Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director of Technical Program Management - Card Modernization Are you interested in leading programs that deliver on critical business goals and build large scale products & platforms? About Capital One: At Capital One, we're changing banking for good. We were founded on the belief that no one should be locked out of the financial system. We're dedicated to helping foster a world where everyone has an equal opportunity to prosper. We're a bank, but we don't think like one. We're always thinking about what's next, about how we can innovate and inspire, and about how we can develop the tools our customers need to improve their financial lives - by leveraging best in class technology. That's where you come in. About the team: Capital One is seeking a Director of Technical Program Manager to work on a large modernization program within our Card Technology+ organization. This individual will be accountable to drive execution of a cohesive roadmap across multiple workstreams in collaboration with our enterprise partners. This could include building platforms and capabilities that interact with Capital One Enterprise systems; building automation and tooling to de-risk and standardize as we migrate clients to core processing platforms; building accounts and transactions integrations to our financial core system. This is a highly visible and influential role that requires deep technology experience, customer focus, organizational leadership, effective communication and program management skills. Success in the role requires an innovative mindset, a proven track record of delivering large scale, complex next generation software and data products, rigorous analytical skills, and a passion for delivering customer value. Our TPM Directors have: Strong technical backgrounds (ideally building highly scalable platforms, products, or services) with the ability to proactively identify and mitigate technical risks throughout delivery life-cycle Exceptional communication and collaboration skills Excellent problem solving and influencing skills A quantitative approach to problem solving and a collaborative implementer to holistic solutions; a systems thinker Experience as a TPM leader to grow and develop a team of TPMs, while also building the foundations for the TPM practice Ability to simplify the technically complex and drive well-educated decisions across product, engineering, design, and data science representatives Deep focus on execution, follow-through, accountability, and results Exceptional cross-team collaboration; able to work across different functions, organizations, and reporting boundaries to get the job done. Highly tuned emotional intelligence, good listener, and deep seated empathy for teams and partners Basic Qualifications: Bachelor's degree At least 7 years of experience managing technical programs Preferred Qualifications: 7+ years of experience designing and building data-intensive solutions using distributed computing 3+ years of experience in building distributed systems & highly available services using cloud computing services / architecture - preferably using AWS 3+ years experience building highly scalable mobile products & platforms 3+ years of experience with Agile delivery 3+ years years experience delivering large and complex programs - where you own the business or technical vision, collaborate with large cross-functional teams, secure commitments on deliverables and unblock teams to land business impact Experience in building systems & solutions within a highly regulated environment Bachelor's degree in a related technical field (Computer Science, Software Engineering) MBA or Master's Degree in a related technical field (Computer Science, Software Engineering) or equivalent experience At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer). The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Technical Program Management McLean, VA: $226,000 - $257,900 for Director, Technical Program Management Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Director of Technical Program Management - Card Modernization Are you interested in leading programs that deliver on critical business goals and build large scale products & platforms? About Capital One: At Capital One, we're changing banking for good. We were founded on the belief that no one should be locked out of the financial system. We're dedicated to helping foster a world where everyone has an equal opportunity to prosper. We're a bank, but we don't think like one. We're always thinking about what's next, about how we can innovate and inspire, and about how we can develop the tools our customers need to improve their financial lives - by leveraging best in class technology. That's where you come in. About the team: Capital One is seeking a Director of Technical Program Manager to work on a large modernization program within our Card Technology+ organization. This individual will be accountable to drive execution of a cohesive roadmap across multiple workstreams in collaboration with our enterprise partners. This could include building platforms and capabilities that interact with Capital One Enterprise systems; building automation and tooling to de-risk and standardize as we migrate clients to core processing platforms; building accounts and transactions integrations to our financial core system. This is a highly visible and influential role that requires deep technology experience, customer focus, organizational leadership, effective communication and program management skills. Success in the role requires an innovative mindset, a proven track record of delivering large scale, complex next generation software and data products, rigorous analytical skills, and a passion for delivering customer value. Our TPM Directors have: Strong technical backgrounds (ideally building highly scalable platforms, products, or services) with the ability to proactively identify and mitigate technical risks throughout delivery life-cycle Exceptional communication and collaboration skills Excellent problem solving and influencing skills A quantitative approach to problem solving and a collaborative implementer to holistic solutions; a systems thinker Experience as a TPM leader to grow and develop a team of TPMs, while also building the foundations for the TPM practice Ability to simplify the technically complex and drive well-educated decisions across product, engineering, design, and data science representatives Deep focus on execution, follow-through, accountability, and results Exceptional cross-team collaboration; able to work across different functions, organizations, and reporting boundaries to get the job done. Highly tuned emotional intelligence, good listener, and deep seated empathy for teams and partners Basic Qualifications: Bachelor's degree At least 7 years of experience managing technical programs Preferred Qualifications: 7+ years of experience designing and building data-intensive solutions using distributed computing 3+ years of experience in building distributed systems & highly available services using cloud computing services / architecture - preferably using AWS 3+ years experience building highly scalable mobile products & platforms 3+ years of experience with Agile delivery 3+ years years experience delivering large and complex programs - where you own the business or technical vision, collaborate with large cross-functional teams, secure commitments on deliverables and unblock teams to land business impact Experience in building systems & solutions within a highly regulated environment Bachelor's degree in a related technical field (Computer Science, Software Engineering) MBA or Master's Degree in a related technical field (Computer Science, Software Engineering) or equivalent experience At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer). The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Technical Program Management McLean, VA: $226,000 - $257,900 for Director, Technical Program Management Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director of Technical Program Management - Card Modernization Are you interested in leading programs that deliver on critical business goals and build large scale products & platforms? About Capital One: At Capital One, we're changing banking for good. We were founded on the belief that no one should be locked out of the financial system. We're dedicated to helping foster a world where everyone has an equal opportunity to prosper. We're a bank, but we don't think like one. We're always thinking about what's next, about how we can innovate and inspire, and about how we can develop the tools our customers need to improve their financial lives - by leveraging best in class technology. That's where you come in. About the team: Capital One is seeking a Director of Technical Program Manager to work on a large modernization program within our Card Technology+ organization. This individual will be accountable to drive execution of a cohesive roadmap across multiple workstreams in collaboration with our enterprise partners. This could include building platforms and capabilities that interact with Capital One Enterprise systems; building automation and tooling to de-risk and standardize as we migrate clients to core processing platforms; building accounts and transactions integrations to our financial core system. This is a highly visible and influential role that requires deep technology experience, customer focus, organizational leadership, effective communication and program management skills. Success in the role requires an innovative mindset, a proven track record of delivering large scale, complex next generation software and data products, rigorous analytical skills, and a passion for delivering customer value. Our TPM Directors have: Strong technical backgrounds (ideally building highly scalable platforms, products, or services) with the ability to proactively identify and mitigate technical risks throughout delivery life-cycle Exceptional communication and collaboration skills Excellent problem solving and influencing skills A quantitative approach to problem solving and a collaborative implementer to holistic solutions; a systems thinker Experience as a TPM leader to grow and develop a team of TPMs, while also building the foundations for the TPM practice Ability to simplify the technically complex and drive well-educated decisions across product, engineering, design, and data science representatives Deep focus on execution, follow-through, accountability, and results Exceptional cross-team collaboration; able to work across different functions, organizations, and reporting boundaries to get the job done. Highly tuned emotional intelligence, good