globally. As Director for International Risk Management, you will play a pivotal role in developing and driving our international risk management agenda-from day one. Teamwork is at the heart of our innovation and we empower each other to think big. We welcome diverse perspectives and experiences as we reshape the financial industry. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. The Director for International Risk Management will support our Enterprise Services (ES) Risk office in Capital One's first line of defense, and will execute high-priority enterprise-level technology and cyber security and risk management initiatives related to our international expansion, influence across the organization, and drive the implementation of our strategy. Specifically, in this position, you will help lead and manage the international risk management function for ES, which includes executing and enhancing our risk management processes across Capital One, driving project and program delivery, and influencing outcomes supporting the broader International Risk Strategy for Capital One. You will collaborate closely with associates and senior Executives across all lines of defense, Lines of Business, and other risk management teams to support this work. This includes implementing risk management tools and frameworks for the organization and managing a sustainable and mature process to identify, assess, mitigate, and monitor risk. This role will also be responsible for big picture thinking, strategic direction, and partnering across teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders and associates. Your contributions will drive organizational change through risk identification, measurement, analysis and reporting in order to better manage the company's risk in an open and collaborative environment. This position is highly visible and requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Proficiency in risk management is key to success in this role. The successful candidate will be an experienced risk management professional who understands technology and cyber functions and organizations, with strong analytical, planning, strategic thinking, organizational and communication skills. Responsibilities: Drive and coordinate work related to Capital One's emerging international risk management function, working with the first line of defense Technology and Cyber teams, LOB, and second line of defense teams, to ensure effective collaboration within the team and across stakeholder groups. Assist the ES Risk leadership team and country leadership team(s) in delivering their strategy and service model. Lead the development of international processes and the related risk management framework by providing thought leadership, oversight, and coordination with LOBs and other risk management associates across the company. Drive program and process-level risk assessments to identify risks and mitigation plans based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction. Be a trusted advisor and drive effective and relevant technology and cyber risk conversations. Stay current on emerging cyber threats and potential implications to the firm. Stay current on the changing regulatory environment and understand the impacts to our international expansion efforts. Assist and drive project and program delivery, including project and process management, reporting, engagement in senior leadership meetings, drafting and reviewing materials for Senior Management. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aides. Draft, contribute to, edit, and deliver presentations that aid in the design, development, refinement, and usage of risk methods. Participate in risk and other management forums and contribute to continuous improvement of risk and project / program management practices. Support direction, manages expectations, and leads cross-functional teams through various initiatives, including oversight of third party resources. Support interactions with Internal Audit and Regulatory agencies related to our work, as applicable. Participate in and execute other special projects for the team, as needed. Basic Qualifications: Bachelor's Degree or military experience At least 7 years experience in Cybersecurity, Technology, Risk Management, or Audit or a combination of the the four At least 7 years of experience planning and leading risk assessments and audits At least 4 years of project or process management experience At least 4 years of People Management experience At least 2 years of experience implementing an International program or leading an International or Country Risk Management program Preferred Qualifications: 10 years experience in Cybersecurity, Technology, Risk Management, International Risk, or External Audit, or a combination of these 8 years of experience performing information security or technology risk identification and assessments, such as Control Self Assessments (CSAs), or completing assessments within established industry risk frameworks 8 years experience performing data analysis in support of internal risk assessments and control design and operating effectiveness reviews 5 years of experience performing data analysis in support of cybersecurity assessments and control design in a cloud environment (preferably AWS) 5 years of project management experience leading cross-functional projects and programs 3 years of Financial Services industry experience, including familiarity with regulatory practices Cybersecurity and technology risk and/or project management certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Project Management Professional (PMP) Certification, or Masters Certificate of Project Management (CPM) or related certifications Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation . click apply for full job details
10/21/2025
Full time
Director, International Risk Management (ES Risk) Capital One is one of the fastest growing organizations in the world today and we are growing our teams globally. As Director for International Risk Management, you will play a pivotal role in developing and driving our international risk management agenda-from day one. Teamwork is at the heart of our innovation and we empower each other to think big. We welcome diverse perspectives and experiences as we reshape the financial industry. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. The Director for International Risk Management will support our Enterprise Services (ES) Risk office in Capital One's first line of defense, and will execute high-priority enterprise-level technology and cyber security and risk management initiatives related to our international expansion, influence across the organization, and drive the implementation of our strategy. Specifically, in this position, you will help lead and manage the international risk management function for ES, which includes executing and enhancing our risk management processes across Capital One, driving project and program delivery, and influencing outcomes supporting the broader International Risk Strategy for Capital One. You will collaborate closely with associates and senior Executives across all lines of defense, Lines of Business, and other risk management teams to support this work. This includes implementing risk management tools and frameworks for the organization and managing a sustainable and mature process to identify, assess, mitigate, and monitor risk. This role will also be responsible for big picture thinking, strategic direction, and partnering across teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders and associates. Your contributions will drive organizational change through risk identification, measurement, analysis and reporting in order to better manage the company's risk in an open and collaborative environment. This position is highly visible and requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Proficiency in risk management is key to success in this role. The successful candidate will be an experienced risk management professional who understands technology and cyber functions and organizations, with strong analytical, planning, strategic thinking, organizational and communication skills. Responsibilities: Drive and coordinate work related to Capital One's emerging international risk management function, working with the first line of defense Technology and Cyber teams, LOB, and second line of defense teams, to ensure effective collaboration within the team and across stakeholder groups. Assist the ES Risk leadership team and country leadership team(s) in delivering their strategy and service model. Lead the development of international processes and the related risk management framework by providing thought leadership, oversight, and coordination with LOBs and other risk management associates across the company. Drive program and process-level risk assessments to identify risks and mitigation plans based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction. Be a trusted advisor and drive effective and relevant technology and cyber risk conversations. Stay current on emerging cyber threats and potential implications to the firm. Stay current on the changing regulatory environment and understand the impacts to our international expansion efforts. Assist and drive project and program delivery, including project and process management, reporting, engagement in senior leadership meetings, drafting and reviewing materials for Senior Management. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aides. Draft, contribute to, edit, and deliver presentations that aid in the design, development, refinement, and usage of risk methods. Participate in risk and other management forums and contribute to continuous improvement of risk and project / program management practices. Support direction, manages expectations, and leads cross-functional teams through various initiatives, including oversight of third party resources. Support interactions with Internal Audit and Regulatory agencies related to our work, as applicable. Participate in and execute other special projects for the team, as needed. Basic Qualifications: Bachelor's Degree or military experience At least 7 years experience in Cybersecurity, Technology, Risk Management, or Audit or a combination of the the four At least 7 years of experience planning and leading risk assessments and audits At least 4 years of project or process management experience At least 4 years of People Management experience At least 2 years of experience implementing an International program or leading an International or Country Risk Management program Preferred Qualifications: 10 years experience in Cybersecurity, Technology, Risk Management, International Risk, or External Audit, or a combination of these 8 years of experience performing information security or technology risk identification and assessments, such as Control Self Assessments (CSAs), or completing assessments within established industry risk frameworks 8 years experience performing data analysis in support of internal risk assessments and control design and operating effectiveness reviews 5 years of experience performing data analysis in support of cybersecurity assessments and control design in a cloud environment (preferably AWS) 5 years of project management experience leading cross-functional projects and programs 3 years of Financial Services industry experience, including familiarity with regulatory practices Cybersecurity and technology risk and/or project management certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Project Management Professional (PMP) Certification, or Masters Certificate of Project Management (CPM) or related certifications Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation . click apply for full job details
