Director of Finance Job no: 536376 Work type: Staff Full-Time Location: Main Campus (Gainesville, FL) Categories: Business/Accounting/Finance, Executive/Director/Management Department: - PH-ADMINISTRATIVE FIN AFFAIRS Classification Title:Director of Finance Classification Minimum Requirements: Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Job Description: Join Our Leadership Team-Shape the Financial Future of the College of Pharmacy! Are you a strategic thinker with a passion for driving financial excellence? The University of Florida College of Pharmacy is seeking a dynamic Director of Finance to lead and shape our financial future. This pivotal role reports directly to the Dean and partners with senior leadership to align financial strategy with institutional priorities as we kick off our new five-year strategic plan. Budget and Financial Management: • Provide Financial Leadership • Lead and oversee financial operations across all college units • Offer strategic financial guidance aligned with the college's mission and goals Plan for Fiscal Sustainability • Direct short- and long-term financial planning to ensure stability • Advise the Dean and senior leadership on financial position, trends, risks, and opportunities including commitment tracking Develop & Implement Financial Strategy • Create comprehensive financial plans to support academic, research, and operational priorities • Ensure optimal resource allocation through data-informed planning Budget Management • Coordinate annual budgeting processes, including funding requests and reallocations • Oversee financial adjustments to support dynamic needs and priorities • Management of college incentive plans • Meet with individual department units to review program budget and future forecast • Provide detailed analysis and recommendations to improve financial planning and resource allocation Stewardship of Funds •Manage multiple funding streams: state appropriations, contracts and grants, UF Foundation, auxiliaries, student fees, and College of Pharmacy Faculty Practice Association accounts •Champion responsible, efficient financial stewardship that reflects institutional priorities • Policy Compliance & Communication • Interpret and apply financial policies from the university, state, and federal levels • Develop internal financial procedures and controls to maintain compliance and operational integrity Internal Support & Coordination • Act as a key resource for policy guidance and financial training • Collaborate with central UF offices-Finance & Accounting, Contracts & Grants, Budget-for policy alignment and consistency Financial Reporting and Compliance: • Directs preparation, review, and submission of internal and external financial reports, such as: • Variance reports • Forecasting summaries • Fund balances • Other reports required by university, state, or external entities • Ensures all reporting complies with university, state, and federal regulations and policies • Serves as the primary contact for financial audits and reviews by university, state, and independent auditors • Monitors financial transactions for accuracy, consistency, and integrity • Proactively investigates and resolves financial discrepancies and reporting issues • Oversight of annual auxiliary rate reviews Team Leadership: • Lead finance and logistics teams with strategic oversight and clear delegation • Align responsibilities with team strengths to ensure accountability and workflow efficiency • Guide performance through feedback, coaching, and professional development • Foster a collaborative, service-driven culture focused on growth and excellence • Ensure clear, consistent communication of expectations, timelines, and deliverables The University of Florida: UF, the flagship AAU institution of the State of Florida, is a top-tier research institution with a long history of training outstanding undergraduate, graduate, and professional students. UF is currently ranked among U.S. public universities by U.S. News and World Report. The University of Florida's academic health center is the country's only academic health center, with six health-related colleges located on a single, contiguous campus. The colleges, major research centers and institutes, and clinical enterprises focus on building collaborative, specialized clinical services centered on quality and innovation. The UF College of Pharmacy ranked by U.S. News & World Report as the No. 1 pharmacy college in Florida and the No. 4 pharmacy college nationally, the University of Florida College of Pharmacy has been developing future leaders in pharmacy practice and science for nearly a century. At campuses in Gainesville, Jacksonville and Orlando, award-winning faculty aim to improve the health of Floridians and people across the world through pharmacy education, high-impact research and clinical innovation. As one of the Top 3, National Institutes of Health-funded pharmacy colleges nationally, the UF College of Pharmacy features preeminent researchers who are leading major medical breakthroughs in areas such as drug discovery and development, pharmacometrics and systems pharmacology, and precision medicine. The college's online programs are among the largest and most successful in the world, having received multiple national awards for excellence in distance education. Why Gainesville? Gainesville is home to Florida's largest and oldest university, as well as a vibrant hub of education, healthcare, culture, and sports in the state. The University of Florida and UF Health Shands Hospital are major employers, providing jobs for many residents of surrounding counties. The Greater Gainesville area serves as the cultural, educational, and commercial heart of the north central Florida region. Gainesville offers a full range of municipal services, including cultural and administrative support. Renowned for its preservation of historic landmarks and natural beauty, the city boasts numerous parks, museums, and lakes that attract thousands of visitors. With its lush urban forest and Tree City USA designation, Gainesville stands out as one of Florida's most picturesque cities. Its central location provides convenient access to both coasts, offering easy exploration of Florida's famed beaches, springs, and nature reserves. Explore Gainesville in 60 Seconds. Expected Salary:Commensurate with education and experience. Employment Benefits include: • Health Insurance: UF participates in state- and university-sponsored benefits programs for individuals, families and domestic partners, and offers voluntary insurance that includes vision, dental, long-term disability and more. • Retirement Options: Attractive options include Florida Retirement System Pension Plan, State University System Optional Retirement Program, Florida Retirement System Investment Plan, and Voluntary Retirement Savings Plan. • Leave: UF Faculty and Staff enjoy a generous paid leave plan as well as access to a sick-leave pool, maternity/paternity leave, and leave payouts. To learn more visit: hr.ufl.edu/benefits Required Qualifications: •Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Preferred: • Advanced degree in Finance, Accounting, or Business, MBA preferred • Experience in higher education and/or a health care environment • Have extensive experience and knowledge in strategic financial/budget management • Experience with PeopleSoft and/or Workday • Significant supervisory experience and the ability to effectively manage, coach, mentor and motivate others • Ability to work strategically, develop and implement constituency programs and activities • Must be an outstanding communicator and possess excellent written and verbal communication skills; interpersonal skills; and the ability to work collegially and interact effectively with a constituency • Have a proven ability to cultivate and maintain strong working relationships with internal and external leaders and organizations • Ability to work collaboratively and be a team player • Strong customer service focused mindset Special Instructions to Applicants: We welcome nominations of and applications for individuals who would bring unique perspectives and experiences to support UF's mission of excellence in education, research, and student life. Inquiries and nominations can be sent to Search Chair John Gums, PharmD () Candidates must apply online at Careers at UF. For full consideration, applications must be submitted by August 14, 2025 with the following required documents: • Cover Letter • Resume • List of references for at least three (3) professional contacts that includes: • Full name • Current position • Email address • Telephone number Applications received after July 21, 2025 will be reviewed at the discretion of the search panel. The position posting will remain open and accept applications until a competitive pool of applicants is established. This is primarily an on-campus leadership position with hybrid flexibility possible after a successful onboarding period. Health Assessment Required: No . click apply for full job details
10/21/2025
Full time
Director of Finance Job no: 536376 Work type: Staff Full-Time Location: Main Campus (Gainesville, FL) Categories: Business/Accounting/Finance, Executive/Director/Management Department: - PH-ADMINISTRATIVE FIN AFFAIRS Classification Title:Director of Finance Classification Minimum Requirements: Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Job Description: Join Our Leadership Team-Shape the Financial Future of the College of Pharmacy! Are you a strategic thinker with a passion for driving financial excellence? The University of Florida College of Pharmacy is seeking a dynamic Director of Finance to lead and shape our financial future. This pivotal role reports directly to the Dean and partners with senior leadership to align financial strategy with institutional priorities as we kick off our new five-year strategic plan. Budget and Financial Management: • Provide Financial Leadership • Lead and oversee financial operations across all college units • Offer strategic financial guidance aligned with the college's mission and goals Plan for Fiscal Sustainability • Direct short- and long-term financial planning to ensure stability • Advise the Dean and senior leadership on financial position, trends, risks, and opportunities including commitment tracking Develop & Implement Financial Strategy • Create comprehensive financial plans to support academic, research, and operational priorities • Ensure optimal resource allocation through data-informed planning Budget Management • Coordinate annual budgeting processes, including funding requests and reallocations • Oversee financial adjustments to support dynamic needs and priorities • Management of college incentive plans • Meet with individual department units to review program budget and future forecast • Provide detailed analysis and recommendations to improve financial planning and resource allocation Stewardship of Funds •Manage multiple funding streams: state appropriations, contracts and grants, UF Foundation, auxiliaries, student fees, and College of Pharmacy Faculty Practice Association accounts •Champion responsible, efficient financial stewardship that reflects institutional priorities • Policy Compliance & Communication • Interpret and apply financial policies from the university, state, and federal levels • Develop internal financial procedures and controls to maintain compliance and operational integrity Internal Support & Coordination • Act as a key resource for policy guidance and financial training • Collaborate with central UF offices-Finance & Accounting, Contracts & Grants, Budget-for policy alignment and consistency Financial Reporting and Compliance: • Directs preparation, review, and submission of internal and external financial reports, such as: • Variance reports • Forecasting summaries • Fund balances • Other reports required by university, state, or external