listener, and deep seated empathy for teams and partners Basic Qualifications: Bachelor's degree At least 7 years of experience managing technical programs Preferred Qualifications: 7+ years of experience designing and building data-intensive solutions using distributed computing 3+ years of experience in building distributed systems & highly available services using cloud computing services / architecture - preferably using AWS 3+ years experience building highly scalable mobile products & platforms 3+ years of experience with Agile delivery 3+ years years experience delivering large and complex programs - where you own the business or technical vision, collaborate with large cross-functional teams, secure commitments on deliverables and unblock teams to land business impact Experience in building systems & solutions within a highly regulated environment Bachelor's degree in a related technical field (Computer Science, Software Engineering) MBA or Master's Degree in a related technical field (Computer Science, Software Engineering) or equivalent experience At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer). The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Technical Program Management McLean, VA: $226,000 - $257,900 for Director, Technical Program Management Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Director of Technical Program Management - Card Modernization Are you interested in leading programs that deliver on critical business goals and build large scale products & platforms? About Capital One: At Capital One, we're changing banking for good. We were founded on the belief that no one should be locked out of the financial system. We're dedicated to helping foster a world where everyone has an equal opportunity to prosper. We're a bank, but we don't think like one. We're always thinking about what's next, about how we can innovate and inspire, and about how we can develop the tools our customers need to improve their financial lives - by leveraging best in class technology. That's where you come in. About the team: Capital One is seeking a Director of Technical Program Manager to work on a large modernization program within our Card Technology+ organization. This individual will be accountable to drive execution of a cohesive roadmap across multiple workstreams in collaboration with our enterprise partners. This could include building platforms and capabilities that interact with Capital One Enterprise systems; building automation and tooling to de-risk and standardize as we migrate clients to core processing platforms; building accounts and transactions integrations to our financial core system. This is a highly visible and influential role that requires deep technology experience, customer focus, organizational leadership, effective communication and program management skills. Success in the role requires an innovative mindset, a proven track record of delivering large scale, complex next generation software and data products, rigorous analytical skills, and a passion for delivering customer value. Our TPM Directors have: Strong technical backgrounds (ideally building highly scalable platforms, products, or services) with the ability to proactively identify and mitigate technical risks throughout delivery life-cycle Exceptional communication and collaboration skills Excellent problem solving and influencing skills A quantitative approach to problem solving and a collaborative implementer to holistic solutions; a systems thinker Experience as a TPM leader to grow and develop a team of TPMs, while also building the foundations for the TPM practice Ability to simplify the technically complex and drive well-educated decisions across product, engineering, design, and data science representatives Deep focus on execution, follow-through, accountability, and results Exceptional cross-team collaboration; able to work across different functions, organizations, and reporting boundaries to get the job done. Highly tuned emotional intelligence, good listener, and deep seated empathy for teams and partners Basic Qualifications: Bachelor's degree At least 7 years of experience managing technical programs Preferred Qualifications: 7+ years of experience designing and building data-intensive solutions using distributed computing 3+ years of experience in building distributed systems & highly available services using cloud computing services / architecture - preferably using AWS 3+ years experience building highly scalable mobile products & platforms 3+ years of experience with Agile delivery 3+ years years experience delivering large and complex programs - where you own the business or technical vision, collaborate with large cross-functional teams, secure commitments on deliverables and unblock teams to land business impact Experience in building systems & solutions within a highly regulated environment Bachelor's degree in a related technical field (Computer Science, Software Engineering) MBA or Master's Degree in a related technical field (Computer Science, Software Engineering) or equivalent experience At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer). The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Technical Program Management McLean, VA: $226,000 - $257,900 for Director, Technical Program Management Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/22/2025
Full time
Business Risk Lead, Director, Enterprise Services Risk Office Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. As one of the nation's top 10 banks, we offer a broad spectrum of financial products and services to consumers, small businesses and commercial clients. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work. We are hiring! The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Director on the ES Business Tech Risk team, you will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, business partners and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as provide direct tech risk advisory services into our lines of business (Software, ESM, etc.) In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Services Business Risk team to propel the technology risk agenda for our lines of business and help them make informed risk-based decisions. Assist ES Business Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives with a focus on architectures to enhance technology in support of business drivers Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Influence leaders across Enterprise Services, Cyber, second line risk organizations and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: Bachelor's Degree or military experience At least 8 years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these At least 8 years of experience planning and leading IT audits or risk assessments At least 5 years of People Management experience At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment At least 5 years of experience supporting security and compliance frameworks such as SOC2, ISO27001, PCI, and NIST SP 800-53 Preferred Qualifications: 12+ years experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination of these. Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or AWS DevOps certification 10+ years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework 10+ years of experience supporting security and compliance frameworks such as SOC2, ISO 27001, PCI, and NIST SP 800-53 10+ years experience performing data analysis in support of internal risk assessments and control reviews 3+ years of CI/CD, DevOps, SDLC framework experience 3+ years Application Architecture review experience 3+ years of Financial Services industry experience Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Chicago, IL: $205,400 - $234,400 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Our client, a major bank in New York City, is looking for Director of Compliance Technology Modernization. Permanent position with competitive compensation package (base range is 200-230K), excellent benefits, and target bonus. Must be 2 days per week in New York City Office. Director of Compliance Technology Modernization Job Description: As the Director of Compliance Technology Modernization, you will be at the helm of a transformative journey-redefining how compliance is architected, delivered, and scaled across a global enterprise. This role is a rare opportunity to lead the modernization of mission-critical compliance screening platforms, transitioning legacy systems into agile, cloud-native solutions that are resilient, scalable, and future-ready. You will be responsible for designing and executing a comprehensive technology strategy that not only meets today's regulatory requirements but anticipates tomorrow's challenges. You'll work at the intersection of technology, risk, and regulation-collaborating with senior leaders across Legal, Risk, Compliance, and IT to ensure that our systems are not only compliant but also intelligent, integrated, and optimized for performance. From architecting cloud transformations and managing complex integrations to building high-performing teams and driving innovation, your leadership will directly impact how we protect the integrity of our financial systems. This is a high-visibility, high-impact role for a strategic thinker and hands-on leader who thrives in complex environments and is passionate about using technology to solve real-world problems. If you're ready to lead change at scale and shape the future of compliance in financial services, we want to hear from you. Responsibilities - Lead modernization of compliance screening technology platforms like Prime Compliance Manager, FIRCO, and related systems - Architect and execute cloud transformation with complete system architecture - Coordinate integration activities across multiple partner applications and systems - Develop modernization roadmaps ensuring regulatory compliance continuity - Collaborate with Legal, Risk, Compliance, and IT teams on platform requirements - Manage vendor relationships and technology partnerships - Build and lead high-performing compliance technology teams - Address existing skills gaps in specialized screening platforms Required Qualifications: - 10+ years' experience in compliance screening technology - Big plus if candidates have expertise in platforms such as Prime Compliance Manager, FIRCO, and other industry-standard screening solutions - 5+ years director-level leadership experience - Proven track record leading large-scale platform modernizations and cloud migrations - Azure cloud platform experience required - Experience with data platforms: DataBricks and Snowflake preferred - Deep understanding of financial services compliance requirements (AML, sanctions screening, KYC) - Strong project management and program delivery capabilities - Experience in hybrid deployment environments - Excellent communication and stakeholder management skills Preferred Qualifications - Advanced degree in Computer Science, Engineering, or related field - Cloud architecture certifications (Azure preferred) - Experience with compliance screening technologies and regulatory reporting systems - Background in system integration and API management Please email your resume or use this link to apply directly: Or email: Check ALL our Jobs:
