Director, Cyber Risk and Analysis

4 weeks ago


New York, New York, United States Capital One Full time
Job Description

Capital One is seeking a highly skilled Cyber Risk Director, Technology and Product to join our team. As a key member of our Technology and Product Risk Office, you will play a critical role in applying your risk management, cyber, and technical expertise to the company's Technology organization.

Key Responsibilities:

  • Partner with Enterprise Services, Divisional CIOs, and Information Security teams to develop and support best-in-class industry risk solutions.
  • Collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization.
  • Provide direct tech risk advisory services into our first line Tech organization, supporting our continuous integration and continuous delivery (CI/CD) ecosystem, DevOps processes, and SDLC framework.
  • Drive organizational and strategic change through risk identification, measurement, analysis, and reporting.

Requirements:

  • Bachelor's Degree or military experience.
  • At least 8 years of experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination.
  • At least 8 years of experience planning and leading IT audits or risk assessments.
  • At least 5 years of People Management experience.
  • At least 5 years of experience in data management and performing data analysis in support of cybersecurity assessments and control design in a cloud environment (preferably AWS).

Preferred Qualifications:

  • 12 years of experience in Cybersecurity, Technology, or Cyber Internal or External Audit, or a combination.
  • Cybersecurity, technology risk, and technology specific certifications such as Certified Information Systems Security Professional (CISSP), AWS Security certification, Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), AWS DevOps certification.
  • 10 years of experience in performing Control Self Assessments (CSAs), or completing assessments against established industry risk frameworks, including the NIST Cybersecurity Framework.
  • 10 years of experience performing data analysis in support of internal risk assessments and control reviews.
  • 8 years of CI/CD, DevOps, SDLC framework experience.
  • 3 years of Financial Services industry experience.
  • Excellent verbal presentation and written communication skills to confidently interact with the cyber organization and enterprise stakeholders.
  • Excellent problem-solving, analytical, and critical thinking skills to effectively respond to shifting priorities, demands, and timelines.

Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.



  • New York, New York, United States Ankura Full time

    About AnkuraAnkura is a global expert services firm that excels in innovation and growth. Our team of specialists is dedicated to delivering tailored solutions to clients facing complex challenges.Job DescriptionAs a Director of Risk and Forensics, you will play a crucial role in supporting Ankura's Risk, Forensics & Compliance practice. This practice...


  • New York, New York, United States GEICO Full time

    Job Summary:We are seeking a highly skilled Cyber Attorney Director to join our team at GEICO. This role will be responsible for providing legal advice and support with respect to global and state cyber and insurance laws and regulations, including breach response.Key Responsibilities:Provide legal advice and support with respect to global and state cyber...


  • New York, New York, United States Relm Insurance Full time

    Job OverviewRelm Insurance is seeking a highly skilled Senior Underwriter to join our Cyber team. This role offers an exceptional opportunity for a goal-driven, innovative, and creative individual to contribute to the building of a high-growth portfolio.Key Responsibilities:Underwrite, price, and negotiate complex and emerging Cyber risks to ensure...


  • New York, New York, United States Sumitomo Mitsui Banking Corporation Full time

    Cyber Resilience and Operational Risk ManagerAt Sumitomo Mitsui Banking Corporation, we are seeking a highly skilled and experienced Cyber Resilience and Operational Risk Manager to join our team. As a key member of our Cyber and Operational Resilience Program, you will be responsible for leading our efforts in ensuring the bank's operational readiness and...


  • New York, New York, United States At-Bay Full time

    About At-BayAt-Bay is a pioneering insurance provider that leverages cutting-edge technology to protect businesses from complex risks. Our mission is to build the next generation of insurance, combining innovative technology with industry-leading expertise to safeguard close to 40,000 businesses from Cyber, Tech E&O, and Miscellaneous Professional Liability...


  • New York, New York, United States Sumitomo Mitsui Banking Corporation Full time

    Cyber Operations SpecialistWe are seeking a highly skilled Cyber Operations Specialist to join our team at Sumitomo Mitsui Banking Corporation. As a key member of our Cyber Resilience team, you will be responsible for leading our efforts in ensuring the bank's operational readiness and resilience against cyber threats and incidents.Key...


  • New York, New York, United States Sumitomo Mitsui Financial Group, Inc. Full time

    Cyber Resilience LeadWe are seeking a highly skilled Cyber Resilience Lead to join our team at Sumitomo Mitsui Financial Group, Inc. The ideal candidate will have extensive experience in global business resilience, cyber security remediation management, and cyber resilience risk and controls management.Key Responsibilities:Manage a team responsible for cyber...


