PRINCIPAL ASSOCIATE, CYBER SECURITY OPERATIONS CENTER

1 month ago

Philadelphia, United States Capital One Full time
Center 3 (19075), United States of America, McLean, Virginia

Principal Associate, Cyber Security Operations Center (CSOC) - (Fusion) Analyst

The Cyber Security Operation Center Fusion team synthesizes multi-source security alerting, intrusion investigations, cyber intelligence, and business information into actionable analysis. The Fusion team provides this time-sensitive analysis to empower fellow CSOC operators defending the network and to empower leadership to make informed decisions confronting cyber threats.

The associate will be a technical team leader proactively identifying threats, and working across the SOC CSOC operations with contextualized tactical intelligence, driving cross-team initiatives to improve detection and security, conducting internal threat landscape analysis, and finding innovative new ways to automate analysis. The associate in this role will also mentor and train associates to execute fusion analysis responsibilities.

General Responsibilities:

  • Support day-to-day cybersecurity threat detection and incident response operations through indicator pivoting, campaign analysis, and tactical intelligence

  • Identify and enhance processes where automation has the potential to improve efficiencies, provide actionable data, and facilitate collaboration across CSOC

  • Leverage Security Orchestration, Automation, and Response (SOAR) or Security Information and Event Management (SIEM) tools to identify threat patterns, enrich investigations, and build automation-supported workflows

  • Deconstruct multi-source reporting into actionable intelligence including Tactics, Techniques, and Procedures TTPs data objects, campaign analysis, and threat patterns.

  • Regularly analyze malware reports to track adversary behaviors and support the construction of a TTP repository

  • Develop expertise on the Capital One threat landscape using internal data, threat trends, and operational metrics to clearly communicate the Capital One threat landscape to senior executives, to include the Chief Information Security Officer and Chief Information Officer.

  • Proactively build and maintain relationships with partner teams, including but not limited to Cyber Intelligence, Red Team, Insider Threat, and Hunt teams.

  • Conduct time-sensitive analysis during cyber investigations, including active threat hunting, malware analysis, and campaign enrichment

  • Routinely identify gaps in detection and collaborate with teams across the Cyber organization to mitigate risk, including blocking of malicious indicators, tuning vendor signatures, and instrumenting custom detection rules

  • Support the tactical intelligence-to-detection pipeline, to include malware reverse engineering, TTP analysis, and association mapping in a TIP (threat intelligence platform) for future pivoting

  • Attend conferences and briefings to stay current on threats against both COF and the Financial Services sector

  • Mentor other CSOC analysts in project execution and tactical upskilling; conduct brown bag lunches to teach specialized skill sets

Basic Qualifications:

  • High School Diploma, GED or Equivalent Certification

  • At least 4 years of experience in cyber security or information technology

  • At least 3 years of experience working in a Security Operations Center (SOC)

  • At least 3 years of experience analyzing and tracking Advanced Persistent Threats (APT) groups

  • At least 3 years of experience conducting threat hunting

  • At least 3 years of experience conducting fusion intelligence analysis

  • At least 3 years of experience with Threat Intelligence Platforms (TIPs), Security Orchestration, Automation, Response (SOAR) or Security Information and Event Management (SIEM) tools

  • At least 1 year of malware analysis (static or dynamic) experience

  • At least 1 year of Tactics, Techniques, and Procedures (TTP) analysis experience


Preferred Qualifications:

  • Bachelor's Degree

  • Professional certifications (CompTIA Sec+, CISSP, CEH or SANs)

  • 3+ years of experience creating detection signatures for endpoint, network or cloud platforms

  • 3+ years of experience in a cloud environment (Amazon Web Services, Google Cloud Platform or Microsoft Azure)

  • 3+ years of experience in written and verbal briefings

  • 4+ years of experience with cyber threat intelligence analysis and tactical analysis

  • 3+ years of experience utilizing the MITRE ATT&CK framework, Diamond Model, or Cyber Kill Chain


At this time, Capital One will not sponsor a new applicant for employment authorization for this position.

