Montgomery & Associates (M&A) is seeking a GIS & Data Specialist to join our growing team at our Tucson, Arizona, headquarters. This position will provide general, entry-level technical support to hydrologic projects, as well as assist with GIS data production and project deliverables including data compilation, data management and editing, data analysis, quality assurance, and cartographic services, which will be a priority. The GIS & Data Specialist 1 will also be part of an active team responsible for the implementation of web-based data applications and database management related to the company's custom data management system. This position is intended to be full-time, with flexibility that may allow for a reduced work week. We encourage you to apply if you have experience with ESRI's ArcGIS software products-including ArcGIS Pro-and online mapping and data collection applications. We're looking for a self-motivated professional capable of implementing existing cartographic styles, data management schemas, and workflows, as well as developing new solutions independently as needed to meet project needs. Responsibilities Specific responsibilities include: Develop report-quality maps in ArcGIS Pro and other data plots, using company style guidelines Create and manage geospatial datasets, geodatabases, and relational databases Coordinate with project teams regarding GIS requirements and deliverables Conduct geospatial data analysis for projects Provide support for M&A's custom data management system, including data entry and data management for projects Support mobile data collection activities using Esri field applications (Field Maps, Survey123) Create and maintain web-based maps and applications using ArcGIS Online and customized applications Use artistic judgment to select appropriate design and layout for each illustration Perform other related duties as assigned Qualifications Ability to render illustrations for client-facing deliverables Ability to accurately and consistently complete work on schedule and with minimal supervision Ability to communicate and function in a fast paced, team-oriented environment Sufficient understanding of science to successfully create illustrations related to groundwater hydrology Excellent interpersonal and organizational skills Good analytical and problem-solving skills Academic degree in GIS, computer science, or related discipline Fundamental knowledge of the principles, methods, and practical application of ESRI's ArcGIS software-including ArcGIS Pro-general geoprocessing functionality, geodatabases, and coordinate systems Good practical understanding of data management in relational and geospatial databases At M&A, our mission is to promote a fulfilling and respectful work culture where employees collaborate to deliver pragmatic water resource solutions grounded in the principles of integrity, scientific rigor, and environmental responsibility. We are independently owned by practicing scientists who are committed to these values and to supporting our community partners. Benefits include: Competitive benefits and salary in an expanding team-oriented company Dynamic work environment with technical training provided by the company Challenging and collaborative multidisciplinary projects On the job mentoring by senior professionals Medical, dental, vision insurance, flexible Spending Account, HRA Long- and short-term disability Life/AD&D insurance Vacation, holiday, personal, and sick leave Paid parental leave Employer matching 401k retirement plan We are an Equal Opportunity Employer. M&A values diversity and inclusivity. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, sex, gender, gender identity, gender expression, age, sexual orientation, religious creed, physical or mental disability, medical condition, genetic information, marital status, veteran status, or any other classification protected by applicable federal, state, or local law. PI86f5a8-c143e31-5e48-4549-b2d185386
06/23/2026
Full time
Montgomery & Associates (M&A) is seeking a GIS & Data Specialist to join our growing team at our Tucson, Arizona, headquarters. This position will provide general, entry-level technical support to hydrologic projects, as well as assist with GIS data production and project deliverables including data compilation, data management and editing, data analysis, quality assurance, and cartographic services, which will be a priority. The GIS & Data Specialist 1 will also be part of an active team responsible for the implementation of web-based data applications and database management related to the company's custom data management system. This position is intended to be full-time, with flexibility that may allow for a reduced work week. We encourage you to apply if you have experience with ESRI's ArcGIS software products-including ArcGIS Pro-and online mapping and data collection applications. We're looking for a self-motivated professional capable of implementing existing cartographic styles, data management schemas, and workflows, as well as developing new solutions independently as needed to meet project needs. Responsibilities Specific responsibilities include: Develop report-quality maps in ArcGIS Pro and other data plots, using company style guidelines Create and manage geospatial datasets, geodatabases, and relational databases Coordinate with project