Nevada System of Higher Education
Las Vegas, Nevada
Executive Director of Operations Thank you for your interest in employment with Nevada System of Higher Education (NSHE), System Administration and System Computing Services. We want your application process to go smoothly and quickly. We ask that you keep in mind the following when completing your application: Draft applications are saved automatically and can be accessed through your candidate home account. Final applications must be submitted prior to the close of the recruitment. Once a recruitment has closed, applications will no longer be accepted. If you need assistance or have questions regarding the application process, please contact our Human Resources department at . Job Description The Nevada System of Higher Education (NSHE) invites applications for the position of Executive Director of Operations. This is a renewable, full-time, non-tenured, administrative position and reports to the Chancellor. The position may be located in either Reno or Las Vegas, Nevada. The NSHE is comprised of eight institutions: two universities, a state university, four community colleges and a research institute. The public system of higher education in Nevada continues to experience growth with significant challenges and opportunities in serving over 110,500 students and 15,000 employees. The Executive Director of Operations provides strategic and administrative leadership for cross-functional operational services that support the mission and effectiveness of System Administration (SA). Reporting directly to the Chancellor, the Executive Director ensures the seamless coordination of enterprise services, administrative logistics, support mechanisms, and key operational initiatives. The Executive Director fosters continuous improvement, service innovation, and accountability in operational workflows and collaborates with institutional partners and internal divisions to ensure consistency and responsiveness in service delivery. SALARY GRADE: This position offers a competitive compensation package commensurate with the candidate's education, experience, and certification/training. In addition to base salary, employees enjoy a comprehensive benefits package that includes: Comprehensive Health Insurance : includes health, dental, vision, and life insurance. Additionally, an employer paid long term disability plan is included. Outstanding Retirement Plan : professional employees are required to participate in the 401(a) Retirement Plan Alternative (RPA). Employee contributions of 19.25% are matched 100% by the employer and employees experience an immediate vesting in the plan. Employees who currently or previously participated in Public Employees Retirement System (PERS) of Nevada may be eligible to continue in the PERS plan. Paid Leave : generous annual leave (accrual of 2 days per month), sick leave (granted 30 days at time of hire), 12 paid holidays, and paid family leave. Education Benefit : employees and their qualified dependents may take advantage of a tuition savings benefit. Faculty may take up to six credits per semester at a reduced rate and their dependents may access an unlimited number of credits, if they meet specific criteria. Additional Perks: Employee assistance programs and professional development opportunities. Pursuant NSHE Policy : "Initial placement must fall between the minimum salary and Q2/median/mid-range on the applicable salary schedule." To view the salary range for this position, please visit: Salary Schedules and select "Administrative Faculty, Grade E." APPROXIMATE STARTING DATE: December 1, 2025 MINIMUM QUALIFICATIONS: A Bachelor's degree from an accredited institution in public administration, business administration, higher education administration, or related field with a minimum of seven (7) years of progressively responsible leadership experience in operations, administration, or related areas. Experience coordinating high-level projects and managing internal processes across complex organizational structures. Preferred Qualifications: Master's degree in Public Administration, Organizational Leadership, or a related field preferred. Experience in higher education operations at the system or campus level. Demonstrated ability to manage executive-level logistics and implement cross-unit administrative systems. Familiarity with strategic planning, continuous improvement methodologies, or enterprise administrative tools. Working Conditions and Travel Requirements Occasional travel to NSHE institutions and System Administration (SA) sites may be required. Work is primarily performed in a standard office environment. Extended hours may be necessary during project implementation phases or in support of events. KNOWLEDGE, SKILLS, AND ABILITIES: Successful candidates must possess the following knowledge, skills and abilities. It is recommended that applicants for this position address each of the following items in the letter of application: Knowledge of operational practices and service models in higher education or public organizations. Skill in strategic planning, workflow coordination, and process improvement. Ability to develop and implement operational systems that serve multiple stakeholders. Strong communication, facilitation, and organizational skills. Ability to exercise discretion, maintain confidentiality, and manage sensitive projects. Capacity to work across functional areas and institutional lines with diplomacy and accountability. Proficiency in technology platforms related to project management, scheduling, workflow tracking, and communication. Understanding of logistical systems, workflows, and shared services in complex organizations. Familiarity with administrative system tools and project management practices. Excellent interpersonal and communication skills, including written reporting and executive briefings. Ability to analyze operational problems and recommend data-informed solutions. Strong time management, task coordination, and attention to detail. Ability to work effectively across diverse stakeholders and institutional partners. RESPONSIBILITIES: The duties of this position will include, but not be limited to: Provide oversight for operational logistics, including internal communications processes (e.g., message routing, executive briefing flows, and cabinet-level information tracking), scheduling infrastructure, space coordination, and key project timelines to ensure consistent and efficient systemwide coordination. Serve as a strategic project manager for Chancellor-level initiatives requiring multi-unit coordination and cross-functional input. Coordinate the logistical planning and execution of executive-level meetings, retreats, and systemwide convenings. Support strategic and operational planning cycles in collaboration with the Chancellor and executive team. Act as a liaison between the Chancellor's Office and operational stakeholders across institutions to ensure consistency and responsiveness. Coordinate special projects related to organizational planning, auxiliary service delivery, or external partnerships. Contribute to risk management, business continuity, and emergency preparedness planning in alignment with institutional operations. Execute and support daily logistical activities that enable the communication, scheduling, and coordination framework established by the Chancellor's Office, ensuring smooth day-to-day operations across the system. Assists in the development of standardized operational processes to support administrative efficiency and collaboration. Implementation of protocols and tools to improve scheduling, tracking, and task management across system office initiatives. Maintains progress on key operational initiatives as directed by the Chancellor. Facilitate communication, scheduling alignment, and system-level planning activities related to academic program reviews, accreditation reporting timelines, and academic master planning efforts, in coordination with institutional leadership. Provides logistical support for Chancellor-initiated academic planning sessions, system-level academic forums, or special meetings involving institutional academic leadership, in coordination with the Vice Chancellor for Academic Affairs. Supports the Chancellor's Office and the Vice Chancellor for Academic Affairs in tracking key academic planning timelines and reporting milestones to support system-level coordination and communication. Implement and refine shared services that improve administrative support, operational tracking, and internal efficiency. Facilitate workflow and documentation processes for high-level projects, ensuring milestones and deliverables are met. Oversee administrative support teams responsible for document flow, scheduling, calendaring, distribution, and logistical support. Monitor and enhance operational policies, identifying areas for procedural updates and system alignment. Coordinating briefings and developing dashboards on operational metrics, status updates, and service outcomes. Coordinates implementation of administrative systems that enhance non-academic operations across System Administration offices. Evaluates existing workflows and assists with process improvements to reduce inefficiencies. . click apply for full job details
10/21/2025
Full time