entities • Ensures all reporting complies with university, state, and federal regulations and policies • Serves as the primary contact for financial audits and reviews by university, state, and independent auditors • Monitors financial transactions for accuracy, consistency, and integrity • Proactively investigates and resolves financial discrepancies and reporting issues • Oversight of annual auxiliary rate reviews Team Leadership: • Lead finance and logistics teams with strategic oversight and clear delegation • Align responsibilities with team strengths to ensure accountability and workflow efficiency • Guide performance through feedback, coaching, and professional development • Foster a collaborative, service-driven culture focused on growth and excellence • Ensure clear, consistent communication of expectations, timelines, and deliverables The University of Florida: UF, the flagship AAU institution of the State of Florida, is a top-tier research institution with a long history of training outstanding undergraduate, graduate, and professional students. UF is currently ranked among U.S. public universities by U.S. News and World Report. The University of Florida's academic health center is the country's only academic health center, with six health-related colleges located on a single, contiguous campus. The colleges, major research centers and institutes, and clinical enterprises focus on building collaborative, specialized clinical services centered on quality and innovation. The UF College of Pharmacy ranked by U.S. News & World Report as the No. 1 pharmacy college in Florida and the No. 4 pharmacy college nationally, the University of Florida College of Pharmacy has been developing future leaders in pharmacy practice and science for nearly a century. At campuses in Gainesville, Jacksonville and Orlando, award-winning faculty aim to improve the health of Floridians and people across the world through pharmacy education, high-impact research and clinical innovation. As one of the Top 3, National Institutes of Health-funded pharmacy colleges nationally, the UF College of Pharmacy features preeminent researchers who are leading major medical breakthroughs in areas such as drug discovery and development, pharmacometrics and systems pharmacology, and precision medicine. The college's online programs are among the largest and most successful in the world, having received multiple national awards for excellence in distance education. Why Gainesville? Gainesville is home to Florida's largest and oldest university, as well as a vibrant hub of education, healthcare, culture, and sports in the state. The University of Florida and UF Health Shands Hospital are major employers, providing jobs for many residents of surrounding counties. The Greater Gainesville area serves as the cultural, educational, and commercial heart of the north central Florida region. Gainesville offers a full range of municipal services, including cultural and administrative support. Renowned for its preservation of historic landmarks and natural beauty, the city boasts numerous parks, museums, and lakes that attract thousands of visitors. With its lush urban forest and Tree City USA designation, Gainesville stands out as one of Florida's most picturesque cities. Its central location provides convenient access to both coasts, offering easy exploration of Florida's famed beaches, springs, and nature reserves. Explore Gainesville in 60 Seconds. Expected Salary:Commensurate with education and experience. Employment Benefits include: • Health Insurance: UF participates in state- and university-sponsored benefits programs for individuals, families and domestic partners, and offers voluntary insurance that includes vision, dental, long-term disability and more. • Retirement Options: Attractive options include Florida Retirement System Pension Plan, State University System Optional Retirement Program, Florida Retirement System Investment Plan, and Voluntary Retirement Savings Plan. • Leave: UF Faculty and Staff enjoy a generous paid leave plan as well as access to a sick-leave pool, maternity/paternity leave, and leave payouts. To learn more visit: hr.ufl.edu/benefits Required Qualifications: •Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Preferred: • Advanced degree in Finance, Accounting, or Business, MBA preferred • Experience in higher education and/or a health care environment • Have extensive experience and knowledge in strategic financial/budget management • Experience with PeopleSoft and/or Workday • Significant supervisory experience and the ability to effectively manage, coach, mentor and motivate others • Ability to work strategically, develop and implement constituency programs and activities • Must be an outstanding communicator and possess excellent written and verbal communication skills; interpersonal skills; and the ability to work collegially and interact effectively with a constituency • Have a proven ability to cultivate and maintain strong working relationships with internal and external leaders and organizations • Ability to work collaboratively and be a team player • Strong customer service focused mindset Special Instructions to Applicants: We welcome nominations of and applications for individuals who would bring unique perspectives and experiences to support UF's mission of excellence in education, research, and student life. Inquiries and nominations can be sent to Search Chair John Gums, PharmD () Candidates must apply online at Careers at UF. For full consideration, applications must be submitted by August 14, 2025 with the following required documents: • Cover Letter • Resume • List of references for at least three (3) professional contacts that includes: • Full name • Current position • Email address • Telephone number Applications received after July 21, 2025 will be reviewed at the discretion of the search panel. The position posting will remain open and accept applications until a competitive pool of applicants is established. This is primarily an on-campus leadership position with hybrid flexibility possible after a successful onboarding period. Health Assessment Required: No . click apply for full job details
Job Title: Director, Operations and Risk Location: USO-TW Building ATL Regular/Temporary: Regular Full/Part Time: Full-Time Job ID: 269691 About Us The University System of Georgia (USG) is comprised of 26 higher education institutions as well as the University System Office (USO). Within the USO, our administrative operations are primarily housed in the Trinity Washington Building located in downtown Atlanta. Our Information Technology Services (ITS) division is located in Athens. The University System of Georgia Shared Services Center (SSC) is located in Sandersville. The Georgia Public Library System is located in Atlanta. The Georgia Archives is located in Morrow. The State of Georgia Records Center is located in Austell. Location Georgia Archives - 5800 Jonesboro Rd Morrow, GA 30260 Georgia Public Library Services (GPLS) - 2872 Woodcock Blvd Atlanta, GA 30341 Information Technology Services (ITS) - 2500 Daniells Bridge Road Athens, GA 30606 Shared Services Center (SSC) - 1005 George J Lyons Pkwy Sandersville, GA 31082 Job Summary The University System of Georgia (USG) Director of Operations & Risk would provide day-to-day oversight and management of the USG Enterprise Risk Management Program (ERM). This position directs, develops, implements, and leads the University System of Georgia's (USG) Enterprise Risk Management program which is intended to visualize, assess, and manage major risks that may adversely impact the attainment of key organizational objectives. Provides consultation to the University System Institutions and System Office Departments on various insurance and risk management matters, including, but not limited to advisement regarding insurance procurement activities and consultation regarding indemnity contract language inlicense agreements, loan agreements and service agreements. Responsibilities Manages an effective System-wide Enterprise Risk Management (ERM) program including developing mechanisms to identify, assess, monitor, report, and mitigate risks. Plans, directs, oversees, and coordinates the day-to-day activities of the University System Office (USO) ERM program as well as assists USO administrators in maintaining the USO risk management frameworks and procedures. Coordinates and oversees an institution-wide approach to ERM by all USG institutions and ensures that risk management efforts are focused on supporting the institution's mission and objectives. Coordinates directly with each institution's risk management policy coordinator to ensure the effective management of risk at the institutional level. Coordinates groups and committees at institutions and the system office to find solutions to newly identified risk management issues; leads project with state, regional and national implications. Designs key risk indicators and risk response strategies and assists in designing System-wide reports concerning identified risks. Integrates risks and USG strategic objectives to provide recommendations addressing policy, procedures, strategy, resource allocation, and other risk mitigation strategies. Lead the core traditional risk management program for the USG, i.e., the Comprehensive Loss Control Program (CLCP). Collaborates with other risk management functions within the System Office and throughout the USG. Makes recommendations on improvements to Board policy, USG procedures, and other process improvements impacting USG operations. Prepares and submits findings and reports affecting the ERM program. Presents recommendations and other reports to senior management and the Board of Regents. Communicates and coordinates with outside agencies as needed to represent the ERM program and the USG, to include regular interaction with the Georgia Department of Administrative Services (DOAS). Provides direction and advice to USG and USO departments on all matters related to state insurance programs, including property, fidelity, aviation, liability, workers' compensation, etc. Provide direction and support on property control policies, procedures, and processes. Partner with and cultivate relationships with key strategic stakeholders to lead in developing and implementing standards, processes, programs, and best practices related to risk management. Create awareness and conduct training surrounding risks and mitigation efforts. Performs special projects and assignments as assigned by the Assistant Vice Chancellor of Fiscal Affairs Operations, Committee on Internal Audit, Risk, and Compliance, and/or other senior management. Further develop and strengthen a relatively new program in a complex internal and external environment. Position involves significant and frequent interaction with USG Presidents, USG Chief Business Officers, and other USG senior staff, including the ERM Coordinators. The position will provide guidance, advice, and counsel to the Chief Audit Officer and other senior staff and managers as an input to the USG audit risk assessment process.Manages the performance measurement of the risk management support function and evaluates the quality of services provided through review of reports and statistical data and through communications with stakeholders.Travel to various USG institutions and other offsite meeting locations Required Qualifications Master's degree in Finance, Accounting, Risk Management, Business, or related field Over three years of directly related program management experience Experience preferably in Higher Education operations Professional license, certification, or designation or graduate degree related to or demonstrating competency in ERM Excellent communication, organizational and problem-solving skills Strong work ethic and ability to multi-task Understanding of ERM frameworks and its application to organizational operations