teams regarding GIS requirements and deliverables Conduct geospatial data analysis for projects Provide support for M&A's custom data management system, including data entry and data management for projects Support mobile data collection activities using Esri field applications (Field Maps, Survey123) Create and maintain web-based maps and applications using ArcGIS Online and customized applications Use artistic judgment to select appropriate design and layout for each illustration Perform other related duties as assigned Qualifications Ability to render illustrations for client-facing deliverables Ability to accurately and consistently complete work on schedule and with minimal supervision Ability to communicate and function in a fast paced, team-oriented environment Sufficient understanding of science to successfully create illustrations related to groundwater hydrology Excellent interpersonal and organizational skills Good analytical and problem-solving skills Academic degree in GIS, computer science, or related discipline Fundamental knowledge of the principles, methods, and practical application of ESRI's ArcGIS software-including ArcGIS Pro-general geoprocessing functionality, geodatabases, and coordinate systems Good practical understanding of data management in relational and geospatial databases At M&A, our mission is to promote a fulfilling and respectful work culture where employees collaborate to deliver pragmatic water resource solutions grounded in the principles of integrity, scientific rigor, and environmental responsibility. We are independently owned by practicing scientists who are committed to these values and to supporting our community partners. Benefits include: Competitive benefits and salary in an expanding team-oriented company Dynamic work environment with technical training provided by the company Challenging and collaborative multidisciplinary projects On the job mentoring by senior professionals Medical, dental, vision insurance, flexible Spending Account, HRA Long- and short-term disability Life/AD&D insurance Vacation, holiday, personal, and sick leave Paid parental leave Employer matching 401k retirement plan We are an Equal Opportunity Employer. M&A values diversity and inclusivity. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, sex, gender, gender identity, gender expression, age, sexual orientation, religious creed, physical or mental disability, medical condition, genetic information, marital status, veteran status, or any other classification protected by applicable federal, state, or local law. PI86f5a8-c143e31-5e48-4549-b2d185386
GIS & Data Specialist 1 Montgomery & Associates (M&A) is seeking a GIS & Data Specialist to join our growing team at our Tucson, Arizona, headquarters. This position will provide general, entry-level technical support to hydrologic projects, as well as assist with GIS data production and project deliverables including data compilation, data management and editing, data analysis, quality assurance, and cartographic services, which will be a priority. The GIS & Data Specialist 1 will also be part of an active team responsible for the implementation of web-based data applications and database management related to the company's custom data management system. This position is intended to be full-time, with flexibility that may allow for a reduced work week. We encourage you to apply if you have experience with ESRI's ArcGIS software products-including ArcGIS Pro-and online mapping and data collection applications. We're looking for a self-motivated professional capable of implementing existing cartographic styles, data management schemas, and workflows, as well as developing new solutions independently as needed to meet project needs. Responsibilities Specific responsibilities include: Develop report-quality maps in ArcGIS Pro and other data plots, using company style guidelines Create and manage geospatial datasets, geodatabases, and relational databases Coordinate with project teams regarding GIS requirements and deliverables Conduct geospatial data analysis for projects Provide support for M&A's custom data management system, including data entry and data management for projects Support mobile data collection activities using Esri field applications (Field Maps, Survey123) Create and maintain web-based maps and applications using ArcGIS Online and customized applications Use artistic judgment to select appropriate design and layout for each illustration Perform other related duties as assigned Qualifications Ability to render illustrations for client-facing deliverables Ability to accurately and consistently complete work on schedule and with minimal supervision Ability to communicate and function in a fast paced, team-oriented environment Sufficient understanding of science to successfully create illustrations related to groundwater hydrology Excellent interpersonal and organizational skills Good analytical and problem-solving skills Academic degree in GIS, computer science, or related discipline Fundamental knowledge of the principles, methods, and practical application of ESRI's ArcGIS software-including ArcGIS Pro-general geoprocessing functionality, geodatabases, and coordinate systems Good practical understanding of data management in relational and geospatial databases At M&A, our mission is to promote a fulfilling