Cyber Risk Consultants
2 weeks ago
We are seeking an experienced and analytical Cyber Risk Consultant to help enterprise clients assess, manage, and mitigate cybersecurity risks. This role focuses on developing and implementing enterprise-wide risk management frameworks, ensuring compliance with regulatory standards, and improving overall security posture.
Key Responsibilities:
- Conduct enterprise-level cyber risk assessments and maturity evaluations.
- Identify and analyze security risks to critical assets, systems, and data across IT and OT environments.
- Develop and implement cyber risk management frameworks aligned with industry standards (e.g., NIST CSF, ISO 27001, CIS Controls).
- Provide guidance on regulatory compliance (e.g., GDPR, HIPAA, SOX, PCI-DSS, CCPA) and industry-specific requirements.
- Create and maintain risk registers, control matrices, and risk treatment plans.
- Facilitate risk workshops and collaborate with stakeholders across security, IT, legal, and compliance teams.
- Deliver executive-level reports and recommendations on risk mitigation strategies and security program enhancements.
- Support internal and external audit processes, control testing, and third-party risk assessments.
- Bachelor's degree in Cybersecurity, Information Systems, Risk Management, or related field.
- 3+ years of experience in cybersecurity risk management or compliance consulting roles.
- Strong understanding of cyber risk methodologies, threat modeling, and enterprise risk frameworks.
- Experience with GRC tools (e.g., Archer, OneTrust, ServiceNow GRC, MetricStream).
- Working knowledge of regulatory and standards frameworks: NIST, ISO, CIS, COBIT, GDPR, HIPAA, SOX, etc.
- Ability to communicate complex risk issues to technical and non-technical audiences, including C-suite stakeholders.
- Professional certifications such as CRISC, CISA, CISSP, CISM, or ISO 27001 Lead Implementer/Auditor.
- Experience in large enterprise or consulting environments.
- Familiarity with cloud risk management (AWS, Azure, GCP).
- Strong analytical and critical thinking abilities.
- Excellent written and verbal communication.
- Ability to work independently and collaboratively in cross-functional teams.
- High level of integrity and professional ethics.
-
Associate, Cyber Risk
2 weeks ago
Richmond, VA, United States Capital One Full timeAssociate, Cyber Risk & Analysis - Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business...
-
Associate, Cyber Risk
6 hours ago
Richmond, VA, United States Capital One Full timeAssociate, Cyber Risk & Analysis - Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies....
-
Cyber Risk
2 days ago
Richmond, VA, United States Capital One Full timeCyber Risk & Analysis Manager Capital One is seeking an energetic, self-motivated Cyber Risk & Analysis Manager with experience evaluating and analyzing technology and cybersecurity risks and managing cyber related Third Party monitoring and governance processes who is interested in becoming part of our Cyber team. As a Cyber Risk & Analysis Manager you...
-
Cyber Risk
1 week ago
Richmond, VA, United States Capital One Full timeCyber Risk & Analysis Manager Capital One is seeking an energetic, self-motivated Cyber Risk & Analysis Manager with experience evaluating and analyzing technology and cybersecurity risks and managing cyber related Third Party monitoring and governance processes who is interested in becoming part of our Cyber team. As a Cyber Risk & Analysis Manager you...
-
Senior Manager, Cyber Risk
2 weeks ago
Richmond, VA, United States Capital One Full timeSenior Manager, Cyber Risk & Analysis - Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business...
-
Senior Manager, Cyber Risk
1 week ago
Richmond, VA, United States Capital One Full timeSenior Manager, Cyber Risk & Analysis - Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business...
-
Senior Manager, Cyber Risk
2 weeks ago
Richmond, VA, United States Capital One Full timeSenior Manager, Cyber Risk & Analysis - Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business...
-
Senior Manager, Cyber Risk
1 week ago
Richmond, VA, United States Capital One Full timeSenior Manager, Cyber Risk & Analysis - Enterprise Services Risk The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business...
-
Audit Manager- Cyber, Risk
4 days ago
Richmond, VA, United States Capital One Full timeAudit Manager- Cyber, Risk & Analysis (Hybrid) Capital One's Audit function is a dedicated group of professionals focused on delivering top-quality assurance services to the organization's Audit Committee. Audit professionals are experienced, well-trained and credentialed, and operate within a collaborative, agile environment to deliver value-added opinions...
-
Richmond, VA, United States Capital One Full timeManager, Business Risk Guide- Enterprise Services Risk Office We are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, Global Enterprise Affairs, eData, Global Workplace Solutions, Emerging...
