Principal Associate, Cyber Controls Monitoring
4 weeks ago
Principal Associate, Cyber Controls Monitoring
As a Principal Associate (PA) in Capital One's Cyber Governance & Risk organization, you will have the chance to oversee control development, enhancement, execution, testing and reporting, and ensuring controls meet quality standards. You will work on a team of control associates to ensure Capital One Cyber controls adequately mitigate risk, maintain audit readiness, and aid in meeting business objectives.
A critical component of this role is the enhancement of our Cyber control environment, for which the Controls team is responsible. The Cyber Controls Governance Associate will be able to operate within a highly collaborative team environment. The work we participate in has a high level of exposure across the Cyber line of business, including other first and second line risk partners. Proficiency in the life cycle of internal controls (ideally technology controls) and an understanding of the Capital One Risk Management Framework are important for success in this role.
As part of making enhancements to the Cyber controls environment, this role will be involved in the continuous monitoring of automated controls, ensuring that the implemented measures are functioning as intended to mitigate risks. By performing regular assessments on control performance, this role would detect control exceptions in real-time, and escalate for prompt remediation.
General Responsibilities:
- Collaborate effectively across Cyber engineering teams regarding control execution and delivering on top priorities in a timely and efficient manner
- Ensure continuous controls monitoring and deliverables are executed per guidelines and requirements
- Assess control evidence to ensure accuracy, quality and overall value
- Synthesize data from various reports and dashboards to identify potential compliance gaps; then partner with application ownership teams to ensure remediation
- Analyze control assessments executed by engineering teams for accuracy and adherence to control requirements, work with key stakeholders to mitigate any identified concerns
- Stay abreast of the changing risk assessments and testing processes to help assure adequate governance coverage and compliance
- Manage end-to-end controls lifecycle along with ensuring adherence to the Enterprise Control Standard
- Develop and maintain a robust control inventory to ensure that appropriate risk and regulatory coverage is in place
- Communicate control gaps and deficiencies, risk exposures, and changes to the risk profile to senior management
- Actively seek and report on opportunities to strengthen processes via automation
Basic Qualifications:
- High School Diploma, GED, or equivalent certification
- At least 4 years of risk management or internal controls experience
- At least 1 year of project management experience
Preferred Qualifications:
- Bachelor's Degree
- 2+ years of experience in governance
- 2+ years of experience with cloud environments
- 2+ years of experience in an agile or scrum environment
- Security+, CISSP, CEH, CCSP, or AWS Certification
At this time, Capital One will not sponsor a new applicant for employment authorization for this position.
Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.
This role is expected to accept applications for a minimum of 5 business days.
No agencies please. Capital One is an equal opportunity employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex (including pregnancy, childbirth or related medical conditions), race, color, age, national origin, religion, disability, genetic information, marital status, sexual orientation, gender identity, gender reassignment, citizenship, immigration status, protected veteran status, or any other basis prohibited under applicable federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.
If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
For technical support or questions about Capital One's recruiting process, please send an email to
Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.
Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
-
Principal Associate, Cyber Technical
4 weeks ago
Richmond, United States Capital One Full timePlano 1 (31061), United States of America, Plano, TexasPrincipal Associate, Cyber TechnicalWe are seeking a Principal Associate, Cyber Technical who enjoys solving complex business problems in a fast-paced, collaborative, inclusive, and iterative delivery environment. At Capital One, you'll be part of a big group of builders, breakers, doers and disruptors,...
-
Richmond, United States Capital One Full timeCenter 3 (19075), United States of America, McLean, VirginiaPrincipal Associate, Cyber Security Operations Center (CSOC) Countermeasures AnalystCapital One is looking for talented Cyber Security Analysts with experience performing endpoint, network, and cloud security monitoring to join our Cyber Security Operations Center (CSOC). The Principal Associate...
-
Principal Associate Cyber Risk
2 weeks ago
Richmond, United States Capital One Full timeCenter 1 (19052), United States of America, McLean, VirginiaPrincipal Associate Cyber Risk & Analysis, Technology Audit (Hybrid)Capital One's Audit function is a dedicated group of professionals focused on delivering top-quality assurance services to the organization's Audit Committee. Audit professionals are experienced, well-trained and credentialed, and...
-
Richmond, United States Capital One Full timeCenter 3 (19075), United States of America, McLean, VirginiaPrincipal Associate, Cyber Security Operations Center (CSOC) - (Fusion) AnalystThe Cyber Security Operation Center Fusion team synthesizes multi-source security alerting, intrusion investigations, cyber intelligence, and business information into actionable analysis. The Fusion team provides this...
-
Principal Associate, CSOC Analyst
4 weeks ago
Richmond, United States Capital One Full timeCenter 3 (19075), United States of America, McLean, VirginiaPrincipal Associate, CSOC Analyst (Incident Response)Capital One is looking for talented Cyber Security Analysts with traditional network security and cloud infrastructure monitoring experience to join our Cyber Security Operations Center (CSOC) in McLean, VA. The Principal Associate level CSOC...
-
Principal Associate
4 weeks ago
Richmond, United States Capital One Full timeWest Creek 3 (12073), United States of America, Richmond, VirginiaPrincipal Associate - Operational Risk Challenge & Advisory, Cyber Risk & AnalysisRisk Advisors at Capital One are highly motivated Risk and process management professionals with excellent analytical, organizational, risk management, project management, and communication skills. These skills...
