Principal Associate, Cyber Controls Governance & Testing Support

As a Principal Associate in Capital Ones Cyber Governance & Risk organization you will have the chance to oversee control development enhancement execution testing and ensuring controls meet quality standards. You will work on a team of control governance associates to ensure Capital One Cyber controls adequately meet Enterprise requirements mitigate risk maintain audit readiness and aid in meeting business objectives. You will partner with cross functional teams to develop and support internal Cyber controls that support innovation and protect our customers shareholders and associates.

You are a Controls Governance subject matter expert. A critical component of this role is the enhancement of our Cyber control environment for which the Controls Governance & Testing Support team is responsible. The Associate must be able to operate within a highly collaborative team environment. The work we participate in has a high level of exposure across the Cyber organization along with other divisional First Line and Second Line risk partners. Proficiency in the lifecycle of technology controls and an understanding of the Capital One Risk Management Framework are important for success in this role.

General Responsibilities:

• Collaborate with control owners to ensure they are maintaining controls that are designed and operating effectively

• Prepare Accountable Executive Designees and Control Owners for upcoming controls testing

• Assess control evidence to ensure completeness and accuracy quality and overall value

• Build successful relationships across the enterprise to understand the impact of how Cyber controls mitigate risk

• Contribute to a small team of cyber internal control professionals to document guidance and teach control owners best practices

• Work with control subject matter experts to ensure that risks and regulatory requirements are appropriately mapped to Cyber controls

• Assist control performing teams with controls testing and validation

• Communicate control gaps and deficiencies risk exposures and changes to the risk profile to senior management

• Actively seek and report on opportunities to strengthen processes via automation

• Enable a strong culture of controls management thats adaptable to a changing environment

• Influence risk stakeholders through an active and collaborative environment. Advocate and influence outcomes with Lines of Defense teams

• Establish and maintain strong working relationships with key partners across the Enterprise and within Cyber

Basic Qualifications:

• High School Diploma GED or equivalent certification

• At least 3 years of experience in risk management or internal controls

• At least 1 year of experience in project management

Preferred Qualifications:

• Bachelors Degree

• 4 years of experience in governance or risk management

• 3 years of experience in cybersecurity

• 3 years of experience interacting with internal audit or regulatory agencies

• 3 years of experience with cloud environments

• 2 years of experience in an agile or scrum environment

• 1 years of experience with Jira and Confluence

• Security CISSP CEH CCSP or AWS Certification

At this time Capital One will not sponsor a new applicant for employment authorization or offer any immigration related support for this position (i.e. H1B F-1 OPT F-1 STEM OPT F-1 CPT J-1 TN E-2 E-3 L-1 and O-1 or any EADs or other forms of work authorization that require immigration support from an employer).

The minimum and maximum full-time annual salaries for this role are listed below by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked.

Candidates hired to work in other locations will be subject to the pay range associated with that location and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidates offer letter.

Capital One offers a comprehensive competitive and inclusive set of health financial and other benefits that support your total well-being. Learn more at theCapital One Careers website. Eligibility varies based on full or part-time status exempt or non-exempt status and management level.

If you have visited our website in search of information on employment opportunities or to apply for a position and you require an accommodation please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.

For technical support or questions about Capital Ones recruiting process please send an email to

Capital One does not provide endorse nor guarantee and is not liable for third-party products services educational tools or other information available through this site.

Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).