The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked.

New York City (Hybrid On-Site): $165,100 - $188,500 for Prin Assoc, Cyber Technical

San Francisco, California (Hybrid On-Site): $174,900 - $199,700 for Prin Assoc, Cyber Technical

Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate?s offer letter.

This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan.

Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

This role is expected to accept applications for a minimum of 5 business days.

No agencies please. Capital One is an equal opportunity employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex (including pregnancy, childbirth or related medical conditions), race, color, age, national origin, religion, disability, genetic information, marital status, sexual orientation, gender identity, gender reassignment, citizenship, immigration status, protected veteran status, or any other basis prohibited under applicable federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City?s Fair Chance Act; Philadelphia?s Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.

For technical support or questions about Capital One's recruiting process, please send an email to

Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.

Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).

  • Cyber Security Engineer

    2 months ago

    Philadelphia, United States LevelUP HCS Full time

    The Cyber Red Team Operator will be responsible for the execution of Red Team assessments to improve the security posture of Level UP HCS. The Red Team Operator plans and executes Red/Purple Teaming events, Penetration Tests, Vulnerability Assessments, and Control Validations. This position will be required to effectively operate under Red Team...

  • Cyber Security Engineer

    2 months ago

    Philadelphia, United States LevelUP HCS Full time

    The Cyber Red Team Operator will be responsible for the execution of Red Team assessments to improve the security posture of Level UP HCS. The Red Team Operator plans and executes Red/Purple Teaming events, Penetration Tests, Vulnerability Assessments, and Control Validations. This position will be required to effectively operate under Red Team...

  • PRINCIPAL ASSOCIATE CYBER RISK

    3 weeks ago

    Philadelphia, United States Capital One Full time

    Center 1 (19052), United States of America, McLean, VirginiaPrincipal Associate Cyber Risk & Analysis, Technology Audit (Hybrid)Capital One?s Audit function is a dedicated group of professionals focused on delivering top-quality assurance services to the organization?s Audit Committee. Audit professionals are experienced, well-trained and credentialed, and...

  • High School Principal

    1 month ago

    Philadelphia, United States Esperanza Cyber Charter School Full time

    Job DescriptionJob DescriptionDescription:Esperanza Cyber Charter School (ECCS) is located in North Philadelphia. ECCS has a strong commitment to teacher/staff collaboration and support. ECCS is currently seeking mission-driven High School Principal applicants who align with ECCS’s mission and enthusiasm for equity for the 2023-2024 school year. The ideal...

  • Cyber Operations Specialist

    3 months ago

    Philadelphia, PA, United States United States Army Full time

    Job Overview: As a Cyber Operations Specialist, you’ll use your cyber security skills to defend the Army’s crucial and complex weapons systems, which include satellites, navigation, and aviation systems against both foreign and domestic cyber threats. You’ll respond to adversary attacks, while enabling commanders to gain an advantage in cyberspace by...

  • Security Operations Associate

    2 weeks ago

    Philadelphia, Pennsylvania, United States U.S. Security Care Full time

    Position Title: Security Operations Associate - Unarmed Job Type: Part-Time, Unarmed Compensation: $14 per hour Shift Availability: Weekdays, Evenings/Nights, Weekends, Overnight, Mornings, Afternoons Role Overview: The primary objective of this position is to maintain the safety and security of client assets while adhering to all applicable local, state,...

  • Cloud Security Engineer Manager

    5 days ago

    Philadelphia, United States Deloitte Full time

    Position Summary Are you passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte Technology US (DT - US). We are curious and life-long learners focused on technology and...

  • Information Systems Security Manager I

    2 weeks ago

    Philadelphia, United States Watershed Security Full time

    COMPANY OVERVIEW Watershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: "To inspire trust and respect with our customers...