10/21/2025
Full time
Our client, a major bank in New York City, is looking for Director of Compliance Technology Modernization. Permanent position with competitive compensation package (base range is 200-230K), excellent benefits, and target bonus. Must be 2 days per week in New York City Office. Director of Compliance Technology Modernization Job Description: As the Director of Compliance Technology Modernization, you will be at the helm of a transformative journey-redefining how compliance is architected, delivered, and scaled across a global enterprise. This role is a rare opportunity to lead the modernization of mission-critical compliance screening platforms, transitioning legacy systems into agile, cloud-native solutions that are resilient, scalable, and future-ready. You will be responsible for designing and executing a comprehensive technology strategy that not only meets today's regulatory requirements but anticipates tomorrow's challenges. You'll work at the intersection of technology, risk, and regulation-collaborating with senior leaders across Legal, Risk, Compliance, and IT to ensure that our systems are not only compliant but also intelligent, integrated, and optimized for performance. From architecting cloud transformations and managing complex integrations to building high-performing teams and driving innovation, your leadership will directly impact how we protect the integrity of our financial systems. This is a high-visibility, high-impact role for a strategic thinker and hands-on leader who thrives in complex environments and is passionate about using technology to solve real-world problems. If you're ready to lead change at scale and shape the future of compliance in financial services, we want to hear from you. Responsibilities - Lead modernization of compliance screening technology platforms like Prime Compliance Manager, FIRCO, and related systems - Architect and execute cloud transformation with complete system architecture - Coordinate integration activities across multiple partner applications and systems - Develop modernization roadmaps ensuring regulatory compliance continuity - Collaborate with Legal, Risk, Compliance, and IT teams on platform requirements - Manage vendor relationships and technology partnerships - Build and lead high-performing compliance technology teams - Address existing skills gaps in specialized screening platforms Required Qualifications: - 10+ years' experience in compliance screening technology - Big plus if candidates have expertise in platforms such as Prime Compliance Manager, FIRCO, and other industry-standard screening solutions - 5+ years director-level leadership experience - Proven track record leading large-scale platform modernizations and cloud migrations - Azure cloud platform experience required - Experience with data platforms: DataBricks and Snowflake preferred - Deep understanding of financial services compliance requirements (AML, sanctions screening, KYC) - Strong project management and program delivery capabilities - Experience in hybrid deployment environments - Excellent communication and stakeholder management skills Preferred Qualifications - Advanced degree in Computer Science, Engineering, or related field - Cloud architecture certifications (Azure preferred) - Experience with compliance screening technologies and regulatory reporting systems - Background in system integration and API management Please email your resume or use this link to apply directly: Or email: Check ALL our Jobs:
We are looking for an experienced, hands-on business performance improvement leader with track record of productivity gains and mission attainment in operations, supply chain, ERP, IT deployment and key business function support. The incumbent will use an array of continuous process improvement tools and technology to lead large-scale change across all business functions. Ability to leverage leading business and technology practices to deliver more effective and efficient ways of working and driving ongoing scale and growth. Advanced data analysis skills required for root cause analysis, process design and business optimization to create a data driven environment. Ability to work as portfolio director, program lead and subject matter expert using Lean, Kaizen, Six Sigma, Design Thinking, Project Management and Agile methods to enable measurable target outcomes. Multi-industry continuous process improvement program deployment and project implementation is a plus. Must be able to facilitate cross functional teams and collaborate with stakeholders to achieve large-scale transformation, problem solving and innovation life-cycle breakthroughs while successfully integrating change and communications management.Must be able to successfully develop metrics and scorecards to guide performance improvements. Experience with productivity maturity models and directing progressive levels of attainment.Highly skilled capability to construct end-to-end value chain and related multi-level process maps.Experience with knowledge management systems (KMS), Centers of Excellence and Communities of Practice desired. Must have track record of success in Voice of the Customer (VOC) and Voice of the Business (VOB) requirements gathering. Change management implementation experience required. The Director, Business Optimization, will have direct line accountability to the VP Enterprise Transformation and work within the CIO's senior management team. Specific Duties: Lead and promote a culture of high performance, lean and continuous improvement that values learning with a commitment to quality. Manage, build and lead a team focused on delivering modern business processes and capabilities. Partner with business leaders to drive greater financial and operational performance through improvements to current-state business operations and through longer-term redesign of how business value is delivered. Lead complex, cross-functional projects that deliver significant business impacts in product or service delivery, quality, and cost. Continually challenge the status quo and persistently pursue improvement opportunities and lead/develop team to do the same. Lead and assist functional areas in identifying key metrics and validating savings related to automation and process improvements. Champion the development and use of advanced productivity and automation capabilities such as robotic process automation, machine learning, and artificial intelligence. Lead benchmarking programs and ensure results are incorporated into business improvement programs. Design and deliver effective change management tools, artifacts, and enablers across all impacted business areas. Required Skills: Demonstrated success implementing Lean Six Sigma projects in transactional and manufacturing environments. Expertise in the use of Lean Six Sigma tools and methodologies including DMAIC, DFSS, Kaizen, and PDCA. Proficiency performing advanced statistical data analysis using Minitab or equivalent statistical software. Lean Six Sigma Yellow Belt, Green Belt, and Black Belt curriculum development and delivery. Mentoring, coaching, and developing Yellow Belts, Green Belts, Black Belts and project teams in implementing process improvements that provide measurable impact to the business. Total-cost / ROI financial analysis. Facilitation across management and staff levels. Co-location and virtual. Voice of the Customer data collection and analysis. Service Model development and analysis Risk Analysis Superior business communications (written, verbal, and graphical) and presentation skills Proficiency in the use of Microsoft Excel, PowerPoint, and Visio. Aptitude for evolving technologies, including proficiency in evaluation and application Demonstrated ability to think and plan strategically Required Education, Experience and Certifications: BS/BA (Engineering degree preferred) Master Black Belt Certification Minimum 10 years as Lean Six Sigma Practitioner and Change Management Leader Preferred Skills and Experience: Consulting experience Exposure to new AI tools and enterprise systems (Oracle, Microsoft) Agile best practices to include Safe, Agile Coaching and or SCRUM Operating Model (ex CMMI, ISO and or ITIL) development and audit Enterprise IT system life cycle analysis and deployment Change and Communications Management CPI professional development, PMP training or related industry experience also a plus Travel Requirements: Travel up to 30% and as required Sinclair is proud to be an equal opportunity employer and a drug free workplace. Employment practices will not be influenced or affected by virtue of an applicant's or employee's race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), national origin, age, disability, genetic information, military or veteran status or any other characteristic protected by law. About Us Sinclair, Inc. (Nasdaq: SBGI) is a diversified media company and a leading provider of local news and sports. The Company owns, operates and/or provides services to 178 television stations in 81 markets affiliated with all major broadcast networks; owns Tennis Channel, the premium destination for tennis enthusiasts; multicast networks CHARGE, Comet, ROAR and The Nest. Sinclair's AMP Media produces a growing portfolio of digital content and original podcasts. Additional information about Sinclair can be found at . About the Team The life-blood of our organization is our people. We have a compelling story, a goal-oriented culture, and we take really good care of people. How good? Here is a glimpse: great benefits, open door policy, upward mobility and a strong desire to see you succeed. Ready to be part of a winning team? Let's talk. The base salary compensation range for this role is $144,000 to $192,000. Final compensation for this role will be determined by various factors such as a candidate's relevant work experience, skills, certifications, and geographic location. Full time positions are eligible for benefits that include participation in a retirement plan, life and disability insurance, health, dental and vision plans, flexible spending accounts, 15 paid vacation days, 2 paid personal days, 9 paid holidays, 40 hours of paid sick leave, parental leave, and employee stock purchase plan.