and governance Preferred Qualifications 8-10 years job related experience. Two or more Certifications or licenses preferred Knowledge, Skills, & Abilities Advanced knowledge of risk management, business continuity, insurance and the claims process. Knowledge of federal and state laws, rules and regulations impacting higher education. Knowledge of process improvement theories and practices. Knowledge of best practices in higher education management. Knowledge of computers and job-related software programs. Great attention to detail Ability to provide supervision and direction. Skill in written communication to executive and subject matter experts. Skill in collaborating with multiple constituents. Skill in decision making and problem solving. Skill in interpersonal relations and in dealing with the public. Skill in oral and written communication. Ability to respond diplomatically to sensitive and critical issues. Ability to effectively multi-task. Ability to learn and become the Administrator of Wdesk, the USG ERM software. Contact Information For technical support, please contact OneUSG Connect Support by phone at 251.2644, or by email at . USG Core Values The University System of Georgia is comprised of our 26 institutions of higher education and learning as well as the System Office. Our USG Statement of Core Values are Integrity, Excellence, Accountability, and Respect. These values serve as the foundation for all that we do as an organization, and each USG community member is responsible for demonstrating and upholding these standards. More details on the USG Statement of Core Values and Code of Conduct are available in USG Board Policy 8.2.18.1.2 and can be found on-line at . Additionally, USG supports Freedom of Expression as stated in Board Policy 6.5 Freedom of Expression and Academic Freedom found on-line at . Conditions of Employment Offers of employment are subject to federal and state laws, as well as the statutes, rules, and regulations of this institution, and the Bylaws and Policies of the Board of Regents (BOR) of the University System of Georgia (USG). These Bylaws and Policies are available for inspection upon request. Equal Employment Opportunity The University System Office is an equal employment, equal access, and equal educational opportunity, and affirmative action institution. It is the policy of the University System Office to recruit, hire, train, promote and educate persons without regard to race, color, national or ethnic origin, age, disability, gender, religion, sexual orientation, gender identity or veteran status as required by applicable state and federal laws (including Title VI, Title VII, Title IX, Sections 503, and 504, ADEA, ADA, E.O. 11246, and Rev. Proc. 75-50). For questions or more detailed information regarding this policy please contact the University System Office Human Resources at . Individuals requiring disability related accommodations for participation in any event or to obtain print materials in an alternative format, please contact Human Resources. Background Check Offers of employment are subject to a background investigation, including criminal records history, to determine eligibility for employment. Additionally, credentials and employment history stated in your application materials are also subject to verification. For certain positions, a satisfactory credit check, MVR . click apply for full job details
10/21/2025
Full time
Job Title: Director, Operations and Risk Location: USO-TW Building ATL Regular/Temporary: Regular Full/Part Time: Full-Time Job ID: 269691 About Us The University System of Georgia (USG) is comprised of 26 higher education institutions as well as the University System Office (USO). Within the USO, our administrative operations are primarily housed in the Trinity Washington Building located in downtown Atlanta. Our Information Technology Services (ITS) division is located in Athens. The University System of Georgia Shared Services Center (SSC) is located in Sandersville. The Georgia Public Library System is located in Atlanta. The Georgia Archives is located in Morrow. The State of Georgia Records Center is located in Austell. Location Georgia Archives - 5800 Jonesboro Rd Morrow, GA 30260 Georgia Public Library Services (GPLS) - 2872 Woodcock Blvd Atlanta, GA 30341 Information Technology Services (ITS) - 2500 Daniells Bridge Road Athens, GA 30606 Shared Services Center (SSC) - 1005 George J Lyons Pkwy Sandersville, GA 31082 Job Summary The University System of Georgia (USG) Director of Operations & Risk would provide day-to-day oversight and management of the USG Enterprise Risk Management Program (ERM). This position directs, develops, implements, and leads the University System of Georgia's (USG) Enterprise Risk Management program which is intended to visualize, assess, and manage major risks that may adversely impact the attainment of key organizational objectives. Provides consultation to the University System Institutions and System Office Departments on various insurance and risk management matters, including, but not limited to advisement regarding insurance procurement activities and consultation regarding indemnity contract language inlicense agreements, loan agreements and service agreements. Responsibilities Manages an effective System-wide Enterprise Risk Management (ERM) program including developing mechanisms to identify, assess, monitor, report, and mitigate risks. Plans, directs, oversees, and coordinates the day-to-day activities of the University System Office (USO) ERM program as well as assists USO administrators in maintaining the USO risk management frameworks and procedures. Coordinates and oversees an institution-wide approach to ERM by all USG institutions and ensures that risk management efforts are focused on supporting the institution's mission and objectives. Coordinates directly with each institution's risk management policy coordinator to ensure the effective management of risk at the institutional level. Coordinates groups and committees at institutions and the system office to find solutions to newly identified risk management issues; leads project with state, regional and national implications. Designs key risk indicators and risk response strategies and assists in designing System-wide reports concerning identified risks. Integrates risks and USG strategic objectives to provide recommendations addressing policy, procedures, strategy, resource allocation, and other risk mitigation strategies. Lead the core traditional risk management program for the USG, i.e., the Comprehensive Loss Control Program (CLCP). Collaborates with other risk management functions within the System Office and throughout the USG. Makes recommendations on improvements to Board policy, USG procedures, and other process improvements impacting USG operations. Prepares and submits findings and reports affecting the ERM program. Presents recommendations and other reports to senior management and the Board of Regents. Communicates and coordinates with outside agencies as needed to represent the ERM program and the USG, to include regular interaction with the Georgia Department of Administrative Services (DOAS). Provides direction and advice to USG and USO departments on all matters related to state insurance programs, including property, fidelity, aviation, liability, workers' compensation, etc. Provide direction and support on property control policies, procedures, and processes. Partner with and cultivate relationships with key strategic stakeholders to lead in developing and implementing standards, processes, programs, and best practices related to risk management. Create awareness and conduct training surrounding risks and mitigation efforts. Performs special projects and assignments as assigned by the Assistant Vice Chancellor of Fiscal Affairs Operations, Committee on Internal Audit, Risk, and Compliance, and/or other senior management. Further develop and strengthen a relatively new program in a complex internal and external environment. Position involves significant and frequent interaction with USG Presidents, USG Chief Business Officers, and other USG senior staff, including the ERM Coordinators. The position will provide guidance, advice, and counsel to the Chief Audit Officer and other senior staff and managers as an input to the USG audit risk assessment process.Manages the performance measurement of the risk management support function and evaluates the quality of services provided through review of reports and statistical data and through communications with stakeholders.Travel to various USG institutions and other offsite meeting locations Required Qualifications Master's degree in Finance, Accounting, Risk Management, Business, or related field Over three years of directly related program management experience Experience preferably in Higher Education operations Professional license, certification, or designation or graduate degree related to or demonstrating competency in ERM Excellent communication, organizational and problem-solving skills Strong work ethic and ability to multi-task Understanding of ERM frameworks and its application to organizational operations and governance Preferred Qualifications 8-10 years job related experience. Two or more Certifications or licenses preferred Knowledge, Skills, & Abilities Advanced knowledge of risk management, business continuity, insurance and the claims process. Knowledge of federal and state laws, rules and regulations impacting higher education. Knowledge of process improvement theories and practices. Knowledge of best practices in higher education management. Knowledge of computers and job-related software programs. Great attention to detail Ability to provide supervision and direction. Skill in written communication to executive and subject matter experts. Skill in collaborating with multiple constituents. Skill in decision making and problem solving. Skill in interpersonal relations and in dealing with the public. Skill in oral and written communication. Ability to respond diplomatically to sensitive and critical issues. Ability to effectively multi-task. Ability to learn and become the Administrator of Wdesk, the USG ERM software. Contact Information For technical support, please contact OneUSG Connect Support by phone at 251.2644, or by email at . USG Core Values The University System of Georgia is comprised of our 26 institutions of higher education and learning as well as the System Office. Our USG Statement of Core Values are Integrity, Excellence, Accountability, and Respect. These values serve as the foundation for all that we do as an organization, and each USG community member is responsible for demonstrating and upholding these standards. More details on the USG Statement of Core Values and Code of Conduct are available in USG Board Policy 8.2.18.1.2 and can be found on-line at . Additionally, USG supports Freedom of Expression as stated in Board Policy 6.5 Freedom of Expression and Academic Freedom found on-line at . Conditions of Employment Offers of employment are subject to federal and state laws, as well as the statutes, rules, and regulations of this institution, and the Bylaws and Policies of the Board of Regents (BOR) of the University System of Georgia (USG). These Bylaws and Policies are available for inspection upon request. Equal Employment Opportunity The University System Office is an equal employment, equal access, and equal educational opportunity, and affirmative action institution. It is the policy of the University System Office to recruit, hire, train, promote and educate persons without regard to race, color, national or ethnic origin, age, disability, gender, religion, sexual orientation, gender identity or veteran status as required by applicable state and federal laws (including Title VI, Title VII, Title IX, Sections 503, and 504, ADEA, ADA, E.O. 11246, and Rev. Proc. 75-50). For questions or more detailed information regarding this policy please contact the University System Office Human Resources at . Individuals requiring disability related accommodations for participation in any event or to obtain print materials in an alternative format, please contact Human Resources. Background Check Offers of employment are subject to a background investigation, including criminal records history, to determine eligibility for employment. Additionally, credentials and employment history stated in your application materials are also subject to verification. For certain positions, a satisfactory credit check, MVR . click apply for full job details