Executive Director of Operations Thank you for your interest in employment with Nevada System of Higher Education (NSHE), System Administration and System Computing Services. We want your application process to go smoothly and quickly. We ask that you keep in mind the following when completing your application: Draft applications are saved automatically and can be accessed through your candidate home account. Final applications must be submitted prior to the close of the recruitment. Once a recruitment has closed, applications will no longer be accepted. If you need assistance or have questions regarding the application process, please contact our Human Resources department at . Job Description The Nevada System of Higher Education (NSHE) invites applications for the position of Executive Director of Operations. This is a renewable, full-time, non-tenured, administrative position and reports to the Chancellor. The position may be located in either Reno or Las Vegas, Nevada. The NSHE is comprised of eight institutions: two universities, a state university, four community colleges and a research institute. The public system of higher education in Nevada continues to experience growth with significant challenges and opportunities in serving over 110,500 students and 15,000 employees. The Executive Director of Operations provides strategic and administrative leadership for cross-functional operational services that support the mission and effectiveness of System Administration (SA). Reporting directly to the Chancellor, the Executive Director ensures the seamless coordination of enterprise services, administrative logistics, support mechanisms, and key operational initiatives. The Executive Director fosters continuous improvement, service innovation, and accountability in operational workflows and collaborates with institutional partners and internal divisions to ensure consistency and responsiveness in service delivery. SALARY GRADE: This position offers a competitive compensation package commensurate with the candidate's education, experience, and certification/training. In addition to base salary, employees enjoy a comprehensive benefits package that includes: Comprehensive Health Insurance : includes health, dental, vision, and life insurance. Additionally, an employer paid long term disability plan is included. Outstanding Retirement Plan : professional employees are required to participate in the 401(a) Retirement Plan Alternative (RPA). Employee contributions of 19.25% are matched 100% by the employer and employees experience an immediate vesting in the plan. Employees who currently or previously participated in Public Employees Retirement System (PERS) of Nevada may be eligible to continue in the PERS plan. Paid Leave : generous annual leave (accrual of 2 days per month), sick leave (granted 30 days at time of hire), 12 paid holidays, and paid family leave. Education Benefit : employees and their qualified dependents may take advantage of a tuition savings benefit. Faculty may take up to six credits per semester at a reduced rate and their dependents may access an unlimited number of credits, if they meet specific criteria. Additional Perks: Employee assistance programs and professional development opportunities. Pursuant NSHE Policy : "Initial placement must fall between the minimum salary and Q2/median/mid-range on the applicable salary schedule." To view the salary range for this position, please visit: Salary Schedules and select "Administrative Faculty, Grade E." APPROXIMATE STARTING DATE: December 1, 2025 MINIMUM QUALIFICATIONS: A Bachelor's degree from an accredited institution in public administration, business administration, higher education administration, or related field with a minimum of seven (7) years of progressively responsible leadership experience in operations, administration, or related areas. Experience coordinating high-level projects and managing internal processes across complex organizational structures. Preferred Qualifications: Master's degree in Public Administration, Organizational Leadership, or a related field preferred. Experience in higher education operations at the system or campus level. Demonstrated ability to manage executive-level logistics and implement cross-unit administrative systems. Familiarity with strategic planning, continuous improvement methodologies, or enterprise administrative tools. Working Conditions and Travel Requirements Occasional travel to NSHE institutions and System Administration (SA) sites may be required. Work is primarily performed in a standard office environment. Extended hours may be necessary during project implementation phases or in support of events. KNOWLEDGE, SKILLS, AND ABILITIES: Successful candidates must possess the following knowledge, skills and abilities. It is recommended that applicants for this position address each of the following items in the letter of application: Knowledge of operational practices and service models in higher education or public organizations. Skill in strategic planning, workflow coordination, and process improvement. Ability to develop and implement operational systems that serve multiple stakeholders. Strong communication, facilitation, and organizational skills. Ability to exercise discretion, maintain confidentiality, and manage sensitive projects. Capacity to work across functional areas and institutional lines with diplomacy and accountability. Proficiency in technology platforms related to project management, scheduling, workflow tracking, and communication. Understanding of logistical systems, workflows, and shared services in complex organizations. Familiarity with administrative system tools and project management practices. Excellent interpersonal and communication skills, including written reporting and executive briefings. Ability to analyze operational problems and recommend data-informed solutions. Strong time management, task coordination, and attention to detail. Ability to work effectively across diverse stakeholders and institutional partners. RESPONSIBILITIES: The duties of this position will include, but not be limited to: Provide oversight for operational logistics, including internal communications processes (e.g., message routing, executive briefing flows, and cabinet-level information tracking), scheduling infrastructure, space coordination, and key project timelines to ensure consistent and efficient systemwide coordination. Serve as a strategic project manager for Chancellor-level initiatives requiring multi-unit coordination and cross-functional input. Coordinate the logistical planning and execution of executive-level meetings, retreats, and systemwide convenings. Support strategic and operational planning cycles in collaboration with the Chancellor and executive team. Act as a liaison between the Chancellor's Office and operational stakeholders across institutions to ensure consistency and responsiveness. Coordinate special projects related to organizational planning, auxiliary service delivery, or external partnerships. Contribute to risk management, business continuity, and emergency preparedness planning in alignment with institutional operations. Execute and support daily logistical activities that enable the communication, scheduling, and coordination framework established by the Chancellor's Office, ensuring smooth day-to-day operations across the system. Assists in the development of standardized operational processes to support administrative efficiency and collaboration. Implementation of protocols and tools to improve scheduling, tracking, and task management across system office initiatives. Maintains progress on key operational initiatives as directed by the Chancellor. Facilitate communication, scheduling alignment, and system-level planning activities related to academic program reviews, accreditation reporting timelines, and academic master planning efforts, in coordination with institutional leadership. Provides logistical support for Chancellor-initiated academic planning sessions, system-level academic forums, or special meetings involving institutional academic leadership, in coordination with the Vice Chancellor for Academic Affairs. Supports the Chancellor's Office and the Vice Chancellor for Academic Affairs in tracking key academic planning timelines and reporting milestones to support system-level coordination and communication. Implement and refine shared services that improve administrative support, operational tracking, and internal efficiency. Facilitate workflow and documentation processes for high-level projects, ensuring milestones and deliverables are met. Oversee administrative support teams responsible for document flow, scheduling, calendaring, distribution, and logistical support. Monitor and enhance operational policies, identifying areas for procedural updates and system alignment. Coordinating briefings and developing dashboards on operational metrics, status updates, and service outcomes. Coordinates implementation of administrative systems that enhance non-academic operations across System Administration offices. Evaluates existing workflows and assists with process improvements to reduce inefficiencies. . click apply for full job details
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director of Finance Job no: 536376 Work type: Staff Full-Time Location: Main Campus (Gainesville, FL) Categories: Business/Accounting/Finance, Executive/Director/Management Department: - PH-ADMINISTRATIVE FIN AFFAIRS Classification Title:Director of Finance Classification Minimum Requirements: Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Job Description: Join Our Leadership Team Shape the Financial Future of the College of Pharmacy! Are you a strategic thinker with a passion for driving financial excellence? The University of Florida College of Pharmacy is seeking a dynamic Director of Finance to lead and shape our financial future. This pivotal role reports directly to the Dean and partners with senior leadership to align financial strategy with institutional priorities as we kick off our new five-year strategic plan. Budget and Financial Management: • Provide Financial Leadership • Lead and oversee financial operations across all college units • Offer strategic financial guidance aligned with the college's mission and goals Plan for Fiscal Sustainability • Direct short- and long-term financial planning to ensure stability • Advise the Dean and senior leadership on financial position, trends, risks, and opportunities including commitment tracking Develop & Implement Financial Strategy • Create comprehensive financial plans to support academic, research, and operational priorities • Ensure optimal resource allocation through data-informed planning Budget Management • Coordinate annual budgeting processes, including funding requests and reallocations • Oversee financial adjustments to support dynamic needs and priorities • Management of college