10/21/2025
Full time
We are looking for an experienced, hands-on business performance improvement leader with track record of productivity gains and mission attainment in operations, supply chain, ERP, IT deployment and key business function support. The incumbent will use an array of continuous process improvement tools and technology to lead large-scale change across all business functions. Ability to leverage leading business and technology practices to deliver more effective and efficient ways of working and driving ongoing scale and growth. Advanced data analysis skills required for root cause analysis, process design and business optimization to create a data driven environment. Ability to work as portfolio director, program lead and subject matter expert using Lean, Kaizen, Six Sigma, Design Thinking, Project Management and Agile methods to enable measurable target outcomes. Multi-industry continuous process improvement program deployment and project implementation is a plus. Must be able to facilitate cross functional teams and collaborate with stakeholders to achieve large-scale transformation, problem solving and innovation life-cycle breakthroughs while successfully integrating change and communications management.Must be able to successfully develop metrics and scorecards to guide performance improvements. Experience with productivity maturity models and directing progressive levels of attainment.Highly skilled capability to construct end-to-end value chain and related multi-level process maps.Experience with knowledge management systems (KMS), Centers of Excellence and Communities of Practice desired. Must have track record of success in Voice of the Customer (VOC) and Voice of the Business (VOB) requirements gathering. Change management implementation experience required. The Director, Business Optimization, will have direct line accountability to the VP Enterprise Transformation and work within the CIO's senior management team. Specific Duties: Lead and promote a culture of high performance, lean and continuous improvement that values learning with a commitment to quality. Manage, build and lead a team focused on delivering modern business processes and capabilities. Partner with business leaders to drive greater financial and operational performance through improvements to current-state business operations and through longer-term redesign of how business value is delivered. Lead complex, cross-functional projects that deliver significant business impacts in product or service delivery, quality, and cost. Continually challenge the status quo and persistently pursue improvement opportunities and lead/develop team to do the same. Lead and assist functional areas in identifying key metrics and validating savings related to automation and process improvements. Champion the development and use of advanced productivity and automation capabilities such as robotic process automation, machine learning, and artificial intelligence. Lead benchmarking programs and ensure results are incorporated into business improvement programs. Design and deliver effective change management tools, artifacts, and enablers across all impacted business areas. Required Skills: Demonstrated success implementing Lean Six Sigma projects in transactional and manufacturing environments. Expertise in the use of Lean Six Sigma tools and methodologies including DMAIC, DFSS, Kaizen, and PDCA. Proficiency performing advanced statistical data analysis using Minitab or equivalent statistical software. Lean Six Sigma Yellow Belt, Green Belt, and Black Belt curriculum development and delivery. Mentoring, coaching, and developing Yellow Belts, Green Belts, Black Belts and project teams in implementing process improvements that provide measurable impact to the business. Total-cost / ROI financial analysis. Facilitation across management and staff levels. Co-location and virtual. Voice of the Customer data collection and analysis. Service Model development and analysis Risk Analysis Superior business communications (written, verbal, and graphical) and presentation skills Proficiency in the use of Microsoft Excel, PowerPoint, and Visio. Aptitude for evolving technologies, including proficiency in evaluation and application Demonstrated ability to think and plan strategically Required Education, Experience and Certifications: BS/BA (Engineering degree preferred) Master Black Belt Certification Minimum 10 years as Lean Six Sigma Practitioner and Change Management Leader Preferred Skills and Experience: Consulting experience Exposure to new AI tools and enterprise systems (Oracle, Microsoft) Agile best practices to include Safe, Agile Coaching and or SCRUM Operating Model (ex CMMI, ISO and or ITIL) development and audit Enterprise IT system life cycle analysis and deployment Change and Communications Management CPI professional development, PMP training or related industry experience also a plus Travel Requirements: Travel up to 30% and as required Sinclair is proud to be an equal opportunity employer and a drug free workplace. Employment practices will not be influenced or affected by virtue of an applicant's or employee's race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), national origin, age, disability, genetic information, military or veteran status or any other characteristic protected by law. About Us Sinclair, Inc. (Nasdaq: SBGI) is a diversified media company and a leading provider of local news and sports. The Company owns, operates and/or provides services to 178 television stations in 81 markets affiliated with all major broadcast networks; owns Tennis Channel, the premium destination for tennis enthusiasts; multicast networks CHARGE, Comet, ROAR and The Nest. Sinclair's AMP Media produces a growing portfolio of digital content and original podcasts. Additional information about Sinclair can be found at . About the Team The life-blood of our organization is our people. We have a compelling story, a goal-oriented culture, and we take really good care of people. How good? Here is a glimpse: great benefits, open door policy, upward mobility and a strong desire to see you succeed. Ready to be part of a winning team? Let's talk. The base salary compensation range for this role is $144,000 to $192,000. Final compensation for this role will be determined by various factors such as a candidate's relevant work experience, skills, certifications, and geographic location. Full time positions are eligible for benefits that include participation in a retirement plan, life and disability insurance, health, dental and vision plans, flexible spending accounts, 15 paid vacation days, 2 paid personal days, 9 paid holidays, 40 hours of paid sick leave, parental leave, and employee stock purchase plan.