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director of Finance Job no: 536376 Work type: Staff Full-Time Location: Main Campus (Gainesville, FL) Categories: Business/Accounting/Finance, Executive/Director/Management Department: - PH-ADMINISTRATIVE FIN AFFAIRS Classification Title:Director of Finance Classification Minimum Requirements: Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Job Description: Join Our Leadership Team Shape the Financial Future of the College of Pharmacy! Are you a strategic thinker with a passion for driving financial excellence? The University of Florida College of Pharmacy is seeking a dynamic Director of Finance to lead and shape our financial future. This pivotal role reports directly to the Dean and partners with senior leadership to align financial strategy with institutional priorities as we kick off our new five-year strategic plan. Budget and Financial Management: • Provide Financial Leadership • Lead and oversee financial operations across all college units • Offer strategic financial guidance aligned with the college's mission and goals Plan for Fiscal Sustainability • Direct short- and long-term financial planning to ensure stability • Advise the Dean and senior leadership on financial position, trends, risks, and opportunities including commitment tracking Develop & Implement Financial Strategy • Create comprehensive financial plans to support academic, research, and operational priorities • Ensure optimal resource allocation through data-informed planning Budget Management • Coordinate annual budgeting processes, including funding requests and reallocations • Oversee financial adjustments to support dynamic needs and priorities • Management of college incentive plans • Meet with individual department units to review program budget and future forecast • Provide detailed analysis and recommendations to improve financial planning and resource allocation Stewardship of Funds •Manage multiple funding streams: state appropriations, contracts and grants, UF Foundation, auxiliaries, student fees, and College of Pharmacy Faculty Practice Association accounts •Champion responsible, efficient financial stewardship that reflects institutional priorities • Policy Compliance & Communication • Interpret and apply financial policies from the university, state, and federal levels • Develop internal financial procedures and controls to maintain compliance and operational integrity Internal Support & Coordination • Act as a key resource for policy guidance and financial training • Collaborate with central UF offices Finance & Accounting, Contracts & Grants, Budget for policy alignment and consistency Financial Reporting and Compliance: • Directs preparation, review, and submission of internal and external financial reports, such as: • Variance reports • Forecasting summaries • Fund balances • Other reports required by university, state, or external entities • Ensures all reporting complies with university, state, and federal regulations and policies • Serves as the primary contact for financial audits and reviews by university, state, and independent auditors • Monitors financial transactions for accuracy, consistency, and integrity • Proactively investigates and resolves financial discrepancies and reporting issues • Oversight of annual auxiliary rate reviews Team Leadership: • Lead finance and logistics teams with strategic oversight and clear delegation • Align responsibilities with team strengths to ensure accountability and workflow efficiency • Guide performance through feedback, coaching, and professional development • Foster a collaborative, service-driven culture focused on growth and excellence • Ensure clear, consistent communication of expectations, timelines, and deliverables The University of Florida: UF, the flagship AAU institution of the State of Florida, is a top-tier research institution with a long history of training outstanding undergraduate, graduate, and professional students. UF is currently ranked among U.S. public universities by U.S. News and World Report. The University of Florida's academic health center is the country's only academic health center, with six health-related colleges located on a single, contiguous campus. The colleges, major research centers and institutes, and clinical enterprises focus on building collaborative, specialized clinical services centered on quality and innovation. The UF College of Pharmacy ranked by U.S. News & World Report as the No. 1 pharmacy college in Florida and the No. 4 pharmacy college nationally, the University of Florida College of Pharmacy has been developing future leaders in pharmacy practice and science for nearly a century. At campuses in Gainesville, Jacksonville and Orlando, award-winning faculty aim to improve the health of Floridians and people across the world through pharmacy education, high-impact research and clinical innovation. As one of the Top 3, National Institutes of Health-funded pharmacy colleges nationally, the UF College of Pharmacy features preeminent researchers who are leading major medical breakthroughs in areas such as drug discovery and development, pharmacometrics and systems pharmacology, and precision medicine. The college's online programs are among the largest and most successful in the world, having received multiple national awards for excellence in distance education. Why Gainesville? Gainesville is home to Florida's largest and oldest university, as well as a vibrant hub of education, healthcare, culture, and sports in the state. The University of Florida and UF Health Shands Hospital are major employers, providing jobs for many residents of surrounding counties. The Greater Gainesville area serves as the cultural, educational, and commercial heart of the north central Florida region. Gainesville offers a full range of municipal services, including cultural and administrative support. Renowned for its preservation of historic landmarks and natural beauty, the city boasts numerous parks, museums, and lakes that attract thousands of visitors. With its lush urban forest and Tree City USA designation, Gainesville stands out as one of Florida's most picturesque cities. Its central location provides convenient access to both coasts, offering easy exploration of Florida's famed beaches, springs, and nature reserves. Explore Gainesville in 60 Seconds. Expected Salary:Commensurate with education and experience. Employment Benefits include: • Health Insurance: UF participates in state- and university-sponsored benefits programs for individuals, families and domestic partners, and offers voluntary insurance that includes vision, dental, long-term disability and more. • Retirement Options: Attractive options include Florida Retirement System Pension Plan, State University System Optional Retirement Program, Florida Retirement System Investment Plan, and Voluntary Retirement Savings Plan. • Leave: UF Faculty and Staff enjoy a generous paid leave plan as well as access to a sick-leave pool, maternity/paternity leave, and leave payouts. To learn more visit: hr.ufl.edu/benefits Required Qualifications: •Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Preferred: • Advanced degree in Finance, Accounting, or Business, MBA preferred • Experience in higher education and/or a health care environment • Have extensive experience and knowledge in strategic financial/budget management • Experience with PeopleSoft and/or Workday • Significant supervisory experience and the ability to effectively manage, coach, mentor and motivate others • Ability to work strategically, develop and implement constituency programs and activities • Must be an outstanding communicator and possess excellent written and verbal communication skills; interpersonal skills; and the ability to work collegially and interact effectively with a constituency • Have a proven ability to cultivate and maintain strong working relationships with internal and external leaders and organizations • Ability to work collaboratively and be a team player • Strong customer service focused mindset Special Instructions to Applicants: We welcome nominations of and applications for individuals who would bring unique perspectives and experiences to support UF's mission of excellence in education, research, and student life. Inquiries and nominations can be sent to Search Chair John Gums, PharmD () Candidates must apply online at Careers at UF. For full consideration, applications must be submitted by August 14, 2025 with the following required documents: • Cover Letter • Resume • List of references for at least three (3) professional contacts that includes: • Full name • Current position • Email address • Telephone number Applications received after July 21, 2025 will be reviewed at the discretion of the search panel. The position posting will remain open and accept applications until a competitive pool of applicants is established. This is primarily an on-campus leadership position with hybrid flexibility possible after a successful onboarding period. Health Assessment Required: No . click apply for full job details
10/21/2025
Full time
Director of Finance Job no: 536376 Work type: Staff Full-Time Location: Main Campus (Gainesville, FL) Categories: Business/Accounting/Finance, Executive/Director/Management Department: - PH-ADMINISTRATIVE FIN AFFAIRS Classification Title:Director of Finance Classification Minimum Requirements: Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Job Description: Join Our Leadership Team Shape the Financial Future of the College of Pharmacy! Are you a strategic thinker with a passion for driving financial excellence? The University of Florida College of Pharmacy is seeking a dynamic Director of Finance to lead and shape our financial future. This pivotal role reports directly to the Dean and partners with senior leadership to align financial strategy with institutional priorities as we kick off our new five-year strategic plan. Budget and Financial Management: • Provide Financial Leadership • Lead and oversee financial operations across all college units • Offer strategic financial guidance aligned with the college's mission and goals Plan for Fiscal Sustainability • Direct short- and long-term financial planning to ensure stability • Advise the Dean and senior leadership on financial position, trends, risks, and opportunities including commitment tracking Develop & Implement Financial Strategy • Create comprehensive financial plans to support academic, research, and operational priorities • Ensure optimal resource allocation through data-informed planning Budget Management • Coordinate annual budgeting processes, including funding requests and reallocations • Oversee financial adjustments to support dynamic needs and priorities • Management of college incentive plans • Meet with individual department units to review program budget and future forecast • Provide detailed analysis and recommendations to improve financial planning and resource allocation Stewardship of Funds •Manage multiple funding streams: state appropriations, contracts and grants, UF Foundation, auxiliaries, student fees, and College of Pharmacy Faculty Practice Association accounts •Champion responsible, efficient financial stewardship that reflects institutional priorities • Policy