incentive plans • Meet with individual department units to review program budget and future forecast • Provide detailed analysis and recommendations to improve financial planning and resource allocation Stewardship of Funds •Manage multiple funding streams: state appropriations, contracts and grants, UF Foundation, auxiliaries, student fees, and College of Pharmacy Faculty Practice Association accounts •Champion responsible, efficient financial stewardship that reflects institutional priorities • Policy Compliance & Communication • Interpret and apply financial policies from the university, state, and federal levels • Develop internal financial procedures and controls to maintain compliance and operational integrity Internal Support & Coordination • Act as a key resource for policy guidance and financial training • Collaborate with central UF offices Finance & Accounting, Contracts & Grants, Budget for policy alignment and consistency Financial Reporting and Compliance: • Directs preparation, review, and submission of internal and external financial reports, such as: • Variance reports • Forecasting summaries • Fund balances • Other reports required by university, state, or external entities • Ensures all reporting complies with university, state, and federal regulations and policies • Serves as the primary contact for financial audits and reviews by university, state, and independent auditors • Monitors financial transactions for accuracy, consistency, and integrity • Proactively investigates and resolves financial discrepancies and reporting issues • Oversight of annual auxiliary rate reviews Team Leadership: • Lead finance and logistics teams with strategic oversight and clear delegation • Align responsibilities with team strengths to ensure accountability and workflow efficiency • Guide performance through feedback, coaching, and professional development • Foster a collaborative, service-driven culture focused on growth and excellence • Ensure clear, consistent communication of expectations, timelines, and deliverables The University of Florida: UF, the flagship AAU institution of the State of Florida, is a top-tier research institution with a long history of training outstanding undergraduate, graduate, and professional students. UF is currently ranked among U.S. public universities by U.S. News and World Report. The University of Florida's academic health center is the country's only academic health center, with six health-related colleges located on a single, contiguous campus. The colleges, major research centers and institutes, and clinical enterprises focus on building collaborative, specialized clinical services centered on quality and innovation. The UF College of Pharmacy ranked by U.S. News & World Report as the No. 1 pharmacy college in Florida and the No. 4 pharmacy college nationally, the University of Florida College of Pharmacy has been developing future leaders in pharmacy practice and science for nearly a century. At campuses in Gainesville, Jacksonville and Orlando, award-winning faculty aim to improve the health of Floridians and people across the world through pharmacy education, high-impact research and clinical innovation. As one of the Top 3, National Institutes of Health-funded pharmacy colleges nationally, the UF College of Pharmacy features preeminent researchers who are leading major medical breakthroughs in areas such as drug discovery and development, pharmacometrics and systems pharmacology, and precision medicine. The college's online programs are among the largest and most successful in the world, having received multiple national awards for excellence in distance education. Why Gainesville? Gainesville is home to Florida's largest and oldest university, as well as a vibrant hub of education, healthcare, culture, and sports in the state. The University of Florida and UF Health Shands Hospital are major employers, providing jobs for many residents of surrounding counties. The Greater Gainesville area serves as the cultural, educational, and commercial heart of the north central Florida region. Gainesville offers a full range of municipal services, including cultural and administrative support. Renowned for its preservation of historic landmarks and natural beauty, the city boasts numerous parks, museums, and lakes that attract thousands of visitors. With its lush urban forest and Tree City USA designation, Gainesville stands out as one of Florida's most picturesque cities. Its central location provides convenient access to both coasts, offering easy exploration of Florida's famed beaches, springs, and nature reserves. Explore Gainesville in 60 Seconds. Expected Salary:Commensurate with education and experience. Employment Benefits include: • Health Insurance: UF participates in state- and university-sponsored benefits programs for individuals, families and domestic partners, and offers voluntary insurance that includes vision, dental, long-term disability and more. • Retirement Options: Attractive options include Florida Retirement System Pension Plan, State University System Optional Retirement Program, Florida Retirement System Investment Plan, and Voluntary Retirement Savings Plan. • Leave: UF Faculty and Staff enjoy a generous paid leave plan as well as access to a sick-leave pool, maternity/paternity leave, and leave payouts. To learn more visit: hr.ufl.edu/benefits Required Qualifications: •Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Preferred: • Advanced degree in Finance, Accounting, or Business, MBA preferred • Experience in higher education and/or a health care environment • Have extensive experience and knowledge in strategic financial/budget management • Experience with PeopleSoft and/or Workday • Significant supervisory experience and the ability to effectively manage, coach, mentor and motivate others • Ability to work strategically, develop and implement constituency programs and activities • Must be an outstanding communicator and possess excellent written and verbal communication skills; interpersonal skills; and the ability to work collegially and interact effectively with a constituency • Have a proven ability to cultivate and maintain strong working relationships with internal and external leaders and organizations • Ability to work collaboratively and be a team player • Strong customer service focused mindset Special Instructions to Applicants: We welcome nominations of and applications for individuals who would bring unique perspectives and experiences to support UF's mission of excellence in education, research, and student life. Inquiries and nominations can be sent to Search Chair John Gums, PharmD () Candidates must apply online at Careers at UF. For full consideration, applications must be submitted by August 14, 2025 with the following required documents: • Cover Letter • Resume • List of references for at least three (3) professional contacts that includes: • Full name • Current position • Email address • Telephone number Applications received after July 21, 2025 will be reviewed at the discretion of the search panel. The position posting will remain open and accept applications until a competitive pool of applicants is established. This is primarily an on-campus leadership position with hybrid flexibility possible after a successful onboarding period. Health Assessment Required: No . click apply for full job details
10/21/2025
Full time
Director of Finance Job no: 536376 Work type: Staff Full-Time Location: Main Campus (Gainesville, FL) Categories: Business/Accounting/Finance, Executive/Director/Management Department: - PH-ADMINISTRATIVE FIN AFFAIRS Classification Title:Director of Finance Classification Minimum Requirements: Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Job Description: Join Our Leadership Team Shape the Financial Future of the College of Pharmacy! Are you a strategic thinker with a passion for driving financial excellence? The University of Florida College of Pharmacy is seeking a dynamic Director of Finance to lead and shape our financial future. This pivotal role reports directly to the Dean and partners with senior leadership to align financial strategy with institutional priorities as we kick off our new five-year strategic plan. Budget and Financial Management: • Provide Financial Leadership • Lead and oversee financial operations across all college units • Offer strategic financial guidance aligned with the college's mission and goals Plan for Fiscal Sustainability • Direct short- and long-term financial planning to ensure stability • Advise the Dean and senior leadership on financial position, trends, risks, and opportunities including commitment tracking Develop & Implement Financial Strategy • Create comprehensive financial plans to support academic, research, and operational priorities • Ensure optimal resource allocation through data-informed planning Budget Management • Coordinate annual budgeting processes, including funding requests and reallocations • Oversee financial adjustments to support dynamic needs and priorities • Management of college incentive plans • Meet with individual department units to review program budget and future forecast • Provide detailed analysis and recommendations to improve financial planning and resource allocation Stewardship of Funds •Manage multiple funding streams: state appropriations, contracts and grants, UF Foundation, auxiliaries, student fees, and College of Pharmacy Faculty Practice Association accounts •Champion responsible, efficient financial stewardship that reflects institutional priorities • Policy Compliance & Communication • Interpret and apply financial policies from the university, state, and federal levels • Develop internal financial procedures and controls to maintain compliance and operational integrity Internal Support & Coordination • Act as a key resource for policy guidance and financial training • Collaborate with central UF offices Finance & Accounting, Contracts & Grants, Budget for policy alignment and consistency Financial Reporting and Compliance: • Directs preparation, review, and submission of internal and external financial reports, such as: • Variance reports • Forecasting summaries • Fund balances • Other reports required by university, state, or external entities • Ensures all reporting complies with university, state, and federal regulations and policies • Serves as the primary contact for financial audits and reviews by university, state, and independent auditors • Monitors financial transactions for accuracy, consistency, and integrity • Proactively investigates and resolves financial discrepancies and reporting issues • Oversight of annual auxiliary rate reviews Team