Simplify Logo

Full-Time

Senior Associate

Technology & Cyber Risk, Capital One Software, Remote

Confirmed live in the last 24 hours

Capital One

Capital One

10,001+ employees

Offers diverse financial products and services

Financial Services
Fintech

Compensation Overview

$117.4k - $134kAnnually

+ Performance-based incentive compensation + Cash bonuses + Long-term incentives

Junior, Mid

Remote in USA + 1 more

More locations: McLean, VA, USA

Remote position with an office in McLean, VA.

Category
Cybersecurity
IT & Security
Required Skills
Management
Requirements
  • At least 1 year of experience developing risks, associated controls, issues or mitigation plans
  • At least 1 year performing controls testing in a cloud environment
  • At least 1 year experience in Technology Risk or IT Audit
  • At least 1 year of experience planning, analyzing and leading Risk assessments
  • At least 1 year of Project Management experience
Responsibilities
  • Be a trusted advisor both leading and driving effective and relevant Tech and Cyber risk conversations with Divisional Tech leadership and their teams
  • Be an informed consultant to develop and deliver appropriate messages on risk themes and challenge remediation activities
  • Be an approachable and effective partner to navigate regulatory and compliance requirements to help develop fit for purpose solutions with the ability to flex where appropriate
  • Consult, establish best practices, be a Contributor, provide oversight, effective challenge and influence positive outcomes supporting the Platform security and tech risk strategy for Capital One Software to ensure our businesses effectively manage technical risk
  • Identify and implement continual program enhancements based on industry standards and best practices related to technology risk management that is aligned with Capital One’s strategic risk direction and in support of Capital One Software’s business objectives
  • Understand regulatory requirements, SaaS and COTS offerings for both B2B and B2C markets, industry compliance frameworks; while anticipating changes to help ensure proper alignment with internal and external requirements
  • Collaborate with cross-functional teams to address complex and changing regulations that impact cloud services
  • Understand the broader context and implications (e.g., financial, legal, reputational, etc.) of the various types of risk affecting the technology function
  • Understand, document and analyze current state capabilities regarding one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework
  • Establish project parameters, delivering on multiple priorities to help drive business value and support team objectives
  • Review organizational performance outcomes to identify potential areas of risk exposure that require further review with the ability to review and analyze vast amounts of data and information while working closely with first line business partners
  • Assist in the development of risks, associated controls, issues and/or mitigation plans to ensure the business implements needed changes and addresses areas of exposure; while, informing decisions with the Accountable Tech Executives (AEs)
  • Contribute to Control Self Assessments (CSAs) to verify the design and operating effectiveness of existing controls as well as identify and track control gaps or issues to remediation
  • Deliver technology risk and controls advice, challenge and support to stakeholders
  • Identify and introduce innovative approaches to monitoring the technology control environment
  • Partner with Divisional and Enterprise wide Risk Associates to remove complexity and improve efficiency
  • Maintain an up-to-date and in-depth industry and technical expertise in areas of technology risk
  • Guide Technology areas to ensure aggregate risk is understood and well managed
  • Ensure key messages are understood and actions are underway, provide risk input, context and challenge through appropriate and timely reporting and governance actions.
  • Build successful relationships with line of business risk offices and team members to understand impact of technology risk on critical business processes
  • Support Risk Control and Self Assessments (RCSAs)
  • Experience with Vulnerability Management, Application security, Supply Chain Security and Identity & Access Management is a plus
  • Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aides. Draft, contribute to, edit, and deliver presentations that aid in the design, development, refinement, and usage of risk methods.

Capital One provides a variety of financial services aimed at making banking accessible and easy for everyone. The company offers products such as credit cards, savings accounts, car loans, and business checking accounts, catering to both individual consumers and small businesses primarily in the United States. Capital One's approach includes user-friendly banking solutions with no fees or minimums for checking accounts, allowing customers to manage their finances more effectively. They generate revenue through interest on loans, credit card fees, and investment banking services. What sets Capital One apart from its competitors is its strong commitment to financial inclusion and literacy, demonstrated through community partnerships and educational initiatives, such as collaborations with Khan Academy. The company's goal is to create a more inclusive financial system while providing comprehensive support and resources to help customers make informed financial decisions.

Company Stage

Series A

Total Funding

$15.9M

Headquarters

McLean, Virginia

Founded

2014

Simplify Jobs

Simplify's Take

What believers are saying

  • Capital One's extensive range of financial products and services provides ample opportunities for career growth and specialization.
  • The company's commitment to financial inclusion and literacy offers employees a chance to make a meaningful impact on communities.
  • Strategic partnerships and investments, such as those with Stripe, Adyen, and StrongDM, indicate a forward-thinking approach and potential for innovation.

What critics are saying

  • The competitive financial services landscape requires Capital One to continuously innovate to maintain its market position.
  • The end of the consumer card partnership with Walmart could impact customer acquisition and revenue streams.

What makes Capital One unique

  • Capital One's focus on financial inclusion and no-fee banking solutions sets it apart from traditional banks that often have more restrictive fee structures.
  • Their strategic partnerships with fintech giants like Stripe and Adyen for fraud prevention highlight their commitment to leveraging technology for enhanced security.
  • Capital One's collaboration with educational platforms like Khan Academy underscores their dedication to financial literacy, a unique value proposition in the financial services sector.

Benefits

Medical, Dental, & Vision coverage

Onsite Health Centers

Prescription saving with network of local pharmacies

Stock Purchase Plan

Education Assistance

401(k)

Flexible Spending Accounts

Life and Disability insurance

Generous paid time off + corporate & floating holidays

Registered dieticians on site, cooking classes and free virtual fitness classes

Employee Assistance Program