Job Title: Director, Operations and Risk Location: USO-TW Building ATL Regular/Temporary: Regular Full/Part Time: Full-Time Job ID: 269691 About Us The University System of Georgia (USG) is comprised of 26 higher education institutions as well as the University System Office (USO). Within the USO, our administrative operations are primarily housed in the Trinity Washington Building located in downtown Atlanta. Our Information Technology Services (ITS) division is located in Athens. The University System of Georgia Shared Services Center (SSC) is located in Sandersville. The Georgia Public Library System is located in Atlanta. The Georgia Archives is located in Morrow. The State of Georgia Records Center is located in Austell. Location Georgia Archives - 5800 Jonesboro Rd Morrow, GA 30260 Georgia Public Library Services (GPLS) - 2872 Woodcock Blvd Atlanta, GA 30341 Information Technology Services (ITS) - 2500 Daniells Bridge Road Athens, GA 30606 Shared Services Center (SSC) - 1005 George J Lyons Pkwy Sandersville, GA 31082 Job Summary The University System of Georgia (USG) Director of Operations & Risk would provide day-to-day oversight and management of the USG Enterprise Risk Management Program (ERM). This position directs, develops, implements, and leads the University System of Georgia's (USG) Enterprise Risk Management program which is intended to visualize, assess, and manage major risks that may adversely impact the attainment of key organizational objectives. Provides consultation to the University System Institutions and System Office Departments on various insurance and risk management matters, including, but not limited to advisement regarding insurance procurement activities and consultation regarding indemnity contract language inlicense agreements, loan agreements and service agreements. Responsibilities Manages an effective System-wide Enterprise Risk Management (ERM) program including developing mechanisms to identify, assess, monitor, report, and mitigate risks. Plans, directs, oversees, and coordinates the day-to-day activities of the University System Office (USO) ERM program as well as assists USO administrators in maintaining the USO risk management frameworks and procedures. Coordinates and oversees an institution-wide approach to ERM by all USG institutions and ensures that risk management efforts are focused on supporting the institution's mission and objectives. Coordinates directly with each institution's risk management policy coordinator to ensure the effective management of risk at the institutional level. Coordinates groups and committees at institutions and the system office to find solutions to newly identified risk management issues; leads project with state, regional and national implications. Designs key risk indicators and risk response strategies and assists in designing System-wide reports concerning identified risks. Integrates risks and USG strategic objectives to provide recommendations addressing policy, procedures, strategy, resource allocation, and other risk mitigation strategies. Lead the core traditional risk management program for the USG, i.e., the Comprehensive Loss Control Program (CLCP). Collaborates with other risk management functions within the System Office and throughout the USG. Makes recommendations on improvements to Board policy, USG procedures, and other process improvements impacting USG operations. Prepares and submits findings and reports affecting the ERM program. Presents recommendations and other reports to senior management and the Board of Regents. Communicates and coordinates with outside agencies as needed to represent the ERM program and the USG, to include regular interaction with the Georgia Department of Administrative Services (DOAS). Provides direction and advice to USG and USO departments on all matters related to state insurance programs, including property, fidelity, aviation, liability, workers' compensation, etc. Provide direction and support on property control policies, procedures, and processes. Partner with and cultivate relationships with key strategic stakeholders to lead in developing and implementing standards, processes, programs, and best practices related to risk management. Create awareness and conduct training surrounding risks and mitigation efforts. Performs special projects and assignments as assigned by the Assistant Vice Chancellor of Fiscal Affairs Operations, Committee on Internal Audit, Risk, and Compliance, and/or other senior management. Further develop and strengthen a relatively new program in a complex internal and external environment. Position involves significant and frequent interaction with USG Presidents, USG Chief Business Officers, and other USG senior staff, including the ERM Coordinators. The position will provide guidance, advice, and counsel to the Chief Audit Officer and other senior staff and managers as an input to the USG audit risk assessment process.Manages the performance measurement of the risk management support function and evaluates the quality of services provided through review of reports and statistical data and through communications with stakeholders.Travel to various USG institutions and other offsite meeting locations Required Qualifications Master's degree in Finance, Accounting, Risk Management, Business, or related field Over three years of directly related program management experience Experience preferably in Higher Education operations Professional license, certification, or designation or graduate degree related to or demonstrating competency in ERM Excellent communication, organizational and problem-solving skills Strong work ethic and ability to multi-task Understanding of ERM frameworks and its application to organizational operations and governance Preferred Qualifications 8-10 years job related experience. Two or more Certifications or licenses preferred Knowledge, Skills, & Abilities Advanced knowledge of risk management, business continuity, insurance and the claims process. Knowledge of federal and state laws, rules and regulations impacting higher education. Knowledge of process improvement theories and practices. Knowledge of best practices in higher education management. Knowledge of computers and job-related software programs. Great attention to detail Ability to provide supervision and direction. Skill in written communication to executive and subject matter experts. Skill in collaborating with multiple constituents. Skill in decision making and problem solving. Skill in interpersonal relations and in dealing with the public. Skill in oral and written communication. Ability to respond diplomatically to sensitive and critical issues. Ability to effectively multi-task. Ability to learn and become the Administrator of Wdesk, the USG ERM software. Contact Information For technical support, please contact OneUSG Connect Support by phone at 251.2644, or by email at . USG Core Values The University System of Georgia is comprised of our 26 institutions of higher education and learning as well as the System Office. Our USG Statement of Core Values are Integrity, Excellence, Accountability, and Respect. These values serve as the foundation for all that we do as an organization, and each USG community member is responsible for demonstrating and upholding these standards. More details on the USG Statement of Core Values and Code of Conduct are available in USG Board Policy 8.2.18.1.2 and can be found on-line at . Additionally, USG supports Freedom of Expression as stated in Board Policy 6.5 Freedom of Expression and Academic Freedom found on-line at . Conditions of Employment Offers of employment are subject to federal and state laws, as well as the statutes, rules, and regulations of this institution, and the Bylaws and Policies of the Board of Regents (BOR) of the University System of Georgia (USG). These Bylaws and Policies are available for inspection upon request. Equal Employment Opportunity The University System Office is an equal employment, equal access, and equal educational opportunity, and affirmative action institution. It is the policy of the University System Office to recruit, hire, train, promote and educate persons without regard to race, color, national or ethnic origin, age, disability, gender, religion, sexual orientation, gender identity or veteran status as required by applicable state and federal laws (including Title VI, Title VII, Title IX, Sections 503, and 504, ADEA, ADA, E.O. 11246, and Rev. Proc. 75-50). For questions or more detailed information regarding this policy please contact the University System Office Human Resources at . Individuals requiring disability related accommodations for participation in any event or to obtain print materials in an alternative format, please contact Human Resources. Background Check Offers of employment are subject to a background investigation, including criminal records history, to determine eligibility for employment. Additionally, credentials and employment history stated in your application materials are also subject to verification. For certain positions, a satisfactory credit check, MVR . click apply for full job details
10/21/2025
Full time