Leadership: • Lead finance and logistics teams with strategic oversight and clear delegation • Align responsibilities with team strengths to ensure accountability and workflow efficiency • Guide performance through feedback, coaching, and professional development • Foster a collaborative, service-driven culture focused on growth and excellence • Ensure clear, consistent communication of expectations, timelines, and deliverables The University of Florida: UF, the flagship AAU institution of the State of Florida, is a top-tier research institution with a long history of training outstanding undergraduate, graduate, and professional students. UF is currently ranked among U.S. public universities by U.S. News and World Report. The University of Florida's academic health center is the country's only academic health center, with six health-related colleges located on a single, contiguous campus. The colleges, major research centers and institutes, and clinical enterprises focus on building collaborative, specialized clinical services centered on quality and innovation. The UF College of Pharmacy ranked by U.S. News & World Report as the No. 1 pharmacy college in Florida and the No. 4 pharmacy college nationally, the University of Florida College of Pharmacy has been developing future leaders in pharmacy practice and science for nearly a century. At campuses in Gainesville, Jacksonville and Orlando, award-winning faculty aim to improve the health of Floridians and people across the world through pharmacy education, high-impact research and clinical innovation. As one of the Top 3, National Institutes of Health-funded pharmacy colleges nationally, the UF College of Pharmacy features preeminent researchers who are leading major medical breakthroughs in areas such as drug discovery and development, pharmacometrics and systems pharmacology, and precision medicine. The college's online programs are among the largest and most successful in the world, having received multiple national awards for excellence in distance education. Why Gainesville? Gainesville is home to Florida's largest and oldest university, as well as a vibrant hub of education, healthcare, culture, and sports in the state. The University of Florida and UF Health Shands Hospital are major employers, providing jobs for many residents of surrounding counties. The Greater Gainesville area serves as the cultural, educational, and commercial heart of the north central Florida region. Gainesville offers a full range of municipal services, including cultural and administrative support. Renowned for its preservation of historic landmarks and natural beauty, the city boasts numerous parks, museums, and lakes that attract thousands of visitors. With its lush urban forest and Tree City USA designation, Gainesville stands out as one of Florida's most picturesque cities. Its central location provides convenient access to both coasts, offering easy exploration of Florida's famed beaches, springs, and nature reserves. Explore Gainesville in 60 Seconds. Expected Salary:Commensurate with education and experience. Employment Benefits include: • Health Insurance: UF participates in state- and university-sponsored benefits programs for individuals, families and domestic partners, and offers voluntary insurance that includes vision, dental, long-term disability and more. • Retirement Options: Attractive options include Florida Retirement System Pension Plan, State University System Optional Retirement Program, Florida Retirement System Investment Plan, and Voluntary Retirement Savings Plan. • Leave: UF Faculty and Staff enjoy a generous paid leave plan as well as access to a sick-leave pool, maternity/paternity leave, and leave payouts. To learn more visit: hr.ufl.edu/benefits Required Qualifications: •Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Preferred: • Advanced degree in Finance, Accounting, or Business, MBA preferred • Experience in higher education and/or a health care environment • Have extensive experience and knowledge in strategic financial/budget management • Experience with PeopleSoft and/or Workday • Significant supervisory experience and the ability to effectively manage, coach, mentor and motivate others • Ability to work strategically, develop and implement constituency programs and activities • Must be an outstanding communicator and possess excellent written and verbal communication skills; interpersonal skills; and the ability to work collegially and interact effectively with a constituency • Have a proven ability to cultivate and maintain strong working relationships with internal and external leaders and organizations • Ability to work collaboratively and be a team player • Strong customer service focused mindset Special Instructions to Applicants: We welcome nominations of and applications for individuals who would bring unique perspectives and experiences to support UF's mission of excellence in education, research, and student life. Inquiries and nominations can be sent to Search Chair John Gums, PharmD () Candidates must apply online at Careers at UF. For full consideration, applications must be submitted by August 14, 2025 with the following required documents: • Cover Letter • Resume • List of references for at least three (3) professional contacts that includes: • Full name • Current position • Email address • Telephone number Applications received after July 21, 2025 will be reviewed at the discretion of the search panel. The position posting will remain open and accept applications until a competitive pool of applicants is established. This is primarily an on-campus leadership position with hybrid flexibility possible after a successful onboarding period. Health Assessment Required: No . click apply for full job details
Rowan-Cabarrus Community College
Granite Quarry, North Carolina
Posting Number Regular_ Position Title Executive Director of Network and Security Classification Title: Director/Executive Director Min Salary: $ 81,302 Salary Type: Annually FLSA: E = Exempt Position Type Staff Position Summary Rowan-Cabarrus Community College seeks an experienced, strategic, and forward-thinking technology leader to serve as the Executive Director of Networking and Security . This senior leadership role is responsible for ensuring the reliability, performance, and security of the College's technology infrastructure, including on-campus and cloud-based networks, enterprise systems, and cybersecurity programs. The Executive Director provides vision, direction, and oversight for network architecture, data protection, disaster recovery, and compliance with federal and state information security standards. As a member of the Information Technology Services leadership team, the Executive Director partners with institutional leaders to develop strategies that strengthen teaching, learning, and operations across the College. Compensation and Benefits Competitive salary commensurate with education and experience. Comprehensive benefits package including health, dental, vision, retirement, and generous leave. Professional development and training opportunities provided by the College and the North Carolina Community College System. Required Education/Experience Associate's degree in information technology, Computer Science, Cybersecurity, or a related field. Seven (7) years of progressively responsible experience in networking and/or cybersecurity, with at least three (3) years in a leadership or managerial role. Strong knowledge of enterprise networking, information security frameworks, and higher education compliance requirements. Proven ability to lead staff, manage budgets, and deliver large-scale technology projects. Excellent communication, interpersonal, and collaboration skills. Preferred Education/Experience/Skills Master's degree in information technology, Cybersecurity, Business Administration, or related field. Professional certifications such as CISSP, CISM, CCNP, or equivalent. Direct experience in higher education, ideally within the North Carolina Community College System. Expertise in cloud networking, hybrid infrastructure, and zero-trust security architectures. Department Information Technology Services - ITS Work Hours Work Environment Standard office environment with regular interaction across multiple campus locations. Occasional evening or weekend work may be required to support system upgrades, incident response, or critical projects. This position is eligible for 1 day a week of Hybrid/remote work in alignment with College policy. Posting Date 09/10/2025 Open Until Filled: Yes Duty and Responsibility Strategic Leadership Provide vision and direction for networking, infrastructure, and cybersecurity services. Develop and implement long-term strategies for secure, scalable, and sustainable technology infrastructure. Advise senior leadership on technology trends, risks, and opportunities that support institutional priorities. Duty and Responsibility Network & Infrastructure Management Oversee design, implementation, and maintenance of wired, wireless, and cloud networking systems. Ensure reliability, scalability, and high performance of enterprise networking and communications. Manage lifecycle planning for network and security hardware, software, and services. Duty and Responsibility Cybersecurity & Compliance Direct the development and enforcement of information security policies, standards, and practices. Ensure compliance with FERPA, HIPAA, PCI-DSS, GDPR, NIST, and state/federal regulations. Oversee vulnerability management, threat detection, incident response, and disaster recovery planning. Lead cybersecurity awareness and training programs for faculty, staff, and students. Duty and Responsibility Team Leadership & Development Lead, mentor, and evaluate technical staff, promoting a culture of innovation, accountability, and service excellence. Encourage professional development, certification attainment, and cross-training within the networking and security teams. Foster collaboration across all ITS teams and college departments. Duty and Responsibility Collaboration & Partnerships Serve as a trusted advisor to faculty, staff, and administrators regarding networking and security. Build effective partnerships with vendors, contractors, and external agencies. Represent the College in state-wide technology initiatives and professional organizations. Duty and Responsibility Innovation & Continuous Improvement Stay informed on emerging technologies and evolving cybersecurity threats. Recommend innovative approaches to improve service delivery and strengthen resilience. Lead initiatives in areas such as cloud adoption, zero-trust security, and next-generation networking.