  • New York, New York, United States Syntricate Technologies Full time

    Job Description:At Syntricate Technologies, we are seeking a highly skilled Senior Director of Internal Risk Management to lead our internal risk management efforts. This role is crucial for ensuring the security and integrity of our internal systems, safeguarding critical data, and ensuring regulatory compliance.Key Responsibilities:Develop and implement a...


  • New York, New York, United States Sumitomo Mitsui Financial Group, Inc. Full time

    Job Title: Cyber Security EngineerSumitomo Mitsui Financial Group, Inc. is seeking a highly skilled Cyber Security Engineer to join our team. As a Cyber Security Engineer, you will be responsible for executing within our Cyber Resilience Exercise program designed to increase cyber resilience capabilities and preparedness across various businesses, group...


  • New York, New York, United States Sumitomo Mitsui Financial Group, Inc. Full time

    Job SummaryWe are seeking a highly skilled Cyber Security Specialist to join our team at Sumitomo Mitsui Financial Group, Inc. The ideal candidate will have a strong background in security testing and a passion for staying up-to-date with the latest threats and technologies.Key ResponsibilitiesAnalyze IT infrastructure, systems, and applications for...


  • New York, New York, United States Sumitomo Mitsui Financial Group, Inc. Full time

    Job SummaryThe Security Testing Engineer will be responsible for executing within our Cyber Resilience Exercise program designed to increase cyber resilience capabilities and preparedness across various businesses, group companies, and functions of the bank. This role will support partnerships for exercises such as cyber scenario exercising and cyber...


  • New York, New York, United States Consolidated Edison Company of New York, Inc. Full time

    Cyber Security Analyst Job DescriptionThe Cyber Security Analyst will be responsible for protecting the company's computer systems and networks from cyber threats, ensuring the security of our data and digital assets.This role will involve designing, installing, monitoring IT computing infrastructure, providing timely response and troubleshooting alerts...


  • New York, New York, United States Peer Consulting Resources Inc. Full time

    About the Role:We are seeking a highly skilled Cyber Security Threat Analyst to join our team at Peer Consulting Resources Inc. as a Senior Cyber Security Threat Intelligence Specialist. The ideal candidate will have a strong understanding of cybersecurity and risk management concepts, with a minimum of 8 years of experience in Threat Management/Cyber Threat...


  • New York, New York, United States Bell Soft LLC Full time

    Job Title: Cyber Security GRC Specialist with Vendor Risk Assessment ExpertiseJob Description:We are seeking a highly skilled Cyber Security GRC Specialist with expertise in Vendor Risk Assessment to join our team at Bell Soft LLC.Key Responsibilities:* Ensure vendor security architecture and design meets firm policies, external guidelines, and regulatory...


  • New York, New York, United States Consolidated Edison Inc Full time

    Job DescriptionThe Sr. System Cyber Analyst is responsible for protecting our organization's computer systems and networks from cyber threats, ensuring the security of our data and digital assets.The Sr. Analyst will design, install, monitor IT computing infrastructure, provide timely response and troubleshoot alerts generated by various security tools.The...


  • New York, New York, United States TherapyNotes Full time

    About TherapyNotesTherapyNotes is a leading provider of behavioral health Practice Management and EHR software. Our cutting-edge SaaS solution handles scheduling, billing, documenting, telehealth, and more, allowing clinicians to focus on patient care.Our TeamWe're a dynamic team of professionals who love to innovate and push the envelope, keeping our...


  • New York, New York, United States SAIC Full time

    Job SummarySAIC is seeking highly skilled Cyber Engineers to support the Space Development Agency (SDA) Advanced Fire Control Ground Infrastructure (AFCGI) program. This position requires an active TS/SCI security clearance and is a hybrid remote role with occasional work at local SAIC sites and travel to customer sites.Key Responsibilities Apply engineering...


  • New York, New York, United States QBE Insurance Group Limited Full time

    Cyber Services ManagerWe are seeking a highly skilled Cyber Services Manager to join our team at QBE Insurance Group Limited. As a key member of our organization, you will be responsible for managing strategic vendor relationships, developing cybersecurity capabilities, and delivering high-quality cyber services to policyholders.Key Responsibilities:Assist...


  • New York, New York, United States Capital One Careers Full time

    Job DescriptionCapital One is seeking a highly skilled Cyber Risk and Technology Strategist to join our team. As a key member of our Technology and Product Risk Office, you will play a critical role in developing and implementing best-in-class industry risk solutions that support innovation and protect our customers, shareholders, and associates.Key...

  • Risk Management Lead

    4 weeks ago


    New York, New York, United States MasterCard Full time

    We strive to create a digital economy that is inclusive, secure, and accessible to everyone, everywhere. Our goal is to make transactions safe, simple, and smart.Using secure data and networks, partnerships, and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.We...