Job Title: Director, Operations and Risk Location: USO-TW Building ATL Regular/Temporary: Regular Full/Part Time: Full-Time Job ID: 269691 About Us The University System of Georgia (USG) is comprised of 26 higher education institutions as well as the University System Office (USO). Within the USO, our administrative operations are primarily housed in the Trinity Washington Building located in downtown Atlanta. Our Information Technology Services (ITS) division is located in Athens. The University System of Georgia Shared Services Center (SSC) is located in Sandersville. The Georgia Public Library System is located in Atlanta. The Georgia Archives is located in Morrow. The State of Georgia Records Center is located in Austell. Location Georgia Archives - 5800 Jonesboro Rd Morrow, GA 30260 Georgia Public Library Services (GPLS) - 2872 Woodcock Blvd Atlanta, GA 30341 Information Technology Services (ITS) - 2500 Daniells Bridge Road Athens, GA 30606 Shared Services Center (SSC) - 1005 George J Lyons Pkwy Sandersville, GA 31082 Job Summary The University System of Georgia (USG) Director of Operations & Risk would provide day-to-day oversight and management of the USG Enterprise Risk Management Program (ERM). This position directs, develops, implements, and leads the University System of Georgia's (USG) Enterprise Risk Management program which is intended to visualize, assess, and manage major risks that may adversely impact the attainment of key organizational objectives. Provides consultation to the University System Institutions and System Office Departments on various insurance and risk management matters, including, but not limited to advisement regarding insurance procurement activities and consultation regarding indemnity contract language inlicense agreements, loan agreements and service agreements. Responsibilities Manages an effective System-wide Enterprise Risk Management (ERM) program including developing mechanisms to identify, assess, monitor, report, and mitigate risks. Plans, directs, oversees, and coordinates the day-to-day activities of the University System Office (USO) ERM program as well as assists USO administrators in maintaining the USO risk management frameworks and procedures. Coordinates and oversees an institution-wide approach to ERM by all USG institutions and ensures that risk management efforts are focused on supporting the institution's mission and objectives. Coordinates directly with each institution's risk management policy coordinator to ensure the effective management of risk at the institutional level. Coordinates groups and committees at institutions and the system office to find solutions to newly identified risk management issues; leads project with state, regional and national implications. Designs key risk indicators and risk response strategies and assists in designing System-wide reports concerning identified risks. Integrates risks and USG strategic objectives to provide recommendations addressing policy, procedures, strategy, resource allocation, and other risk mitigation strategies. Lead the core traditional risk management program for the USG, i.e., the Comprehensive Loss Control Program (CLCP). Collaborates with other risk management functions within the System Office and throughout the USG. Makes recommendations on improvements to Board policy, USG procedures, and other process improvements impacting USG operations. Prepares and submits findings and reports affecting the ERM program. Presents recommendations and other reports to senior management and the Board of Regents. Communicates and coordinates with outside agencies as needed to represent the ERM program and the USG, to include regular interaction with the Georgia Department of Administrative Services (DOAS). Provides direction and advice to USG and USO departments on all matters related to state insurance programs, including property, fidelity, aviation, liability, workers' compensation, etc. Provide direction and support on property control policies, procedures, and processes. Partner with and cultivate relationships with key strategic stakeholders to lead in developing and implementing standards, processes, programs, and best practices related to risk management. Create awareness and conduct training surrounding risks and mitigation efforts. Performs special projects and assignments as assigned by the Assistant Vice Chancellor of Fiscal Affairs Operations, Committee on Internal Audit, Risk, and Compliance, and/or other senior management. Further develop and strengthen a relatively new program in a complex internal and external environment. Position involves significant and frequent interaction with USG Presidents, USG Chief Business Officers, and other USG senior staff, including the ERM Coordinators. The position will provide guidance, advice, and counsel to the Chief Audit Officer and other senior staff and managers as an input to the USG audit risk assessment process.Manages the performance measurement of the risk management support function and evaluates the quality of services provided through review of reports and statistical data and through communications with stakeholders.Travel to various USG institutions and other offsite meeting locations Required Qualifications Master's degree in Finance, Accounting, Risk Management, Business, or related field Over three years of directly related program management experience Experience preferably in Higher Education operations Professional license, certification, or designation or graduate degree related to or demonstrating competency in ERM Excellent communication, organizational and problem-solving skills Strong work ethic and ability to multi-task Understanding of ERM frameworks and its application to organizational operations and governance Preferred Qualifications 8-10 years job related experience. Two or more Certifications or licenses preferred Knowledge, Skills, & Abilities Advanced knowledge of risk management, business continuity, insurance and the claims process. Knowledge of federal and state laws, rules and regulations impacting higher education. Knowledge of process improvement theories and practices. Knowledge of best practices in higher education management. Knowledge of computers and job-related software programs. Great attention to detail Ability to provide supervision and direction. Skill in written communication to executive and subject matter experts. Skill in collaborating with multiple constituents. Skill in decision making and problem solving. Skill in interpersonal relations and in dealing with the public. Skill in oral and written communication. Ability to respond diplomatically to sensitive and critical issues. Ability to effectively multi-task. Ability to learn and become the Administrator of Wdesk, the USG ERM software. Contact Information For technical support, please contact OneUSG Connect Support by phone at 251.2644, or by email at . USG Core Values The University System of Georgia is comprised of our 26 institutions of higher education and learning as well as the System Office. Our USG Statement of Core Values are Integrity, Excellence, Accountability, and Respect. These values serve as the foundation for all that we do as an organization, and each USG community member is responsible for demonstrating and upholding these standards. More details on the USG Statement of Core Values and Code of Conduct are available in USG Board Policy 8.2.18.1.2 and can be found on-line at . Additionally, USG supports Freedom of Expression as stated in Board Policy 6.5 Freedom of Expression and Academic Freedom found on-line at . Conditions of Employment Offers of employment are subject to federal and state laws, as well as the statutes, rules, and regulations of this institution, and the Bylaws and Policies of the Board of Regents (BOR) of the University System of Georgia (USG). These Bylaws and Policies are available for inspection upon request. Equal Employment Opportunity The University System Office is an equal employment, equal access, and equal educational opportunity, and affirmative action institution. It is the policy of the University System Office to recruit, hire, train, promote and educate persons without regard to race, color, national or ethnic origin, age, disability, gender, religion, sexual orientation, gender identity or veteran status as required by applicable state and federal laws (including Title VI, Title VII, Title IX, Sections 503, and 504, ADEA, ADA, E.O. 11246, and Rev. Proc. 75-50). For questions or more detailed information regarding this policy please contact the University System Office Human Resources at . Individuals requiring disability related accommodations for participation in any event or to obtain print materials in an alternative format, please contact Human Resources. Background Check Offers of employment are subject to a background investigation, including criminal records history, to determine eligibility for employment. Additionally, credentials and employment history stated in your application materials are also subject to verification. For certain positions, a satisfactory credit check, MVR . click apply for full job details