  • Information Systems Security Manager I

    2 weeks ago

    Philadelphia, United States Watershed Security Full time $118,000 - $138,000

    Job DescriptionJob DescriptionCOMPANY OVERVIEWWatershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust...

  • Information Systems Security Specialist III

    2 weeks ago

    Philadelphia, United States Watershed Security Full time $110,000 - $124,000

    Job DescriptionJob DescriptionCOMPANY OVERVIEWWatershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust...

  • Information Systems Security Specialist III

    2 weeks ago

    Philadelphia, United States Watershed Security Full time $110,000 - $124,000

    Job DescriptionJob DescriptionCOMPANY OVERVIEWWatershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust...

  • Information Systems Security Specialist III

    1 month ago

    Philadelphia, United States Watershed Security Full time

    Job DescriptionJob DescriptionCOMPANY OVERVIEWWatershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust...

  • Information Systems Security Specialist III

    1 month ago

    Philadelphia, United States Watershed Security Full time

    Job DescriptionJob DescriptionCOMPANY OVERVIEWWatershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust...

  • Lead Security Architect

    2 weeks ago

    Philadelphia, Pennsylvania, United States Apex Systems Full time

    Apex Systems is seeking a highly skilled Principal Security Engineer to contribute to a leading academic health system. The ideal candidate will possess a strong architectural background, with experience in healthcare or government/military sectors, and hold CISSP or GSE certification.Position Overview:The Principal Security Engineer will play a crucial role...

  • Program Manager

    7 days ago

    Philadelphia, Pennsylvania, United States rockITdata Full time

    Job DescriptionrockITdata, a veteran, minority, and woman-owned small business certified by the NWBOC, is a full-service consulting provider that specializes in providing management and IT services. We help companies build efficiencies, decrease cost, and drive better outcomes. We achieve these goals by leveraging industry leading cloud based artificial...

  • Security Engineer

    4 weeks ago

    Philadelphia, United States Apex Systems Full time

    Apex Systems has an exciting Principle Security Engineer opportunity with our client, a major Philadelphia-based academic health system! Ideal candidates will have an architect background, healthcare or government/military experience, and be CISSP or GSE certified. If you or someone you know is interested in hearing more, please send all resumes to...

  • Security Engineer

    3 weeks ago

    Philadelphia, United States Apex Systems Full time

    Apex Systems has an exciting Principle Security Engineer opportunity with our client, a major Philadelphia-based academic health system! Ideal candidates will have an architect background, healthcare or government/military experience, and be CISSP or GSE certified. If you or someone you know is interested in hearing more, please send all resumes to...

  • Platform Cyber Technical Lead

    3 months ago

    Philadelphia, United States EHS TECHNOLOGIES CORPORATION Full time

    Job DescriptionJob DescriptionDescription:EHS Technologies, a cutting-edge IT, Cyber Security and Engineering Firm dedicated to solving the Department of Defense's most challenging problems is seeking Platform Cyber Technical Leads / Information Systems Security Mangers II to support the Naval Surface Warfare Center, Philadelphia Division (NSWCPD) Code...

  • Lead Security Architect

    2 weeks ago

    Philadelphia, Pennsylvania, United States Apex Systems Full time

    Apex Systems is seeking a highly skilled Principal Security Engineer to enhance the security posture of a leading academic health institution. The ideal candidate will possess a strong architectural background, with experience in healthcare or government sectors, and hold certifications such as CISSP or GSE.Key Responsibilities:Design and implement...

  • Cyber Risk Underwriter

    2 days ago

    Philadelphia, Pennsylvania, United States Chubb Full time

    About the RoleChubb is seeking a highly skilled Cyber Risk Underwriter to join our team. As a Cyber Risk Underwriter, you will be responsible for underwriting cyber new business opportunities for commercial clients with less than $100m of revenues.Key ResponsibilitiesAssess and Underwrite Cyber Submissions: Analyze applications, supporting documents, and...