Capital One Financial Services (FS) Technology's Risk Operations and Controls (ROC) group is seeking an energetic, self-motivated Technology Risk Management professional (Manager level) who is interested in becoming part of our team.
FS Tech's Risk Operations and Controls group is a first line of defense, supporting risk management within the Bank's Financial Services Technology division. The function is responsible for managing all facets of risk for the division through partnership with its technology stakeholders. As a member of the FS Tech Risk Operations and Controls team, the candidate will work horizontally across Financial Services tech with multiple functions to inventory, evaluate, prioritize, mitigate and report on risk within the division. The candidate will focus on reviews of critical technology functions including cloud-based technology, emerging technology, and cybersecurity risks. The candidate will have a high level of exposure across lines of business and have the opportunity to create and implement innovative solutions to appropriately mitigate risks within the Financial Services Technology organization.
Contribute to the evaluation of and improvement of the risk and control environment for the Financial Services Technology organization
Understand regulatory requirements and anticipate changes to help ensure proper alignment with internal requirements and frameworks
Plan, design, manage and execute project plans to ensure delivery of key risk management initiatives, bringing the ability to quickly put structure in place to manage the work. Leverage problem solving skills to ensure project plans deliver on intent.
Proactively identify and remediate risks, issues, and dependencies, escalating where necessary.
Consult and partner with the Business Risk Office to understand complex problems and focus on bringing issues to resolution, influencing and escalating as necessary to meet timelines. Includes clarifying and defining transformation requirements / scope for cross-functional problems.
Support and serve in an advisory role for FS Technology Audits and Integrated Business Audits / Exams with Technology components.
Support the identification and inclusion of key technology initiatives to the Material Tech and Cyber Change (MTC) / Targeted Risk Assessment (TRA) Process
Support risk assessments and related activities (Process Level Assessments, Risk and Control Self-Assessments, etc.), including providing effective challenge to initial proposals by ES Risk.
Conduct independent research and analysis to solve ambiguous problems in a autonomous environment
Demonstrate outstanding communication and partnership skills which are essential for interacting and communicating with key stakeholders across all levels to manage, inform, and influence outcomes.
Analyze data to proactively identify risks and trends and prepare reporting for Executive Leadership
Understand the broader context and implications (e.g., financial, legal, reputational, etc.) of the various types of risk affecting the technology function
The Successful Candidate Will:
Demonstrate strong communications proficiency, including across teams and organizations, and have experience utilizing oral and written communication skills along with presentation skills
Have the ability to multitask with simultaneous projects and tasks, while demonstrating urgency, prioritization, and ownership to drive issues to completion
Possess excellent organizational skills and the ability to be goal/execution-oriented
Be able to react seamlessly to change in priorities and delivery focus
Be capable of balancing strategy and tactical delivery
Execute a strategic approach to all things especially process and operations
Act as a thought partner to leadership
At least 6 years experience in Technology Risk, IT Internal or External Audit, or Risk Consulting
At least 5 years of experience planning, managing and executing project plans to drive IT audits, risk assessments, gap analysis work
At least 4 years of experience performing data analysis in support of internal risk assessments and control reviews
Professional certification such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or related certifications
7+ years experience in Technology Risk, IT Internal or External Audit, or Risk Consulting
6+ years of experience planning, managing and executing project plans to drive IT audits, risk assessments, gap analysis work
5+ years experience performing data analysis in support of internal risk assessments and control reviews
Experience in Banking or Financial Services
Consulting experience with a Big 4 firm is a plus
At this time, Capital One will not sponsor a new applicant for employment authorization for this position.
Capital One is open to hiring a Remote Employee for this opportunity.
The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked.Location is New York City- $142,979 and $168,683 for Risk ManagerLocation is Colorado- $133,278 and $157,238 for Risk Manager
Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter.No agencies please. Capital One is an Equal Opportunity Employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex, race, color, age, national origin, religion, physical and mental disability, genetic information, marital status, sexual orientation, gender identity/assignment, citizenship, pregnancy or maternity, protected veteran status, or any other status prohibited by applicable national, federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.
If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
For technical support or questions about Capital One's recruiting process, please send an email to
Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.
Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).