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Director, Technology Risk- Enterprise Services Risk Director, Technology Risk- Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector. As a Technology Risk Director in Capital One's Tech and Product Risk Office, you will apply your risk management, cyber, and technical expertise to the company's Technology organization. You will partner across Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders, and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization. Your contributions will drive organizational and strategic change through risk identification, measurement, analysis, and reporting in order to better manage the company's risk in an open and collaborative environment. In this role, you will: Serve as the Technology Risk Guide leader for the Enterprise Platforms Technology and Product Leadership Team and respective software engineering teams to propel technology risk agenda and help them make informed risk-based decisions. Assist Tech and Product Risk leadership in delivering against their strategy and services Provide oversight and guidance on key strategic Technology initiatives Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as second line Technology and Cyber organizations and Compliance; collaborate effectively across multiple organizations to achieve objectives Identify and implement continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital One's strategic risk direction Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts Design and implement internal risk and control governance processes Influence leaders within Tech, Cyber, Product, second line risk organizations, the developer community, and Internal Audit on key technology risks and actions needed Develop and monitor risk analysis, perform deep dive investigations, and drive specific risk initiatives to minimize risk posture and strengthen overall control suite effectiveness Support Risk Control and Self Assessments (RCSAs) Understand, document, and analyze current state capabilities leveraging one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework. Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aids. Draft, contribute to, edit, and deliver presentations that enable the design, development, refinement, and usage of risk methods. Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 7 years of experience in Cybersecurity, Technology, Risk Management, or External Audit, or a combination At least 7 years of experience in project, process, or program management At least 7 years of experience planning and leading IT audits or risk assessments At least 7 years of People Management experience Preferred Qualifications Bachelor's Degree or Military Experience At least 10 years of experience in Cybersecurity, Technology, Risk Management or External Audit, or a combination At least 10 years of experience in project, process, or program management Cyber and Risk Certifications (CRISC, CISM, CRCM, CAMS, CIPP, ABA Risk Management Certification) Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines Consulting experience with a Big 4 firm is a plus At this time, Capital One will not sponsor a new applicant for employment authorization for this position The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. Richmond, VA: $205,400 - $234,400 for Director, Cyber Risk & Analysis New York, NY: $246,500 - $281,300 for Director, Cyber Risk & Analysis McLean, VA: $226,000 - $257,900 for Director, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
10/21/2025
Full time
Director, Payment Network Technology Risk Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, software quality, and data management. Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The 200 professionals in TDRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk, and data management risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. For years, the cybersecurity community has debated whether the CISO should report to the CIO or not. In regulated financial services, the answer is: both. The first-line CISO has operational responsibilities and reports to the CIO. The second-line Chief Tech Risk Officer (CTRO) and the Tech & Data Risk Management (TRM) organization have broader responsibilities for cybersecurity but also reliability, software quality, resilience, and the risk of failing to manage our data. The CTRO is independent and oversees the work of the CISO, the CIO/CTO, and the Chief Data Officer. The CTRO reports to the Chief Risk Officer, who reports directly to the CEO. Our business leaders must make technology decisions constantly. TDRM makes sure they have the tech and data risk information they need to make good decisions. Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. Director, Payment Network Technology Risk We are actively seeking a highly technical and influential thought leader to join our team as a Director, Payment Network Technology Risk. This pivotal individual contributor role demands a proven track record of partnering with senior business and technology leaders to proactively identify and strategically mitigate complex technology risks. The ideal candidate will possess a profound, hands-on understanding of global Credit and Debit Card Payment Network architectures (spanning both legacy systems and cutting-edge modern stacks), viewed through a dual lens of deep technical insight and robust risk management expertise within a fast-paced financial services payments environment. We value experience with traditional data centers infrastructure, but public cloud architecture and engineering proficiency, particularly within AWS will be a great addition. In this role, you will be instrumental in forging collaborative relationships and exerting significant influence across engineering and risk teams throughout Capital One. Responsibilities: Serve as a technical authority, providing rigorous oversight and feedback to Payment Network Line of Business (LOB) integration activities, including strategic initiatives, tooling, processes, and technical requirements. Strategically influence Capital One's Payment Network LOB reliability roadmap, leveraging your deep understanding of resilient system architectures and large-scale operations. Collaborate intensely with LOB architects, product managers, engineers, and Site Reliability Engineering (SRE) teams to thoroughly comprehend existing technologies, processes and approaches, driving impactful changes. Provide expert counsel on the development and implementation of robust policies and standards to effectively guide our critical technology migration and modernization efforts. Basic Qualifications: Bachelor's Degree or military experience At least 10 years of experience in technology, reliability engineering, operational resilience, or risk management At least 3 years of experience with payment networks, financial payment processes or technologies Preferred Qualifications: Understanding of payment network transactional processing systems, real-time analytics, and fraud detection technologies within a high-volume financial context. Prior experience working directly within or extensively collaborating with the technology and/or operations teams of a major global payment network (e.g., Visa, Mastercard, American Express), understanding their unique operational models and resilience challenges. Strong technical or business architecture experience with major card payment networks (e.g., authorization, clearing/settlement systems, fraud, or dispute technologies). Possess a recognized Cloud certification (e.g., AWS Solutions Architect Professional, GCP Professional Cloud Architect, or other relevant cloud engineering/architecture certifications). Demonstrated experience with financial sector regulatory practices and providing effective challenges from a second line of defense perspective. Proven expertise in performing, documenting, and effectively communicating complex technology risk assessments to diverse audiences. 5+ years of hands-on, practitioner experience with large-scale public cloud technologies (AWS and GCP), including advanced cloud tooling, best practices, and technical architecture patterns. At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $263,900 - $301,200 for Director, Cyber Technical New York, NY: $287,800 - $328,500 for Director, Cyber Technical Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical Riverwoods, IL: $239,900 - $273,800 for Director, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days. No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
The pay range is $163,000.00 - $294,000.00 Pay is based on several factors which vary based on position. These include labor markets and in some instances may include education, work experience and certifications. In addition to your pay, Target cares about and invests in you as a team member, so that you can take care of yourself and your family. Target offers eligible team members and their dependents comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more, to help you and your family take care of your whole selves. Other benefits for eligible team members include 401(k), employee discount, short term disability, long term disability, paid sick leave, paid national holidays, and paid vacation. Find competitive benefits from financial and education to well-being and beyond at . About Us Target is an iconic brand, a Fortune 50 company, and one of America's leading retailers. Target as a tech company? Absolutely. We're the behind-the-scenes powerhouse that fuels Target's passion and commitment to cutting-edge innovation. We anchor every facet of one of the world's best-loved retailers with a strong technology framework that relies on the latest tools and technologies-and the brightest people-to deliver incredible value to guests online and in stores. Target Technology Services is on a mission to offer the systems, tools and support that guests and team members need and deserve. We drive industry-leading technologies in support of every angle of the business, and help ensure that Target operates smoothly, securely and reliably from the inside out. Our high-performing teams balance independence with collaboration, and we pride ourselves on being versatile, agile and creative. Use your skills, experience, and talents as a member of a world-class cyber security team! About the Role As the Director of Cybersecurity - Data Protection & Insider Threat, you will lead and shape the strategy for Target's Data Protection and Insider Threat programs. This role is accountable for overseeing the teams responsible for building and enforcing the controls, processes, and policies that safeguard Target's sensitive data, as well as detecting, investigating, and responding to data loss and insider threats. You will: Enhance and evolve data protection capabilities to prevent data loss, misuse, or unauthorized exposure. Lead the Insider