Senior AppSec Engineer optimizing application security controls in Flutter's development ecosystem. Managing SAST/SCA tools and conducting vulnerability analyses in a hybrid work environment.
About the role
- Senior Lead Information Security Office Consultant at Capital One, consulting on initiatives to enhance Information Security. Collaborating with technology teams to manage cyber security risks and ensure data protection.
Responsibilities
- Act as a central Information Security point of contact for the Data Protection Service, Endpoint Security and Cyber Intelligence services
- Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
- Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
- Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
- Escalate and manage cyber security risk
- Provide ad hoc support on special Information Security hot topics for the business
- Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
- Work with line of business leadership to anticipate their objectives and needs to better serve the line of business
Requirements
- High School Diploma, GED or equivalent certification
- At least 6 years of experience working in cybersecurity or information technology
- At least 5 years of experience providing guidance and oversight of cybersecurity concepts
- At least 5 years of experience performing security risk assessments or security architecture reviews
- At least 5 years of experience with architecture, software design, networking, or cloud infrastructure
- At least 4 years of experience with cloud security engineering
- At least 4 years of experience in securing a public cloud environment
- Bachelor’s Degree (preferred)
- Experience building software utilizing public cloud (e.g. AWS, GCP, Azure)
- Familiarity with Cloud patch management practices such as system rehydration and image management
- Experience utilizing Agile methodologies
- Experience with Software Security Architecture
- Experience with Application Security
- Experience with Threat Modeling
- Experience with Penetration Testing or Vulnerability Management
- Experience with integrating SaaS products into an Enterprise Environment
- Experience with securing Container services
- Splunk-Fu / Enterprise Monitoring experience
- Financial services industry experience
- Professional certifications such as AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP)
- Experience in Offensive or Defensive Security techniques
- Experience in a regulated environment.
Benefits
- Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Stage QSE en sécurité pour réviser le Document Unique d’Évaluation des Risques Professionnels. Accompagnement du Responsable QSE sur divers projets structurants.
Senior Security Data Scientist developing innovative AI solutions for security challenges at Desjardins Group. Collaborating on data analysis and monitoring initiatives to enhance security posture.
Cybersecurity Manager leading corporate - level cybersecurity strategy in hybrid DoW and commercial sectors. Responsible for securing space systems and managing risk across various platforms.
Program Security Officer overseeing security operations for T2S Solutions supporting classified satellite and mission operations. Managing compliance with DoD and Intelligence Community security requirements, enabling effective operations.
On Call Security Officer ensuring campus safety at Whitman College by patrolling and managing emergency situations. Temporary role requiring flexibility for night and weekend shifts.
Senior Cyber Security Consultant at TechSeed focusing on tailored security strategies and risk management. Collaborating with clients to ensure security compliance and best practices in cyber security.
Cyber Security Engineer at TechSeed, working on security solutions within connected ecosystems in Göteborg. Collaborating with clients on secure development frameworks and practices.
Director of Cybersecurity leading Brixmor's comprehensive cybersecurity strategy and managing high - performing teams. Overseeing cyber risk management and compliance in real estate and retail sectors.
Security Specialist providing security assessments and maintaining physical security infrastructure for AES Clean Energy operations. Collaborating on cyber security initiatives and compliance.