Apply on Employer Site

Capital One · 17 hours ago

Principal Associate, Cyber Risk & Analysis - Enterprise Services Risk

Richmond, VA

Full-time

Onsite

Senior Level, Lead/Staff

$131K/yr - $150K/yr

4+ years exp

Capital One is expanding its Enterprise Services Risk organization and is seeking a Principal Associate for Cyber Risk & Analysis. This role involves serving as a strategic advisor for the Cyber Identity and Access Management team, managing risks, and collaborating with various teams to ensure effective risk management practices.

BankingCredit CardsFinanceFinancial Services

Comp. & Benefits

No H1B

Responsibilities

Govern and support risk objects (risks, issues) throughout their lifecycle

Act as a trusted advisor, leading and driving effective risk conversations with IAM teams

Drive the identification and treatment of risks within IAM teams, inform decisions of IAM Accountable Executives

Lead, facilitate, and contribute to discussions to identify, assess, manage, and report key risk related issues

Operate a continuous improvement approach by reviewing and challenging IAM related risk objects

Be an approachable and effective partner in developing fit-for-purpose solutions, with the ability to flex where appropriate

Partner with our extended team of Risk Guides to remove complexity and improve efficiency

Deliver IAM risk advice, challenge, and support to our IAM stakeholders

Ensure key messages are understood and actions are underway, providing risk input, context, and challenge through appropriate and timely reporting and governance actions

Maintain an up-to-date and in-depth industry and technical expertise in relevant areas of risk

Qualification

Risk ManagementCyber Security Risk ManagementIAM ManagementRisk CertificationsProject ManagementAnalytical SkillsCommunication SkillsRelationship BuildingProblem-SolvingCollaboration Skills

Required

High School Diploma, GED or Equivalent Certification

At least 3 years of experience in Risk Management, Process Management, Project Management, or a combination of these

At least 3 years of experience supporting, partnering, and interacting with internal or external business clients

Preferred

Bachelor's Degree or Military Experience

At least 4 years of experience in risk management or cyber risk management

At least 5 years of experience in project, program, or portfolio management

At least 1 year of Financial Services industry experience

Risk Certifications (CRISC, CISM, CRCM, CIPP, ABA Risk Management Certification)

Experience in Cyber Security Risk Management

Experience in operational IAM management and governance

Holds one or more of the following certifications: any security, technology, risk, project management, and/or audit certifications (e.g., CompTIA Security+, CompTIA Tech+, CompTIA Network+, CompTIA A+, CompTIA Project+, Systems Security Certified Practitioner (SSCP), Certified Associate in Project Management (CAPM), ISACA Certified in Risk and Information Systems Control (CRISC), ISACA IT Audit Fundamentals Certificate, technology vendor certifications (e.g., AWS, Microsoft, Google))

Ability to navigate a complex, dynamic organization and prioritize deliverables in an multi-national, expanding business environment

Excellent problem-solving, analytical and critical thinking skills to effectively respond to shifting priorities, demands and timelines

Prioritize and execute tasks and coordinate with cross-functional teams

Strong communication and relationship building skills, customer focus, and ability to collaborate and influence across teams to deliver

Experience with the three lines of defense model and risk reporting