10/20/2025
Full time
Posting Number Regular_ Position Title Executive Director of Network and Security Classification Title: Director/Executive Director Min Salary: $ 81,302 Salary Type: Annually FLSA: E = Exempt Position Type Staff Position Summary Rowan-Cabarrus Community College seeks an experienced, strategic, and forward-thinking technology leader to serve as the Executive Director of Networking and Security . This senior leadership role is responsible for ensuring the reliability, performance, and security of the College's technology infrastructure, including on-campus and cloud-based networks, enterprise systems, and cybersecurity programs. The Executive Director provides vision, direction, and oversight for network architecture, data protection, disaster recovery, and compliance with federal and state information security standards. As a member of the Information Technology Services leadership team, the Executive Director partners with institutional leaders to develop strategies that strengthen teaching, learning, and operations across the College. Compensation and Benefits Competitive salary commensurate with education and experience. Comprehensive benefits package including health, dental, vision, retirement, and generous leave. Professional development and training opportunities provided by the College and the North Carolina Community College System. Required Education/Experience Associate's degree in information technology, Computer Science, Cybersecurity, or a related field. Seven (7) years of progressively responsible experience in networking and/or cybersecurity, with at least three (3) years in a leadership or managerial role. Strong knowledge of enterprise networking, information security frameworks, and higher education compliance requirements. Proven ability to lead staff, manage budgets, and deliver large-scale technology projects. Excellent communication, interpersonal, and collaboration skills. Preferred Education/Experience/Skills Master's degree in information technology, Cybersecurity, Business Administration, or related field. Professional certifications such as CISSP, CISM, CCNP, or equivalent. Direct experience in higher education, ideally within the North Carolina Community College System. Expertise in cloud networking, hybrid infrastructure, and zero-trust security architectures. Department Information Technology Services - ITS Work Hours Work Environment Standard office environment with regular interaction across multiple campus locations. Occasional evening or weekend work may be required to support system upgrades, incident response, or critical projects. This position is eligible for 1 day a week of Hybrid/remote work in alignment with College policy. Posting Date 09/10/2025 Open Until Filled: Yes Duty and Responsibility Strategic Leadership Provide vision and direction for networking, infrastructure, and cybersecurity services. Develop and implement long-term strategies for secure, scalable, and sustainable technology infrastructure. Advise senior leadership on technology trends, risks, and opportunities that support institutional priorities. Duty and Responsibility Network & Infrastructure Management Oversee design, implementation, and maintenance of wired, wireless, and cloud networking systems. Ensure reliability, scalability, and high performance of enterprise networking and communications. Manage lifecycle planning for network and security hardware, software, and services. Duty and Responsibility Cybersecurity & Compliance Direct the development and enforcement of information security policies, standards, and practices. Ensure compliance with FERPA, HIPAA, PCI-DSS, GDPR, NIST, and state/federal regulations. Oversee vulnerability management, threat detection, incident response, and disaster recovery planning. Lead cybersecurity awareness and training programs for faculty, staff, and students. Duty and Responsibility Team Leadership & Development Lead, mentor, and evaluate technical staff, promoting a culture of innovation, accountability, and service excellence. Encourage professional development, certification attainment, and cross-training within the networking and security teams. Foster collaboration across all ITS teams and college departments. Duty and Responsibility Collaboration & Partnerships Serve as a trusted advisor to faculty, staff, and administrators regarding networking and security. Build effective partnerships with vendors, contractors, and external agencies. Represent the College in state-wide technology initiatives and professional organizations. Duty and Responsibility Innovation & Continuous Improvement Stay informed on emerging technologies and evolving cybersecurity threats. Recommend innovative approaches to improve service delivery and strengthen resilience. Lead initiatives in areas such as cloud adoption, zero-trust security, and next-generation networking.
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, International Risk Management (ES Risk) Capital One is one of the fastest growing organizations in the world today and we are growing our teams globally. As Director for International Risk Management, you will play a pivotal role in developing and driving our international risk management agenda-from day one. Teamwork is at the heart of our innovation and we empower each other to think big. We welcome diverse perspectives and experiences as we reshape the financial industry. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. The Director for International Risk Management will support our Enterprise Services (ES) Risk office in Capital One's first line of defense, and will execute high-priority enterprise-level technology and cyber security and risk management initiatives related to our international expansion, influence across the organization, and drive the implementation of our strategy. Specifically, in this position, you will help lead and manage the international risk management function for ES, which includes executing and enhancing our risk management processes across Capital One, driving project and program delivery, and influencing outcomes supporting the broader International Risk Strategy for Capital One. You will collaborate closely with associates and senior Executives across all lines of defense, Lines of Business, and other risk management teams to support this work. This includes implementing risk management tools and frameworks for the organization and managing a sustainable and mature process to identify, assess, mitigate, and monitor risk. This role will also be responsible for big picture thinking, strategic direction, and partnering across teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders and associates. Your contributions will drive organizational change through risk identification, measurement, analysis and reporting in order to better manage the company's risk in an open and collaborative environment. This position is highly visible and requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Proficiency in risk management is key to success in this role. The successful candidate will be an experienced risk management professional who understands technology and cyber functions and organizations, with strong analytical, planning, strategic thinking, organizational and communication skills. Responsibilities: Drive and coordinate work related to Capital One's emerging international risk management function, working with the first line of defense Technology and Cyber teams, LOB, and second line of defense teams, to ensure effective collaboration within the team and across stakeholder groups. Assist the ES Risk leadership team and country leadership team(s) in delivering their strategy and service model. Lead the development of international processes and the related risk management framework by providing thought leadership, oversight, and coordination with LOBs and other risk management associates across the company. Drive program and process-level risk assessments to identify risks and mitigation plans based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction. Be a trusted advisor and drive effective and relevant technology and cyber risk conversations. Stay current on emerging cyber threats and potential implications to the firm. Stay current on the changing regulatory environment and understand the impacts to our international expansion efforts. Assist and drive project and program delivery, including project and process management, reporting, engagement in senior leadership meetings, drafting and reviewing materials for Senior Management. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aides. Draft, contribute to, edit, and deliver presentations that aid in the design, development, refinement, and usage of risk methods. Participate in risk and other management forums and contribute to continuous improvement of risk and project / program management practices. Support direction, manages expectations, and leads cross-functional teams through various initiatives, including oversight of third party resources. Support interactions with Internal Audit and Regulatory agencies related to our work, as applicable. Participate in and execute other special projects for the team, as needed. Basic Qualifications: Bachelor's Degree or military experience At least 7 years experience in Cybersecurity, Technology, Risk Management, or Audit or a combination of the the four At least 7 years of experience planning and leading risk assessments and audits At least 4 years of project or process management experience At least 4 years of People Management experience At least 2 years of experience implementing an International program or leading an International or Country Risk Management program Preferred Qualifications: 10 years experience in Cybersecurity, Technology, Risk Management, International Risk, or External Audit, or a combination of these 8 years of experience performing information security or technology risk identification and assessments, such as Control Self Assessments (CSAs), or completing assessments within established industry risk frameworks 8 years experience performing data analysis in support of internal risk assessments and control design and operating effectiveness reviews 5 years of experience performing data analysis in support of cybersecurity assessments and control design in a cloud environment (preferably AWS) 5 years of project management experience leading cross-functional projects and programs 3 years of Financial Services industry experience, including familiarity with regulatory practices Cybersecurity and technology risk and/or project management certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Project Management Professional (PMP) Certification, or Masters Certificate of Project Management (CPM) or related certifications Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation . click apply for full job details
10/20/2025
Full time