Threat function, including detection, response, and prevention of malicious insider activity. Help build and enforce enterprise-wide policies around data governance and security controls. Partner with stakeholders across business and technology functions to strengthen insider threat posture and align data protection practices with organizational priorities. Provide vision and strategic direction for Insider Threat and Data Protection analysts, ensuring successful execution of security programs that address enterprise risks. Foster a culture of continuous improvement, innovation, and collaboration. Serve as a trusted advisor to business and technology leaders on insider threat risks and data protection practices. Responsibilities Develop and execute long-term strategy for Insider Threat and Data Protection programs. Establish robust monitoring, detection, and response capabilities using SIEM, SOAR, UEBA, RBA, and DLP technologies. Lead the creation and enforcement of policies for data management, handling, and protection. Identify and address enterprise-wide risks related to insider threats and data exposure. Build strong stakeholder relationships across the enterprise and influence product and technology roadmaps to enhance security posture. Drive cross-functional initiatives and collaborate with other cybersecurity, engineering, and business teams. Provide coaching, performance management, and career development for a team of analysts. Effectively communicate technical issues, risks, and strategies to both technical and non-technical audiences, including senior leadership. Stay current on emerging threats, technologies, and best practices to continuously enhance program capabilities. About You 4+ years of cybersecurity experience, with demonstrated expertise in insider threat, data protection, or related security domains. Proven leadership experience managing cybersecurity teams or functions. Hands-on knowledge of SIEM, SOAR, UEBA, RBA, and DLP tools. Strong problem-solving skills with ability to resolve complex technical issues with minimal assistance. Demonstrated ability to build strong cross-functional partnerships and influence enterprise strategy. Adept at communicating technical issues in training, mentorship, and executive settings. Committed to process improvement and continuous innovation. Strong written and verbal communication skills, with ability to present complex security concepts clearly to varied audiences. Deep understanding of insider threat landscape and modern data protection practices. Self-directed learner who stays current with evolving cybersecurity trends and threats. This position will operate as a Hybrid/Flex for Your Day work arrangement based on Target's needs. A Hybrid/Flex for Your Day work arrangement means the team member's core role will need to be performed both onsite at the Target HQ MN location the role is assigned to and virtually, depending upon what your role, team and tasks require for that day. Work duties cannot be performed outside of the country of the primary work location, unless otherwise prescribed by Target. Click here if you are curious to learn more about Minnesota. Benefits Eligibility Please paste this url into your preferred browser to learn about benefits eligibility for this role: Americans with Disabilities Act (ADA) In compliance with state and federal laws, Target will make reasonable accommodations for applicants with disabilities. If a reasonable accommodation is needed to participate in the job application or interview process, please reach out to . Non-accommodation-related requests, such as application follow-ups or technical issues, will not be addressed through this channel.
10/21/2025
Full time
The pay range is $163,000.00 - $294,000.00 Pay is based on several factors which vary based on position. These include labor markets and in some instances may include education, work experience and certifications. In addition to your pay, Target cares about and invests in you as a team member, so that you can take care of yourself and your family. Target offers eligible team members and their dependents comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more, to help you and your family take care of your whole selves. Other benefits for eligible team members include 401(k), employee discount, short term disability, long term disability, paid sick leave, paid national holidays, and paid vacation. Find competitive benefits from financial and education to well-being and beyond at . About Us Target is an iconic brand, a Fortune 50 company, and one of America's leading retailers. Target as a tech company? Absolutely. We're the behind-the-scenes powerhouse that fuels Target's passion and commitment to cutting-edge innovation. We anchor every facet of one of the world's best-loved retailers with a strong technology framework that relies on the latest tools and technologies-and the brightest people-to deliver incredible value to guests online and in stores. Target Technology Services is on a mission to offer the systems, tools and support that guests and team members need and deserve. We drive industry-leading technologies in support of every angle of the business, and help ensure that Target operates smoothly, securely and reliably from the inside out. Our high-performing teams balance independence with collaboration, and we pride ourselves on being versatile, agile and creative. Use your skills, experience, and talents as a member of a world-class cyber security team! About the Role As the Director of Cybersecurity - Data Protection & Insider Threat, you will lead and shape the strategy for Target's Data Protection and Insider Threat programs. This role is accountable for overseeing the teams responsible for building and enforcing the controls, processes, and policies that safeguard Target's sensitive data, as well as detecting, investigating, and responding to data loss and insider threats. You will: Enhance and evolve data protection capabilities to prevent data loss, misuse, or unauthorized exposure. Lead the Insider Threat function, including detection, response, and prevention of malicious insider activity. Help build and enforce enterprise-wide policies around data governance and security controls. Partner with stakeholders across business and technology functions to strengthen insider threat posture and align data protection practices with organizational priorities. Provide vision and strategic direction for Insider Threat and Data Protection analysts, ensuring successful execution of security programs that address enterprise risks. Foster a culture of continuous improvement, innovation, and collaboration. Serve as a trusted advisor to business and technology leaders on insider threat risks and data protection practices. Responsibilities Develop and execute long-term strategy for Insider Threat and Data Protection programs. Establish robust monitoring, detection, and response capabilities using SIEM, SOAR, UEBA, RBA, and DLP technologies. Lead the creation and enforcement of policies for data management, handling, and protection. Identify and address enterprise-wide risks related to insider threats and data exposure. Build strong stakeholder relationships across the enterprise and influence product and technology roadmaps to enhance security posture. Drive cross-functional initiatives and collaborate with other cybersecurity, engineering, and business teams. Provide coaching, performance management, and career development for a team of analysts. Effectively communicate technical issues, risks, and strategies to both technical and non-technical audiences, including senior leadership. Stay current on emerging threats, technologies, and best practices to continuously enhance program capabilities. About You 4+ years of cybersecurity experience, with demonstrated expertise in insider threat, data protection, or related security domains. Proven leadership experience managing cybersecurity teams or functions. Hands-on knowledge of SIEM, SOAR, UEBA, RBA, and DLP tools. Strong problem-solving skills with ability to resolve complex technical issues with minimal assistance. Demonstrated ability to build strong cross-functional partnerships and influence enterprise strategy. Adept at communicating technical issues in training, mentorship, and executive settings. Committed to process improvement and continuous innovation. Strong written and verbal communication skills, with ability to present complex security concepts clearly to varied audiences. Deep understanding of insider threat landscape and modern data protection practices. Self-directed learner who stays current with evolving cybersecurity trends and threats. This position will operate as a Hybrid/Flex for Your Day work arrangement based on Target's needs. A Hybrid/Flex for Your Day work arrangement means the team member's core role will need to be performed both onsite at the Target HQ MN location the role is assigned to and virtually, depending upon what your role, team and tasks require for that day. Work duties cannot be performed outside of the country of the primary work location, unless otherwise prescribed by Target. Click here if you are curious to learn more about Minnesota. Benefits Eligibility Please paste this url into your preferred browser to learn about benefits eligibility for this role: Americans with Disabilities Act (ADA) In compliance with state and federal laws, Target will make reasonable accommodations for applicants with disabilities. If a reasonable accommodation is needed to participate in the job application or interview process, please reach out to . Non-accommodation-related requests, such as application follow-ups or technical issues, will not be addressed through this channel.