-
Cyber Security Manager
1 month ago
Richmond, United States Unisys Full timeKey Responsibilities• Responsible for the identification, tracking and management of enterprise risks. This includes performing risk assessments and measuring the success and effectiveness of mitigation efforts.• Identifies, evaluates, tests and implements appropriate security products, tools, and systems to establish and ensure a secure infrastructure....
-
Principal Program Manager
4 weeks ago
Richmond, United States Capital One Full timeCenter 3 (19075), United States of America, McLean, VirginiaPrincipal Program Manager - Cyber Intent Delivery and Oversight (CIDO)Capital One is seeking a strong, experienced Program Manager to lead the development and delivery of key solutions in a cloud first technology environment. As a member of the Cyber Intent Delivery and Oversight (CIDO) team, the...
-
Cyber Security Analyst
4 days ago
Richmond, Virginia, United States Capital One Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Analyst to join our team at Capital One. As a key member of our Cyber Governance & Risk division, you will play a critical role in helping us reduce cyber risk and drive business growth.Key ResponsibilitiesDevelop and implement effective information security standards and procedures to ensure...
-
Senior Risk Control Associate
4 days ago
Richmond, Virginia, United States Recruiters Full timeLocation: United StatesPosition: Principal Risk Associate, Operational Risk Management Control TestingWe are seeking a proactive and motivated Principal Risk Associate to become a key member of the Operational Risk Control Testing team within the Operational Risk Management (ORM) framework. This specialized team is dedicated to executing oversight...
-
Cyber Governance Expert
4 days ago
Richmond, United States Capital One Full timeAbout the RoleCyber Procedure Governance AssociateCapital One is seeking a highly skilled Cyber Procedure Governance Associate to join our Cyber Governance team. As a key member of our team, you will play a critical role in developing and implementing effective Cyber procedures, identifying gaps in requirements and processes, and driving efforts to promote...
-
Cyber Security Analyst
4 days ago
Richmond, Virginia, United States Capital One Full timeAbout the RoleCapital One is seeking a highly skilled Cyber Security Analyst to join our Cyber Governance & Risk division. As a key member of our team, you will work closely with top talent to identify and mitigate cyber risks, ensuring the security and integrity of our systems and data.Key ResponsibilitiesDevelop and implement effective security controls...
-
Cyber Security Specialist
3 months ago
Richmond, United States TECHEAD Full timeTECHEAD is celebrating over thirty-five years of incredible heritage, talent, andaccomplishments! To learn more about TECHEAD, visit us at TECHEAD.com oron Glassdoor.Cyber Security SpecialistContract-to HireHybrid - 3 days a week including WednesdayGlen Allen, Virginia Monitor systems for security gaps, implement effective cyber security solutions, and...
-
Cyber Security Specialist
3 months ago
Richmond, United States TECHEAD Full timeTECHEAD is celebrating over thirty-five years of incredible heritage, talent, andaccomplishments! To learn more about TECHEAD, visit us at TECHEAD.com oron Glassdoor.Cyber Security SpecialistContract-to HireHybrid - 3 days a week including WednesdayGlen Allen, Virginia Monitor systems for security gaps, implement effective cyber security solutions, and...
-
Cyber Response Analyst
2 months ago
Richmond, United States Integration Innovation, Inc. Full timeOverview: Come Join Our Team Fast-paced, dynamic, and rewarding environment supporting regional defense efforts. This project delivers defensive cyberspace operations (DCO) support to Cyber Security Service Provider Division (CSSP-D), US Army Regional Cyber Center-Korea. The CSSP-D environment includes any hardware, software, application, tool, system, or...
-
Richmond, United States Dominion Energy Full timeJob Summary *There is one vacancy which will be filled at the level commensurate with the successful candidate's education, experience, knowledge, skills and abilities. This role is to execute cyber security initiatives in accordance with the Electric Transmission Field Operations (ETFO) Cyber Compliance Monitoring Program. This position will...
-
Sr. Cyber Cloud Security Engineer
4 weeks ago
Richmond, United States Capital One Full timeCenter 3 (19075), United States of America, McLean, VirginiaSr. Cyber Cloud Security EngineerCapital One is seeking a technical expert in Cloud Security to execute on cyber strategy, while playing a key role in assessing, challenging and advising on infrastructure, platform, and software services in the cloud. The Ideal candidate will display a strong...
-
Sr. Director, Cyber Risk
4 weeks ago
Richmond, United States Capital One Full timeCenter 2 (19050), United States of America, McLean, VirginiaSr. Director, Cyber Risk & Analysis | Retail BankSummary:Capital One, a Fortune 500 company and one of the nation's top 10 banks, offers a broad spectrum of financial products and services to consumers, small businesses and commercial clients. Our mission is to create one of the nation's great...
-
Taxation Legal Advisor
1 week ago
Richmond, Virginia, United States Cyber Armor Solutions Full timePosition OverviewLocation: Flexible options availableCyber Armor Solutions is seeking a Legal Associate to join our esteemed transactional tax division, focusing on the energy sector. This role is ideal for individuals with 1 to 4 years of relevant experience in a transactional tax environment.Key ResponsibilitiesEngage in a collaborative team environment,...
-
Associate Principal 2nd Violin
1 month ago
Richmond, Virginia, United States Richmond Symphony Full timeThe position is for Associate Principal 2nd Violin. Essential duties include performing in our 69 member orchestra and may include performing in public schools, community engagement, and donor events. Other responsibilities are outlined in our Collective Bargaining Agreement (CBA). This position is expected to begin as soon as possible following an offer of...