Director, International Risk Management (ES Risk) Capital One is one of the fastest growing organizations in the world today and we are growing our teams globally. As Director for International Risk Management, you will play a pivotal role in developing and driving our international risk management agenda-from day one. Teamwork is at the heart of our innovation and we empower each other to think big. We welcome diverse perspectives and experiences as we reshape the financial industry. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. The Director for International Risk Management will support our Enterprise Services (ES) Risk office in Capital One's first line of defense, and will execute high-priority enterprise-level technology and cyber security and risk management initiatives related to our international expansion, influence across the organization, and drive the implementation of our strategy. Specifically, in this position, you will help lead and manage the international risk management function for ES, which includes executing and enhancing our risk management processes across Capital One, driving project and program delivery, and influencing outcomes supporting the broader International Risk Strategy for Capital One. You will collaborate closely with associates and senior Executives across all lines of defense, Lines of Business, and other risk management teams to support this work. This includes implementing risk management tools and frameworks for the organization and managing a sustainable and mature process to identify, assess, mitigate, and monitor risk. This role will also be responsible for big picture thinking, strategic direction, and partnering across teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders and associates. Your contributions will drive organizational change through risk identification, measurement, analysis and reporting in order to better manage the company's risk in an open and collaborative environment. This position is highly visible and requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Proficiency in risk management is key to success in this role. The successful candidate will be an experienced risk management professional who understands technology and cyber functions and organizations, with strong analytical, planning, strategic thinking, organizational and communication skills. Responsibilities: Drive and coordinate work related to Capital One's emerging international risk management function, working with the first line of defense Technology and Cyber teams, LOB, and second line of defense teams, to ensure effective collaboration within the team and across stakeholder groups. Assist the ES Risk leadership team and country leadership team(s) in delivering their strategy and service model. Lead the development of international processes and the related risk management framework by providing thought leadership, oversight, and coordination with LOBs and other risk management associates across the company. Drive program and process-level risk assessments to identify risks and mitigation plans based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction. Be a trusted advisor and drive effective and relevant technology and cyber risk conversations. Stay current on emerging cyber threats and potential implications to the firm. Stay current on the changing regulatory environment and understand the impacts to our international expansion efforts. Assist and drive project and program delivery, including project and process management, reporting, engagement in senior leadership meetings, drafting and reviewing materials for Senior Management. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aides. Draft, contribute to, edit, and deliver presentations that aid in the design, development, refinement, and usage of risk methods. Participate in risk and other management forums and contribute to continuous improvement of risk and project / program management practices. Support direction, manages expectations, and leads cross-functional teams through various initiatives, including oversight of third party resources. Support interactions with Internal Audit and Regulatory agencies related to our work, as applicable. Participate in and execute other special projects for the team, as needed. Basic Qualifications: Bachelor's Degree or military experience At least 7 years experience in Cybersecurity, Technology, Risk Management, or Audit or a combination of the the four At least 7 years of experience planning and leading risk assessments and audits At least 4 years of project or process management experience At least 4 years of People Management experience At least 2 years of experience implementing an International program or leading an International or Country Risk Management program Preferred Qualifications: 10 years experience in Cybersecurity, Technology, Risk Management, International Risk, or External Audit, or a combination of these 8 years of experience performing information security or technology risk identification and assessments, such as Control Self Assessments (CSAs), or completing assessments within established industry risk frameworks 8 years experience performing data analysis in support of internal risk assessments and control design and operating effectiveness reviews 5 years of experience performing data analysis in support of cybersecurity assessments and control design in a cloud environment (preferably AWS) 5 years of project management experience leading cross-functional projects and programs 3 years of Financial Services industry experience, including familiarity with regulatory practices Cybersecurity and technology risk and/or project management certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Project Management Professional (PMP) Certification, or Masters Certificate of Project Management (CPM) or related certifications Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation . click apply for full job details
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director of Data Protection - Technology Risk Management Capital One is one of the fastest growing organizations in the world today. The growth of the business is being accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The roughly one hundred fifty professionals in TDRM are trusted expert advisers who shape decisions, challenge activities to ensure they meet our standards, and generally oversee technology and information security risk across the business and the central technology organization. TDRM is a second line organization, which means it is independent and sits within the Risk Management Organization. TDRM plays a critical role in ensuring that the company's risk-taking entities are aware of the risks inherent in their activities and decisions, the impact of their actions on the company at an enterprise level, and opportunities to reduce, mitigate or avoid the risks altogether. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology data, and risk management professionals who have a wealth of experience and a demonstrated ability to provide value added recommendations and deliver high-impact results in their areas of expertise. Cybersecurity, Technology and Data risk management are a strategic priority at Capital One, with heavy engagement from the Board, the Chief Executive Officer, and the executive committee. By joining TDRM, you will be providing these executives with the trusted, independent voice they need to ensure our company's technology risks are appropriately managed. Director - Advisory & Oversight Data Protection: We are currently seeking a dynamic leader with significant experience in engaging with business and technology leaders to identify and mitigate cyber security risk in the field of data protection. This individual will challenge our business divisions to analyze, monitor, and manage these cybersecurity risks. The ideal candidate for this role will have a deep understanding of cyber security risk, both from a technical and risk management perspective pertaining to general data protection, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention and destruction. The associate in this role will lead a team and a program to develop relationships and influence risk taking across the organization, providing oversight and effective challenge. Responsibilities: Play a lead role in identifying areas of cyber risk to provide oversight, analysis, effective challenge, and risk-informed recommendations. Provide and manage the production of technical assessments of the effectiveness and design of cybersecurity controls Conduct assessments and draft assessment for senior management and other stakeholders, to include regulatory agencies and the Board of Directors, as needed. Manage a team of cybersecurity professionals. Set vision and direction, manage performance and career development of associates. Stay current on emerging cyber threats and risk management approaches. Collaborate effectively with stakeholders and leaders across multiple organizations to achieve objectives. Coordinate program-related activities and deliverables to ensure effective collaboration within the team and across stakeholder groups. Promote and influence change in technology and program from the first line of defense that drives management of technology and cyber risk within the company's appetite. Basic Qualifications: A Bachelor's degree or military experience At least 7 years of cybersecurity operations experience with enterprise-grade data protection tools or processes At least 5 years of experience in data protection or technology processes, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention, destruction or a combination. At least 5 years of experience of people management At least 2 years of data or certificate management experience At least 2 years of experience with public cloud infrastructure or security principles Preferred Qualifications: At least 1 professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC), Security+ - CompTIA Excellent written and verbal communication skills. This role requires the ability to articulate complex technical concepts in clear, concise, actionable manner through both written products and verbal communications At least 2 years of experience managing, consulting, auditing, or working in the fields of information security, technology, or risk management Familiarity with the field of threat intelligence concepts. Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate Familiarity with financial sector regulatory practices and second line of defense effective challenge Experience with performing risk assessments and risk reporting Passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple projects while maintaining superior results Ability to work cross-functionally, individually, and to lead work among a team Execution oriented and a self-motivator Familiarity NIST Cybersecurity Framework controls, NIST 800-53, ISO 27000-1 At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director of Data Protection - Technology Risk Management Capital One is one of the fastest growing organizations in the world today. The growth of the business is being accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The roughly one hundred fifty professionals in TDRM are trusted expert advisers who shape decisions, challenge activities to ensure they meet our standards, and generally oversee technology and information security risk across the business and the central technology organization. TDRM is a second line organization, which means it is independent and sits within the Risk Management Organization. TDRM plays a critical role in ensuring that the company's risk-taking entities are aware of the risks inherent in their activities and decisions, the impact of their actions on the company at an enterprise level, and opportunities to reduce, mitigate or avoid the risks altogether. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology data, and risk management professionals who have a wealth of experience and a demonstrated ability to provide value added recommendations and deliver high-impact results in their areas of expertise. Cybersecurity, Technology and Data risk management are a strategic priority at Capital One, with heavy engagement from the Board, the Chief Executive Officer, and the executive committee. By joining TDRM, you will be providing these executives with the trusted, independent voice they need to ensure our company's technology risks are appropriately managed. Director - Advisory & Oversight Data Protection: We are currently seeking a dynamic leader with significant experience in engaging with business and technology leaders to identify and mitigate cyber security risk in the field of data protection. This individual will challenge our business divisions to analyze, monitor, and manage these cybersecurity risks. The ideal candidate for this role will have a deep understanding of cyber security risk, both from a technical and risk management perspective pertaining to general data protection, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention and destruction. The associate in this role will lead a team and a program to develop relationships and influence risk taking across the organization, providing oversight and effective challenge. Responsibilities: Play a lead role in identifying areas of cyber risk to provide oversight, analysis, effective challenge, and risk-informed recommendations. Provide and manage the production of technical assessments of the effectiveness and design of cybersecurity controls Conduct assessments and draft assessment for senior management and other stakeholders, to include regulatory agencies and the Board of Directors, as needed. Manage a team of cybersecurity professionals. Set vision and direction, manage performance and career development of associates. Stay current on emerging cyber threats and risk management approaches. Collaborate effectively with stakeholders and leaders across multiple organizations to achieve objectives. Coordinate program-related activities and deliverables to ensure effective collaboration within the team and across stakeholder groups. Promote and influence change in technology and program from the first line of defense that drives management of technology and cyber risk within the company's appetite. Basic Qualifications: A Bachelor's degree or military experience At least 7 years of cybersecurity operations experience with enterprise-grade data protection tools or processes At least 5 years of experience in data protection or technology processes, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention, destruction or a combination. At least 5 years of experience of people management At least 2 years of data or certificate management experience At least 2 years of experience with public cloud infrastructure or security principles Preferred Qualifications: At least 1 professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC), Security+ - CompTIA Excellent written and verbal communication skills. This role requires the ability to articulate complex technical concepts in clear, concise, actionable manner through both written products and verbal communications At least 2 years of experience managing, consulting, auditing, or working in the fields of information security, technology, or risk management Familiarity with the field of threat intelligence concepts. Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate Familiarity with financial sector regulatory practices and second line of defense effective challenge Experience with performing risk assessments and risk reporting Passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple projects while maintaining superior results Ability to work cross-functionally, individually, and to lead work among a team Execution oriented and a self-motivator Familiarity NIST Cybersecurity Framework controls, NIST 800-53, ISO 27000-1 At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director of Data Protection - Technology Risk Management Capital One is one of the fastest growing organizations in the world today. The growth of the business is being accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The roughly one hundred fifty professionals in TDRM are trusted expert advisers who shape decisions, challenge activities to ensure they meet our standards, and generally oversee technology and information security risk across the business and the central technology organization. TDRM is a second line organization, which means it is independent and sits within the Risk Management Organization. TDRM plays a critical role in ensuring that the company's risk-taking entities are aware of the risks inherent in their activities and decisions, the impact of their actions on the company at an enterprise level, and opportunities to reduce, mitigate or avoid the risks altogether. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology data, and risk management professionals who have a wealth of experience and a demonstrated ability to provide value added recommendations and deliver high-impact results in their areas of expertise. Cybersecurity, Technology and Data risk management are a strategic priority at Capital One, with heavy engagement from the Board, the Chief Executive Officer, and the executive committee. By joining TDRM, you will be providing these executives with the trusted, independent voice they need to ensure our company's technology risks are appropriately managed. Director - Advisory & Oversight Data Protection: We are currently seeking a dynamic leader with significant experience in engaging with business and technology leaders to identify and mitigate cyber security risk in the field of data protection. This individual will challenge our business divisions to analyze, monitor, and manage these cybersecurity risks. The ideal candidate for this role will have a deep understanding of cyber security risk, both from a technical and risk management perspective pertaining to general data protection, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention and destruction. The associate in this role will lead a team and a program to develop relationships and influence risk taking across the organization, providing oversight and effective challenge. Responsibilities: Play a lead role in identifying areas of cyber risk to provide oversight, analysis, effective challenge, and risk-informed recommendations. Provide and manage the production of technical assessments of the effectiveness and design of cybersecurity controls Conduct assessments and draft assessment for senior management and other stakeholders, to include regulatory agencies and the Board of Directors, as needed. Manage a team of cybersecurity professionals. Set vision and direction, manage performance and career development of associates. Stay current on emerging cyber threats and risk management approaches. Collaborate effectively with stakeholders and leaders across multiple organizations to achieve objectives. Coordinate program-related activities and deliverables to ensure effective collaboration within the team and across stakeholder groups. Promote and influence change in technology and program from the first line of defense that drives management of technology and cyber risk within the company's appetite. Basic Qualifications: A Bachelor's degree or military experience At least 7 years of cybersecurity operations experience with enterprise-grade data protection tools or processes At least 5 years of experience in data protection or technology processes, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention, destruction or a combination. At least 5 years of experience of people management At least 2 years of data or certificate management experience At least 2 years of experience with public cloud infrastructure or security principles Preferred Qualifications: At least 1 professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC), Security+ - CompTIA Excellent written and verbal communication skills. This role requires the ability to articulate complex technical concepts in clear, concise, actionable manner through both written products and verbal communications At least 2 years of experience managing, consulting, auditing, or working in the fields of information security, technology, or risk management Familiarity with the field of threat intelligence concepts. Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate Familiarity with financial sector regulatory practices and second line of defense effective challenge Experience with performing risk assessments and risk reporting Passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple projects while maintaining superior results Ability to work cross-functionally, individually, and to lead work among a team Execution oriented and a self-motivator Familiarity NIST Cybersecurity Framework controls, NIST 800-53, ISO 27000-1 At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director of Data Protection - Technology Risk Management Capital One is one of the fastest growing organizations in the world today. The growth of the business is being accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The roughly one hundred fifty professionals in TDRM are trusted expert advisers who shape decisions, challenge activities to ensure they meet our standards, and generally oversee technology and information security risk across the business and the central technology organization. TDRM is a second line organization, which means it is independent and sits within the Risk Management Organization. TDRM plays a critical role in ensuring that the company's risk-taking entities are aware of the risks inherent in their activities and decisions, the impact of their actions on the company at an enterprise level, and opportunities to reduce, mitigate or avoid the risks altogether. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology data, and risk management professionals who have a wealth of experience and a demonstrated ability to provide value added recommendations and deliver high-impact results in their areas of expertise. Cybersecurity, Technology and Data risk management are a strategic priority at Capital One, with heavy engagement from the Board, the Chief Executive Officer, and the executive committee. By joining TDRM, you will be providing these executives with the trusted, independent voice they need to ensure our company's technology risks are appropriately managed. Director - Advisory & Oversight Data Protection: We are currently seeking a dynamic leader with significant experience in engaging with business and technology leaders to identify and mitigate cyber security risk in the field of data protection. This individual will challenge our business divisions to analyze, monitor, and manage these cybersecurity risks. The ideal candidate for this role will have a deep understanding of cyber security risk, both from a technical and risk management perspective pertaining to general data protection, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention and destruction. The associate in this role will lead a team and a program to develop relationships and influence risk taking across the organization, providing oversight and effective challenge. Responsibilities: Play a lead role in identifying areas of cyber risk to provide oversight, analysis, effective challenge, and risk-informed recommendations. Provide and manage the production of technical assessments of the effectiveness and design of cybersecurity controls Conduct assessments and draft assessment for senior management and other stakeholders, to include regulatory agencies and the Board of Directors, as needed. Manage a team of cybersecurity professionals. Set vision and direction, manage performance and career development of associates. Stay current on emerging cyber threats and risk management approaches. Collaborate effectively with stakeholders and leaders across multiple organizations to achieve objectives. Coordinate program-related activities and deliverables to ensure effective collaboration within the team and across stakeholder groups. Promote and influence change in technology and program from the first line of defense that drives management of technology and cyber risk within the company's appetite. Basic Qualifications: A Bachelor's degree or military experience At least 7 years of cybersecurity operations experience with enterprise-grade data protection tools or processes At least 5 years of experience in data protection or technology processes, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention, destruction or a combination. At least 5 years of experience of people management At least 2 years of data or certificate management experience At least 2 years of experience with public cloud infrastructure or security principles Preferred Qualifications: At least 1 professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC), Security+ - CompTIA Excellent written and verbal communication skills. This role requires the ability to articulate complex technical concepts in clear, concise, actionable manner through both written products and verbal communications At least 2 years of experience managing, consulting, auditing, or working in the fields of information security, technology, or risk management Familiarity with the field of threat intelligence concepts. Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate Familiarity with financial sector regulatory practices and second line of defense effective challenge Experience with performing risk assessments and risk reporting Passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple projects while maintaining superior results Ability to work cross-functionally, individually, and to lead work among a team Execution oriented and a self-motivator Familiarity NIST Cybersecurity Framework controls, NIST 800-53, ISO 27000-1 At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
