ISO Consultant- Assurance

Company: Capital One
Location: Harrisonburg
Posted on: May 25, 2023

Job Description:

Chicago IL (81013), United States of America, Chicago, Illinois

ISO Consultant- Assurance

Capital One is one of the fastest growing organizations in the world today. The growth of the business is being accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. Cybersecurity Risk professionals at Capital One are trusted expert advisers who shape decisions, challenge activities to ensure they meet our standards, and generally oversee technology, cybersecurity, and information security risk across the business and the central technology organization.

Cybersecurity is a strategic priority at Capital One, with heavy engagement from the Board, the Chief Executive Officer, and the executive committee. By joining Capital One, you will be providing these executives with the trusted, independent voice they need to ensure our company's cybersecurity risks are appropriately managed. The position affords opportunities for substantial growth. The demands and high-visibility nature of this position require an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately.

Job Responsibilities:

• Ensure consistency and develop data-driven assurance practices that will facilitate deeper technical risk reviews in order support strategic decision-making for Cyber and Technology leadership
• Evaluate and standardize various risk sloping & scoring methods for a variety of tech/cyber domains and activities such as Vulnerability Management, Data Security, and Network Security across the enterprise
• Standardize the review of mitigating factors and controls in support of risk management activities so that technology and business teams can prioritize risk reduction activities in order to allow teams to focus on the areas of the greatest impact
• Work cross-functionally with Advisory, Assessment, and Risk Operations functions within the Information Security Office to measure cybersecurity and technology risk
• Work with the Information Security Office leadership team on senior leader initiatives
• Be knowledgeable about Capital One's Information Security offerings, policies, procedures and standards
• Collaborate effectively with colleagues, stakeholders, and leaders across multiple organizations to achieve strategic objectives.
• Excellent verbal and written communication skills across levels of leadership.
• Passion and expertise in cybersecurity, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions.
• Ability to manage and synthesize information into meaningful messages for both upstream (e.g., executive management) and downstream (e.g., Line of Business stakeholder) audiences. Basic Qualifications:
  • High School Diploma, GED or equivalent certification
  • At least 4 years of experience working in cybersecurity or information technology
  • At least 1 year of experience providing guidance and oversight of Security concepts
  • At least 1 year of experience performing security risk assessments and security architecture reviews Preferred Qualifications:
    • Bachelor's Degree
    • 2+ years of experience with architecture, software design, networking, and cloud infrastructure
    • Experience with deploying or leveraging NIST Cyber Security Framework best practices
    • Experience in securing a public cloud and/or building environment (e.g. AWS, GCP, Azure)
    • Experience building software utilizing public cloud (e.g. AWS, GCP, Azure)
    • Familiarity with Cloud patch management practices such as system rehydration and image management
    • Experience utilizing Agile methodologies
    • Experience with Software Security Architecture, Application Security Architecture, Threat Modeling, and/or Penetration Testing/Vulnerability Management
    • Experience with integrating SaaS products into an Enterprise Environment
    • Professional certifications such as AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP)
    • Experience in a regulated environment At this time, Capital One will not sponsor a new applicant for employment authorization for this position.
      
      Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.
      
      No agencies please. Capital One is an Equal Opportunity Employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex, race, color, age, national origin, religion, physical and mental disability, genetic information, marital status, sexual orientation, gender identity/assignment, citizenship, pregnancy or maternity, protected veteran status, or any other status prohibited by applicable national, federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.
      
      If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
      
      For technical support or questions about Capital One's recruiting process, please send an email to
      
      Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.
      
      Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
      
      

Keywords: Capital One, Harrisonburg , ISO Consultant- Assurance, Professions , Harrisonburg, Virginia