Compliance & Communication • Interpret and apply financial policies from the university, state, and federal levels • Develop internal financial procedures and controls to maintain compliance and operational integrity Internal Support & Coordination • Act as a key resource for policy guidance and financial training • Collaborate with central UF offices Finance & Accounting, Contracts & Grants, Budget for policy alignment and consistency Financial Reporting and Compliance: • Directs preparation, review, and submission of internal and external financial reports, such as: • Variance reports • Forecasting summaries • Fund balances • Other reports required by university, state, or external entities • Ensures all reporting complies with university, state, and federal regulations and policies • Serves as the primary contact for financial audits and reviews by university, state, and independent auditors • Monitors financial transactions for accuracy, consistency, and integrity • Proactively investigates and resolves financial discrepancies and reporting issues • Oversight of annual auxiliary rate reviews Team Leadership: • Lead finance and logistics teams with strategic oversight and clear delegation • Align responsibilities with team strengths to ensure accountability and workflow efficiency • Guide performance through feedback, coaching, and professional development • Foster a collaborative, service-driven culture focused on growth and excellence • Ensure clear, consistent communication of expectations, timelines, and deliverables The University of Florida: UF, the flagship AAU institution of the State of Florida, is a top-tier research institution with a long history of training outstanding undergraduate, graduate, and professional students. UF is currently ranked among U.S. public universities by U.S. News and World Report. The University of Florida's academic health center is the country's only academic health center, with six health-related colleges located on a single, contiguous campus. The colleges, major research centers and institutes, and clinical enterprises focus on building collaborative, specialized clinical services centered on quality and innovation. The UF College of Pharmacy ranked by U.S. News & World Report as the No. 1 pharmacy college in Florida and the No. 4 pharmacy college nationally, the University of Florida College of Pharmacy has been developing future leaders in pharmacy practice and science for nearly a century. At campuses in Gainesville, Jacksonville and Orlando, award-winning faculty aim to improve the health of Floridians and people across the world through pharmacy education, high-impact research and clinical innovation. As one of the Top 3, National Institutes of Health-funded pharmacy colleges nationally, the UF College of Pharmacy features preeminent researchers who are leading major medical breakthroughs in areas such as drug discovery and development, pharmacometrics and systems pharmacology, and precision medicine. The college's online programs are among the largest and most successful in the world, having received multiple national awards for excellence in distance education. Why Gainesville? Gainesville is home to Florida's largest and oldest university, as well as a vibrant hub of education, healthcare, culture, and sports in the state. The University of Florida and UF Health Shands Hospital are major employers, providing jobs for many residents of surrounding counties. The Greater Gainesville area serves as the cultural, educational, and commercial heart of the north central Florida region. Gainesville offers a full range of municipal services, including cultural and administrative support. Renowned for its preservation of historic landmarks and natural beauty, the city boasts numerous parks, museums, and lakes that attract thousands of visitors. With its lush urban forest and Tree City USA designation, Gainesville stands out as one of Florida's most picturesque cities. Its central location provides convenient access to both coasts, offering easy exploration of Florida's famed beaches, springs, and nature reserves. Explore Gainesville in 60 Seconds. Expected Salary:Commensurate with education and experience. Employment Benefits include: • Health Insurance: UF participates in state- and university-sponsored benefits programs for individuals, families and domestic partners, and offers voluntary insurance that includes vision, dental, long-term disability and more. • Retirement Options: Attractive options include Florida Retirement System Pension Plan, State University System Optional Retirement Program, Florida Retirement System Investment Plan, and Voluntary Retirement Savings Plan. • Leave: UF Faculty and Staff enjoy a generous paid leave plan as well as access to a sick-leave pool, maternity/paternity leave, and leave payouts. To learn more visit: hr.ufl.edu/benefits Required Qualifications: •Master's degree in appropriate area of specialization and six years of appropriate experience or a bachelor's degree in appropriate areas of specialization and eight years of experience. Preferred: • Advanced degree in Finance, Accounting, or Business, MBA preferred • Experience in higher education and/or a health care environment • Have extensive experience and knowledge in strategic financial/budget management • Experience with PeopleSoft and/or Workday • Significant supervisory experience and the ability to effectively manage, coach, mentor and motivate others • Ability to work strategically, develop and implement constituency programs and activities • Must be an outstanding communicator and possess excellent written and verbal communication skills; interpersonal skills; and the ability to work collegially and interact effectively with a constituency • Have a proven ability to cultivate and maintain strong working relationships with internal and external leaders and organizations • Ability to work collaboratively and be a team player • Strong customer service focused mindset Special Instructions to Applicants: We welcome nominations of and applications for individuals who would bring unique perspectives and experiences to support UF's mission of excellence in education, research, and student life. Inquiries and nominations can be sent to Search Chair John Gums, PharmD () Candidates must apply online at Careers at UF. For full consideration, applications must be submitted by August 14, 2025 with the following required documents: • Cover Letter • Resume • List of references for at least three (3) professional contacts that includes: • Full name • Current position • Email address • Telephone number Applications received after July 21, 2025 will be reviewed at the discretion of the search panel. The position posting will remain open and accept applications until a competitive pool of applicants is established. This is primarily an on-campus leadership position with hybrid flexibility possible after a successful onboarding period. Health Assessment Required: No . click apply for full job details
Rowan-Cabarrus Community College
Granite Quarry, North Carolina
Posting Number Regular_ Position Title Executive Director of Network and Security Classification Title: Director/Executive Director Min Salary: $ 81,302 Salary Type: Annually FLSA: E = Exempt Position Type Staff Position Summary Rowan-Cabarrus Community College seeks an experienced, strategic, and forward-thinking technology leader to serve as the Executive Director of Networking and Security . This senior leadership role is responsible for ensuring the reliability, performance, and security of the College's technology infrastructure, including on-campus and cloud-based networks, enterprise systems, and cybersecurity programs. The Executive Director provides vision, direction, and oversight for network architecture, data protection, disaster recovery, and compliance with federal and state information security standards. As a member of the Information Technology Services leadership team, the Executive Director partners with institutional leaders to develop strategies that strengthen teaching, learning, and operations across the College. Compensation and Benefits Competitive salary commensurate with education and experience. Comprehensive benefits package including health, dental, vision, retirement, and generous leave. Professional development and training opportunities provided by the College and the North Carolina Community College System. Required Education/Experience Associate's degree in information technology, Computer Science, Cybersecurity, or a related field. Seven (7) years of progressively responsible experience in networking and/or cybersecurity, with at least three (3) years in a leadership or managerial role. Strong knowledge of enterprise networking, information security frameworks, and higher education compliance requirements. Proven ability to lead staff, manage budgets, and deliver large-scale technology projects. Excellent communication, interpersonal, and collaboration skills. Preferred Education/Experience/Skills Master's degree in information technology, Cybersecurity, Business Administration, or related field. Professional certifications such as CISSP, CISM, CCNP, or equivalent. Direct experience in higher education, ideally within the North Carolina Community College System. Expertise in cloud networking, hybrid infrastructure, and zero-trust security architectures. Department Information Technology Services - ITS Work Hours Work Environment Standard office environment with regular interaction across multiple campus locations. Occasional evening or weekend work may be required to support system upgrades, incident response, or critical projects. This position is eligible for 1 day a week of Hybrid/remote work in alignment with College policy. Posting Date 09/10/2025 Open Until Filled: Yes Duty and Responsibility Strategic Leadership Provide vision and direction for networking, infrastructure, and cybersecurity services. Develop and implement long-term strategies for secure, scalable, and sustainable technology infrastructure. Advise senior leadership on technology trends, risks, and opportunities that support institutional priorities. Duty and Responsibility Network & Infrastructure Management Oversee design, implementation, and maintenance of wired, wireless, and cloud networking systems. Ensure reliability, scalability, and high performance of enterprise networking and communications. Manage lifecycle planning for network and security hardware, software, and services. Duty and Responsibility Cybersecurity & Compliance Direct the development and enforcement of information security policies, standards, and practices. Ensure compliance with FERPA, HIPAA, PCI-DSS, GDPR, NIST, and state/federal regulations. Oversee vulnerability management, threat detection, incident response, and disaster recovery planning. Lead cybersecurity awareness and training programs for faculty, staff, and students. Duty and Responsibility Team Leadership & Development Lead, mentor, and evaluate technical staff, promoting a culture of innovation, accountability, and service excellence. Encourage professional development, certification attainment, and cross-training within the networking and security teams. Foster collaboration across all ITS teams and college departments. Duty and Responsibility Collaboration & Partnerships Serve as a trusted advisor to faculty, staff, and administrators regarding networking and security. Build effective partnerships with vendors, contractors, and external agencies. Represent the College in state-wide technology initiatives and professional organizations. Duty and Responsibility Innovation & Continuous Improvement Stay informed on emerging technologies and evolving cybersecurity threats. Recommend innovative approaches to improve service delivery and strengthen resilience. Lead initiatives in areas such as cloud adoption, zero-trust security, and next-generation networking.
