Senior Director responsible for customer - facing security representation, leading technical discussions, and ensuring security architecture confidence within the company.
About the role
- Director of Information Security leading security and risk management for Capital One. Collaborating across teams to enhance cybersecurity strategies and protect technology platforms.
Responsibilities
- Be a leader at a premiere technology and financial services company
- Build cybersecurity strategy tailored for the line of business, partnering closely with business leaders, the Divisional CIO, and cybersecurity leaders across the company.
- Lead a team of Product Security advisory professionals, responsible for Divisional cyber strategy integration and execution, identification and management of risk for top business initiatives and technology platforms, threat and vulnerability management, incident management, supply chain cyber risk management, cyber risk oversight and reporting.
- Deliver Cyber agenda and integration of Information Security within business objectives for line of business area
- Serve as the central point of contact for your line of business technology executives into Capital One’s Cyber risk management priorities
- Educate and influence executive leadership and associates to effectively leverage security capabilities and solutions to mitigate risks and emerging threats
- Provide security expertise on prioritizing and managing information security risks and initiatives
- Escalate and manage cyber security risk
- Provide regular updates to executive leadership with your line of business on the overall information security health and risk environment
- Work with business leadership to anticipate their objectives and needs to better serve them
- Plays a key leadership role within Cyber’s community of leaders, drive innovation activity as an outcome; partner extensively with other Cyber and Technology organizations to derive solutions enabling industry leading products
- Build relationships and influence with risk management functions across lines of defense
- Become knowledgeable and advise on Capital One’s Cyber’s services, policies, procedures and standards
- Staying current on the changing regulatory environment and understanding the impacts to the organization
- Recruits, develops, and retains top talent, and uses excellent people leadership skills.
Requirements
- Bachelor's degree
- At least 7 years of experience in Information Security
- At least 5 years of experience in people management
- At least 5 years of experience with cyber policies, standards, and procedures
- At least 5 years of experience in securing public cloud environments and services (AWS, GCP, Azure)
- Masters degree or PhD in Computer Science, Information Systems, or Engineering
- 10+ years experience in information technology and cybersecurity
- 7+ years experience in leading applications security, vulnerability management and incident response
- 7+ years experience performing security risk assessments
- 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS)
- Industry-recognized professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), AWS Certified Solutions Architect, Certified Information Security Manager (CISM)
Benefits
- Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Manager overseeing InfoSec program initiatives for organizational cybersecurity. Driving execution and collaboration with engineering and external vendors in a complex environment.
Senior RACF Security Administrator at Elevance Health ensuring Mainframe security through engineering, trouble resolution, and implementing security strategies.
Internship in Cyber Technology & Transformation at Almond, focusing on cybersecurity roadmap and methodologies. Collaborate with experts to enhance client cybersecurity practices.
OT Cyber Security Consultant securing operational technology environments with a focus on ICS and SCADA networks. Developing cybersecurity strategies and collaborating with clients across various sectors.
Chief Information Security Officer responsible for developing and governing the Bank's enterprise - wide Information Security Program. Overseeing cybersecurity risk management and ensuring regulatory compliance for sensitive financial data.
Manufacturing Security Specialist delivering security strategies and best practices across manufacturing facilities. Assisting with operations, investigations, and emergency response support.
Manufacturing Security Specialist responsible for security operations in Ford Motor Company's manufacturing facilities. Ensuring compliance with security protocols and assisting with emergency response initiatives.
Manufacturing Security Specialist delivering security strategy and best practices across Ford manufacturing facilities. Requires strong background in security, flexibility in schedule, and collaboration with teams.
Scheduler managing complex construction schedules for mission - critical projects in the UK Defence & Security Sector. Involves assessing project progress and developing recovery plans for time and cost.