10/20/2025
Full time
Posting Number Regular_ Position Title Executive Director of Network and Security Classification Title: Director/Executive Director Min Salary: $ 81,302 Salary Type: Annually FLSA: E = Exempt Position Type Staff Position Summary Rowan-Cabarrus Community College seeks an experienced, strategic, and forward-thinking technology leader to serve as the Executive Director of Networking and Security . This senior leadership role is responsible for ensuring the reliability, performance, and security of the College's technology infrastructure, including on-campus and cloud-based networks, enterprise systems, and cybersecurity programs. The Executive Director provides vision, direction, and oversight for network architecture, data protection, disaster recovery, and compliance with federal and state information security standards. As a member of the Information Technology Services leadership team, the Executive Director partners with institutional leaders to develop strategies that strengthen teaching, learning, and operations across the College. Compensation and Benefits Competitive salary commensurate with education and experience. Comprehensive benefits package including health, dental, vision, retirement, and generous leave. Professional development and training opportunities provided by the College and the North Carolina Community College System. Required Education/Experience Associate's degree in information technology, Computer Science, Cybersecurity, or a related field. Seven (7) years of progressively responsible experience in networking and/or cybersecurity, with at least three (3) years in a leadership or managerial role. Strong knowledge of enterprise networking, information security frameworks, and higher education compliance requirements. Proven ability to lead staff, manage budgets, and deliver large-scale technology projects. Excellent communication, interpersonal, and collaboration skills. Preferred Education/Experience/Skills Master's degree in information technology, Cybersecurity, Business Administration, or related field. Professional certifications such as CISSP, CISM, CCNP, or equivalent. Direct experience in higher education, ideally within the North Carolina Community College System. Expertise in cloud networking, hybrid infrastructure, and zero-trust security architectures. Department Information Technology Services - ITS Work Hours Work Environment Standard office environment with regular interaction across multiple campus locations. Occasional evening or weekend work may be required to support system upgrades, incident response, or critical projects. This position is eligible for 1 day a week of Hybrid/remote work in alignment with College policy. Posting Date 09/10/2025 Open Until Filled: Yes Duty and Responsibility Strategic Leadership Provide vision and direction for networking, infrastructure, and cybersecurity services. Develop and implement long-term strategies for secure, scalable, and sustainable technology infrastructure. Advise senior leadership on technology trends, risks, and opportunities that support institutional priorities. Duty and Responsibility Network & Infrastructure Management Oversee design, implementation, and maintenance of wired, wireless, and cloud networking systems. Ensure reliability, scalability, and high performance of enterprise networking and communications. Manage lifecycle planning for network and security hardware, software, and services. Duty and Responsibility Cybersecurity & Compliance Direct the development and enforcement of information security policies, standards, and practices. Ensure compliance with FERPA, HIPAA, PCI-DSS, GDPR, NIST, and state/federal regulations. Oversee vulnerability management, threat detection, incident response, and disaster recovery planning. Lead cybersecurity awareness and training programs for faculty, staff, and students. Duty and Responsibility Team Leadership & Development Lead, mentor, and evaluate technical staff, promoting a culture of innovation, accountability, and service excellence. Encourage professional development, certification attainment, and cross-training within the networking and security teams. Foster collaboration across all ITS teams and college departments. Duty and Responsibility Collaboration & Partnerships Serve as a trusted advisor to faculty, staff, and administrators regarding networking and security. Build effective partnerships with vendors, contractors, and external agencies. Represent the College in state-wide technology initiatives and professional organizations. Duty and Responsibility Innovation & Continuous Improvement Stay informed on emerging technologies and evolving cybersecurity threats. Recommend innovative approaches to improve service delivery and strengthen resilience. Lead initiatives in areas such as cloud adoption, zero-trust security, and next-generation networking.
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, International Risk Management (ES Risk) Capital One is one of the fastest growing organizations in the world today and we are growing our teams globally. As Director for International Risk Management, you will play a pivotal role in developing and driving our international risk management agenda-from day one. Teamwork is at the heart of our innovation and we empower each other to think big. We welcome diverse perspectives and experiences as we reshape the financial industry. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. The Director for International Risk Management will support our Enterprise Services (ES) Risk office in Capital One's first line of defense, and will execute high-priority enterprise-level technology and cyber security and risk management initiatives related to our international expansion, influence across the organization, and drive the implementation of our strategy. Specifically, in this position, you will help lead and manage the international risk management function for ES, which includes executing and enhancing our risk management processes across Capital One, driving project and program delivery, and influencing outcomes supporting the broader International Risk Strategy for Capital One. You will collaborate closely with associates and senior Executives across all lines of defense, Lines of Business, and other risk management teams to support this work. This includes implementing risk management tools and frameworks for the organization and managing a sustainable and mature process to identify, assess, mitigate, and monitor risk. This role will also be responsible for big picture thinking, strategic direction, and partnering across teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders and associates. Your contributions will drive organizational change through risk identification, measurement, analysis and reporting in order to better manage the company's risk in an open and collaborative environment. This position is highly visible and requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Proficiency in risk management is key to success in this role. The successful candidate will be an experienced risk management professional who understands technology and cyber functions and organizations, with strong analytical, planning, strategic thinking, organizational and communication skills. Responsibilities: Drive and coordinate work related to Capital One's emerging international risk management function, working with the first line of defense Technology and Cyber teams, LOB, and second line of defense teams, to ensure effective collaboration within the team and across stakeholder groups. Assist the ES Risk leadership team and country leadership team(s) in delivering their strategy and service model. Lead the development of international processes and the related risk management framework by providing thought leadership, oversight, and coordination with LOBs and other risk management associates across the company. Drive program and process-level risk assessments to identify risks and mitigation plans based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction. Be a trusted advisor and drive effective and relevant technology and cyber risk conversations. Stay current on emerging cyber threats and potential implications to the firm. Stay current on the changing regulatory environment and understand the impacts to our international expansion efforts. Assist and drive project and program delivery, including project and process management, reporting, engagement in senior leadership meetings, drafting and reviewing materials for Senior Management. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aides. Draft, contribute to, edit, and deliver presentations that aid in the design, development, refinement, and usage of risk methods. Participate in risk and other management forums and contribute to continuous improvement of risk and project / program management practices. Support direction, manages expectations, and leads cross-functional teams through various initiatives, including oversight of third party resources. Support interactions with Internal Audit and Regulatory agencies related to our work, as applicable. Participate in and execute other special projects for the team, as needed. Basic Qualifications: Bachelor's Degree or military experience At least 7 years experience in Cybersecurity, Technology, Risk Management, or Audit or a combination of the the four At least 7 years of experience planning and leading risk assessments and audits At least 4 years of project or process management experience At least 4 years of People Management experience At least 2 years of experience implementing an International program or leading an International or Country Risk Management program Preferred Qualifications: 10 years experience in Cybersecurity, Technology, Risk Management, International Risk, or External Audit, or a combination of these 8 years of experience performing information security or technology risk identification and assessments, such as Control Self Assessments (CSAs), or completing assessments within established industry risk frameworks 8 years experience performing data analysis in support of internal risk assessments and control design and operating effectiveness reviews 5 years of experience performing data analysis in support of cybersecurity assessments and control design in a cloud environment (preferably AWS) 5 years of project management experience leading cross-functional projects and programs 3 years of Financial Services industry experience, including familiarity with regulatory practices Cybersecurity and technology risk and/or project management certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Project Management Professional (PMP) Certification, or Masters Certificate of Project Management (CPM) or related certifications Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation . click apply for full job details
10/20/2025
Full time
Director, International Risk Management (ES Risk) Capital One is one of the fastest growing organizations in the world today and we are growing our teams globally. As Director for International Risk Management, you will play a pivotal role in developing and driving our international risk management agenda-from day one. Teamwork is at the heart of our innovation and we empower each other to think big. We welcome diverse perspectives and experiences as we reshape the financial industry. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. The Director for International Risk Management will support our Enterprise Services (ES) Risk office in Capital One's first line of defense, and will execute high-priority enterprise-level technology and cyber security and risk management initiatives related to our international expansion, influence across the organization, and drive the implementation of our strategy. Specifically, in this position, you will help lead and manage the international risk management function for ES, which includes executing and enhancing our risk management processes across Capital One, driving project and program delivery, and influencing outcomes supporting the broader International Risk Strategy for Capital One. You will collaborate closely with associates and senior Executives across all lines of defense, Lines of Business, and other risk management teams to support this work. This includes implementing risk management tools and frameworks for the organization and managing a sustainable and mature process to identify, assess, mitigate, and monitor risk. This role will also be responsible for big picture thinking, strategic direction, and partnering across teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders and associates. Your contributions will drive organizational change through risk identification, measurement, analysis and reporting in order to better manage the company's risk in an open and collaborative environment. This position is highly visible and requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Proficiency in risk management is key to success in this role. The successful candidate will be an experienced risk management professional who understands technology and cyber functions and organizations, with strong analytical, planning, strategic thinking, organizational and communication skills. Responsibilities: Drive and coordinate work related to Capital One's emerging international risk management function, working with the first line of defense Technology and Cyber teams, LOB, and second line of defense teams, to ensure effective collaboration within the team and across stakeholder groups. Assist the ES Risk leadership team and country leadership team(s) in delivering their strategy and service model. Lead the development of international processes and the related risk management framework by providing thought leadership, oversight, and coordination with LOBs and other risk management associates across the company. Drive program and process-level risk assessments to identify risks and mitigation plans based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction. Be a trusted advisor and drive effective and relevant technology and cyber risk conversations. Stay current on emerging cyber threats and potential implications to the firm. Stay current on the changing regulatory environment and understand the impacts to our international expansion efforts. Assist and drive project and program delivery, including project and process management, reporting, engagement in senior leadership meetings, drafting and reviewing materials for Senior Management. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aides. Draft, contribute to, edit, and deliver presentations that aid in the design, development, refinement, and usage of risk methods. Participate in risk and other management forums and contribute to continuous improvement of risk and project / program management practices. Support direction, manages expectations, and leads cross-functional teams through various initiatives, including oversight of third party resources. Support interactions with Internal Audit and Regulatory agencies related to our work, as applicable. Participate in and execute other special projects for the team, as needed. Basic Qualifications: Bachelor's Degree or military experience At least 7 years experience in Cybersecurity, Technology, Risk Management, or Audit or a combination of the the four At least 7 years of experience planning and leading risk assessments and audits At least 4 years of project or process management experience At least 4 years of People Management experience At least 2 years of experience implementing an International program or leading an International or Country Risk Management program Preferred Qualifications: 10 years experience in Cybersecurity, Technology, Risk Management, International Risk, or External Audit, or a combination of these 8 years of experience performing information security or technology risk identification and assessments, such as Control Self Assessments (CSAs), or completing assessments within established industry risk frameworks 8 years experience performing data analysis in support of internal risk assessments and control design and operating effectiveness reviews 5 years of experience performing data analysis in support of cybersecurity assessments and control design in a cloud environment (preferably AWS) 5 years of project management experience leading cross-functional projects and programs 3 years of Financial Services industry experience, including familiarity with regulatory practices Cybersecurity and technology risk and/or project management certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Project Management Professional (PMP) Certification, or Masters Certificate of Project Management (CPM) or related certifications Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation . click apply for full job details
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director of Data Protection - Technology Risk Management Capital One is one of the fastest growing organizations in the world today. The growth of the business is being accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The roughly one hundred fifty professionals in TDRM are trusted expert advisers who shape decisions, challenge activities to ensure they meet our standards, and generally oversee technology and information security risk across the business and the central technology organization. TDRM is a second line organization, which means it is independent and sits within the Risk Management Organization. TDRM plays a critical role in ensuring that the company's risk-taking entities are aware of the risks inherent in their activities and decisions, the impact of their actions on the company at an enterprise level, and opportunities to reduce, mitigate or avoid the risks altogether. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology data, and risk management professionals who have a wealth of experience and a demonstrated ability to provide value added recommendations and deliver high-impact results in their areas of expertise. Cybersecurity, Technology and Data risk management are a strategic priority at Capital One, with heavy engagement from the Board, the Chief Executive Officer, and the executive committee. By joining TDRM, you will be providing these executives with the trusted, independent voice they need to ensure our company's technology risks are appropriately managed. Director - Advisory & Oversight Data Protection: We are currently seeking a dynamic leader with significant experience in engaging with business and technology leaders to identify and mitigate cyber security risk in the field of data protection. This individual will challenge our business divisions to analyze, monitor, and manage these cybersecurity risks. The ideal candidate for this role will have a deep understanding of cyber security risk, both from a technical and risk management perspective pertaining to general data protection, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention and destruction. The associate in this role will lead a team and a program to develop relationships and influence risk taking across the organization, providing oversight and effective challenge. Responsibilities: Play a lead role in identifying areas of cyber risk to provide oversight, analysis, effective challenge, and risk-informed recommendations. Provide and manage the production of technical assessments of the effectiveness and design of cybersecurity controls Conduct assessments and draft assessment for senior management and other stakeholders, to include regulatory agencies and the Board of Directors, as needed. Manage a team of cybersecurity professionals. Set vision and direction, manage performance and career development of associates. Stay current on emerging cyber threats and risk management approaches. Collaborate effectively with stakeholders and leaders across multiple organizations to achieve objectives. Coordinate program-related activities and deliverables to ensure effective collaboration within the team and across stakeholder groups. Promote and influence change in technology and program from the first line of defense that drives management of technology and cyber risk within the company's appetite. Basic Qualifications: A Bachelor's degree or military experience At least 7 years of cybersecurity operations experience with enterprise-grade data protection tools or processes At least 5 years of experience in data protection or technology processes, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention, destruction or a combination. At least 5 years of experience of people management At least 2 years of data or certificate management experience At least 2 years of experience with public cloud infrastructure or security principles Preferred Qualifications: At least 1 professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC), Security+ - CompTIA Excellent written and verbal communication skills. This role requires the ability to articulate complex technical concepts in clear, concise, actionable manner through both written products and verbal communications At least 2 years of experience managing, consulting, auditing, or working in the fields of information security, technology, or risk management Familiarity with the field of threat intelligence concepts. Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate Familiarity with financial sector regulatory practices and second line of defense effective challenge Experience with performing risk assessments and risk reporting Passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple projects while maintaining superior results Ability to work cross-functionally, individually, and to lead work among a team Execution oriented and a self-motivator Familiarity NIST Cybersecurity Framework controls, NIST 800-53, ISO 27000-1 At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director of Data Protection - Technology Risk Management Capital One is one of the fastest growing organizations in the world today. The growth of the business is being accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The roughly one hundred fifty professionals in TDRM are trusted expert advisers who shape decisions, challenge activities to ensure they meet our standards, and generally oversee technology and information security risk across the business and the central technology organization. TDRM is a second line organization, which means it is independent and sits within the Risk Management Organization. TDRM plays a critical role in ensuring that the company's risk-taking entities are aware of the risks inherent in their activities and decisions, the impact of their actions on the company at an enterprise level, and opportunities to reduce, mitigate or avoid the risks altogether. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology data, and risk management professionals who have a wealth of experience and a demonstrated ability to provide value added recommendations and deliver high-impact results in their areas of expertise. Cybersecurity, Technology and Data risk management are a strategic priority at Capital One, with heavy engagement from the Board, the Chief Executive Officer, and the executive committee. By joining TDRM, you will be providing these executives with the trusted, independent voice they need to ensure our company's technology risks are appropriately managed. Director - Advisory & Oversight Data Protection: We are currently seeking a dynamic leader with significant experience in engaging with business and technology leaders to identify and mitigate cyber security risk in the field of data protection. This individual will challenge our business divisions to analyze, monitor, and manage these cybersecurity risks. The ideal candidate for this role will have a deep understanding of cyber security risk, both from a technical and risk management perspective pertaining to general data protection, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention and destruction. The associate in this role will lead a team and a program to develop relationships and influence risk taking across the organization, providing oversight and effective challenge. Responsibilities: Play a lead role in identifying areas of cyber risk to provide oversight, analysis, effective challenge, and risk-informed recommendations. Provide and manage the production of technical assessments of the effectiveness and design of cybersecurity controls Conduct assessments and draft assessment for senior management and other stakeholders, to include regulatory agencies and the Board of Directors, as needed. Manage a team of cybersecurity professionals. Set vision and direction, manage performance and career development of associates. Stay current on emerging cyber threats and risk management approaches. Collaborate effectively with stakeholders and leaders across multiple organizations to achieve objectives. Coordinate program-related activities and deliverables to ensure effective collaboration within the team and across stakeholder groups. Promote and influence change in technology and program from the first line of defense that drives management of technology and cyber risk within the company's appetite. Basic Qualifications: A Bachelor's degree or military experience At least 7 years of cybersecurity operations experience with enterprise-grade data protection tools or processes At least 5 years of experience in data protection or technology processes, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention, destruction or a combination. At least 5 years of experience of people management At least 2 years of data or certificate management experience At least 2 years of experience with public cloud infrastructure or security principles Preferred Qualifications: At least 1 professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC), Security+ - CompTIA Excellent written and verbal communication skills. This role requires the ability to articulate complex technical concepts in clear, concise, actionable manner through both written products and verbal communications At least 2 years of experience managing, consulting, auditing, or working in the fields of information security, technology, or risk management Familiarity with the field of threat intelligence concepts. Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate Familiarity with financial sector regulatory practices and second line of defense effective challenge Experience with performing risk assessments and risk reporting Passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple projects while maintaining superior results Ability to work cross-functionally, individually, and to lead work among a team Execution oriented and a self-motivator Familiarity NIST Cybersecurity Framework controls, NIST 800-53, ISO 27000-1 At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director of Data Protection - Technology Risk Management Capital One is one of the fastest growing organizations in the world today. The growth of the business is being accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The roughly one hundred fifty professionals in TDRM are trusted expert advisers who shape decisions, challenge activities to ensure they meet our standards, and generally oversee technology and information security risk across the business and the central technology organization. TDRM is a second line organization, which means it is independent and sits within the Risk Management Organization. TDRM plays a critical role in ensuring that the company's risk-taking entities are aware of the risks inherent in their activities and decisions, the impact of their actions on the company at an enterprise level, and opportunities to reduce, mitigate or avoid the risks altogether. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology data, and risk management professionals who have a wealth of experience and a demonstrated ability to provide value added recommendations and deliver high-impact results in their areas of expertise. Cybersecurity, Technology and Data risk management are a strategic priority at Capital One, with heavy engagement from the Board, the Chief Executive Officer, and the executive committee. By joining TDRM, you will be providing these executives with the trusted, independent voice they need to ensure our company's technology risks are appropriately managed. Director - Advisory & Oversight Data Protection: We are currently seeking a dynamic leader with significant experience in engaging with business and technology leaders to identify and mitigate cyber security risk in the field of data protection. This individual will challenge our business divisions to analyze, monitor, and manage these cybersecurity risks. The ideal candidate for this role will have a deep understanding of cyber security risk, both from a technical and risk management perspective pertaining to general data protection, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention and destruction. The associate in this role will lead a team and a program to develop relationships and influence risk taking across the organization, providing oversight and effective challenge. Responsibilities: Play a lead role in identifying areas of cyber risk to provide oversight, analysis, effective challenge, and risk-informed recommendations. Provide and manage the production of technical assessments of the effectiveness and design of cybersecurity controls Conduct assessments and draft assessment for senior management and other stakeholders, to include regulatory agencies and the Board of Directors, as needed. Manage a team of cybersecurity professionals. Set vision and direction, manage performance and career development of associates. Stay current on emerging cyber threats and risk management approaches. Collaborate effectively with stakeholders and leaders across multiple organizations to achieve objectives. Coordinate program-related activities and deliverables to ensure effective collaboration within the team and across stakeholder groups. Promote and influence change in technology and program from the first line of defense that drives management of technology and cyber risk within the company's appetite. Basic Qualifications: A Bachelor's degree or military experience At least 7 years of cybersecurity operations experience with enterprise-grade data protection tools or processes At least 5 years of experience in data protection or technology processes, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention, destruction or a combination. At least 5 years of experience of people management At least 2 years of data or certificate management experience At least 2 years of experience with public cloud infrastructure or security principles Preferred Qualifications: At least 1 professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC), Security+ - CompTIA Excellent written and verbal communication skills. This role requires the ability to articulate complex technical concepts in clear, concise, actionable manner through both written products and verbal communications At least 2 years of experience managing, consulting, auditing, or working in the fields of information security, technology, or risk management Familiarity with the field of threat intelligence concepts. Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate Familiarity with financial sector regulatory practices and second line of defense effective challenge Experience with performing risk assessments and risk reporting Passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple projects while maintaining superior results Ability to work cross-functionally, individually, and to lead work among a team Execution oriented and a self-motivator Familiarity NIST Cybersecurity Framework controls, NIST 800-53, ISO 27000-1 At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director of Data Protection - Technology Risk Management Capital One is one of the fastest growing organizations in the world today. The growth of the business is being accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The roughly one hundred fifty professionals in TDRM are trusted expert advisers who shape decisions, challenge activities to ensure they meet our standards, and generally oversee technology and information security risk across the business and the central technology organization. TDRM is a second line organization, which means it is independent and sits within the Risk Management Organization. TDRM plays a critical role in ensuring that the company's risk-taking entities are aware of the risks inherent in their activities and decisions, the impact of their actions on the company at an enterprise level, and opportunities to reduce, mitigate or avoid the risks altogether. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology data, and risk management professionals who have a wealth of experience and a demonstrated ability to provide value added recommendations and deliver high-impact results in their areas of expertise. Cybersecurity, Technology and Data risk management are a strategic priority at Capital One, with heavy engagement from the Board, the Chief Executive Officer, and the executive committee. By joining TDRM, you will be providing these executives with the trusted, independent voice they need to ensure our company's technology risks are appropriately managed. Director - Advisory & Oversight Data Protection: We are currently seeking a dynamic leader with significant experience in engaging with business and technology leaders to identify and mitigate cyber security risk in the field of data protection. This individual will challenge our business divisions to analyze, monitor, and manage these cybersecurity risks. The ideal candidate for this role will have a deep understanding of cyber security risk, both from a technical and risk management perspective pertaining to general data protection, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention and destruction. The associate in this role will lead a team and a program to develop relationships and influence risk taking across the organization, providing oversight and effective challenge. Responsibilities: Play a lead role in identifying areas of cyber risk to provide oversight, analysis, effective challenge, and risk-informed recommendations. Provide and manage the production of technical assessments of the effectiveness and design of cybersecurity controls Conduct assessments and draft assessment for senior management and other stakeholders, to include regulatory agencies and the Board of Directors, as needed. Manage a team of cybersecurity professionals. Set vision and direction, manage performance and career development of associates. Stay current on emerging cyber threats and risk management approaches. Collaborate effectively with stakeholders and leaders across multiple organizations to achieve objectives. Coordinate program-related activities and deliverables to ensure effective collaboration within the team and across stakeholder groups. Promote and influence change in technology and program from the first line of defense that drives management of technology and cyber risk within the company's appetite. Basic Qualifications: A Bachelor's degree or military experience At least 7 years of cybersecurity operations experience with enterprise-grade data protection tools or processes At least 5 years of experience in data protection or technology processes, Data Loss Prevention (DLP), data identification, classification, minimization, tokenization, encryption, secure transfer, retention, destruction or a combination. At least 5 years of experience of people management At least 2 years of data or certificate management experience At least 2 years of experience with public cloud infrastructure or security principles Preferred Qualifications: At least 1 professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC), Security+ - CompTIA Excellent written and verbal communication skills. This role requires the ability to articulate complex technical concepts in clear, concise, actionable manner through both written products and verbal communications At least 2 years of experience managing, consulting, auditing, or working in the fields of information security, technology, or risk management Familiarity with the field of threat intelligence concepts. Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate Familiarity with financial sector regulatory practices and second line of defense effective challenge Experience with performing risk assessments and risk reporting Passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple projects while maintaining superior results Ability to work cross-functionally, individually, and to lead work among a team Execution oriented and a self-motivator Familiarity NIST Cybersecurity Framework controls, NIST 800-53, ISO 27000-1 At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/20/2025
Full time
Director, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace Solutions, Emerging Payments, Ventures, and Tech. As the risk team for Enterprise Services Business Risk, we are on the cutting edge of risk management and provide support for new and emerging technologies as well as critical business strategies. Capital One has taken a bold journey to build a technology company, while operating in a complex, highly regulated business. As a Business Risk Manager in Capital One's Enterprise Services (ES) Risk organization, you will apply your risk management and analytical skills to some of our highest profile Risk Management projects.As a Risk Manager in the Enterprise Services Risk Office, we are the first line of defense to help ensure our Company remains well-managed and avoid unnecessary risk. In this position, you will play a key role in enhancing our third party risk management processes across Capital One and driving project and program delivery. Here's what we're looking for in an ideal teammate: You are a critical thinker who seeks to understand the business and its control environment. You possess a relentless focus on quality and timeliness. You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking. You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact. You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent. Responsibilities: Build successful relationships with ESM and other team members to understand the impact of technology risk on critical business processes Perform risk reviews during various processes such as Risk Control and Self Assessments (RCSAs), Process Level Assessments (PLA), Exceptions, Applications, Targeted Risk Assessments and recommend on risk mitigation activities. Influence leaders within ESM, Compliance, Cyber Security, second line risk organizations, and Internal Audit on key technology risks and actions needed Conduct periodic risk reviews with the executives and support reporting for risk metrics Develop risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Design and support internal risk and control governance processes Identify and implement continual risk program enhancements based on industry standards and best practices in alignment with Capital One's strategic risk direction Support the Enterprise Services (ES) Risk organization by implementing new and innovative ideas Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in Risk Management At least 10 years of People Management experience At least 10 years of experience in project, risk program, Cloud risk management, or process management At least 10 years of experience supporting, partnering, and interacting with internal and external business clients At least 10 years of experience consulting with senior executives or strategy building At least 4 years of experience working in cross functional teams Preferred Qualifications: 10+ years of experience in project or process management, or agile delivery At least 10 years of experience managing senior stakeholders across different business functions At least 10 years of experience writing communications and presentations for leadership audience At least 10 years of experience in strategy development, preferably working in financial services and/or technology Excellent verbal presentation and written communication skills to confidently interact at all levels of the organization (e.g., technology/cyber organizations, enterprise business stakeholders, and executive leadership) Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver Ability to set direction, delegate tasks, manage multiple stakeholder expectations, and coordinate a cross-functional team Ability to set direction, manage expectations, and lead cross-functional teams Consulting experience with a Big 4 firm At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Sales Territory: $205,400 - $234,400 for Director, Cyber Risk & Analysis Plano, TX: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Wilmington, DE: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