and respectful work culture where employees collaborate to deliver pragmatic water resource solutions grounded in the principles of integrity, scientific rigor, and environmental responsibility. We are independently owned by practicing scientists who are committed to these values and to supporting our community partners. Benefits include: Competitive benefits and salary in an expanding team-oriented company Dynamic work environment with technical training provided by the company Challenging and collaborative multidisciplinary projects On the job mentoring by senior professionals Medical, dental, vision insurance, flexible Spending Account, HRA Long- and short-term disability Life/AD&D insurance Vacation, holiday, personal, and sick leave Paid parental leave Employer matching 401k retirement plan We are an Equal Opportunity Employer. M&A values diversity and inclusivity. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, sex, gender, gender identity, gender expression, age, sexual orientation, religious creed, physical or mental disability, medical condition, genetic information, marital status, veteran status, or any other classification protected by applicable federal, state, or local law. PI1c5-
06/22/2026
Full time
GIS & Data Specialist 1 Montgomery & Associates (M&A) is seeking a GIS & Data Specialist to join our growing team at our Tucson, Arizona, headquarters. This position will provide general, entry-level technical support to hydrologic projects, as well as assist with GIS data production and project deliverables including data compilation, data management and editing, data analysis, quality assurance, and cartographic services, which will be a priority. The GIS & Data Specialist 1 will also be part of an active team responsible for the implementation of web-based data applications and database management related to the company's custom data management system. This position is intended to be full-time, with flexibility that may allow for a reduced work week. We encourage you to apply if you have experience with ESRI's ArcGIS software products-including ArcGIS Pro-and online mapping and data collection applications. We're looking for a self-motivated professional capable of implementing existing cartographic styles, data management schemas, and workflows, as well as developing new solutions independently as needed to meet project needs. Responsibilities Specific responsibilities include: Develop report-quality maps in ArcGIS Pro and other data plots, using company style guidelines Create and manage geospatial datasets, geodatabases, and relational databases Coordinate with project teams regarding GIS requirements and deliverables Conduct geospatial data analysis for projects Provide support for M&A's custom data management system, including data entry and data management for projects Support mobile data collection activities using Esri field applications (Field Maps, Survey123) Create and maintain web-based maps and applications using ArcGIS Online and customized applications Use artistic judgment to select appropriate design and layout for each illustration Perform other related duties as assigned Qualifications Ability to render illustrations for client-facing deliverables Ability to accurately and consistently complete work on schedule and with minimal supervision Ability to communicate and function in a fast paced, team-oriented environment Sufficient understanding of science to successfully create illustrations related to groundwater hydrology Excellent interpersonal and organizational skills Good analytical and problem-solving skills Academic degree in GIS, computer science, or related discipline Fundamental knowledge of the principles, methods, and practical application of ESRI's ArcGIS software-including ArcGIS Pro-general geoprocessing functionality, geodatabases, and coordinate systems Good practical understanding of data management in relational and geospatial databases At M&A, our mission is to promote a fulfilling and respectful work culture where employees collaborate to deliver pragmatic water resource solutions grounded in the principles of integrity, scientific rigor, and environmental responsibility. We are independently owned by practicing scientists who are committed to these values and to supporting our community partners. Benefits include: Competitive benefits and salary in an expanding team-oriented company Dynamic work environment with technical training provided by the company Challenging and collaborative multidisciplinary projects On the job mentoring by senior professionals Medical, dental, vision insurance, flexible Spending Account, HRA Long- and short-term disability Life/AD&D insurance Vacation, holiday, personal, and sick leave Paid parental leave Employer matching 401k retirement plan We are an Equal Opportunity Employer. M&A values diversity and inclusivity. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, sex, gender, gender identity, gender expression, age, sexual orientation, religious creed, physical or mental disability, medical condition, genetic information, marital status, veteran status, or any other classification protected by applicable federal, state, or local law. PI1c5-
L3Harris is dedicated to recruiting and developing high-performing talent who are passionate about what they do. Our employees are unified in a shared dedication to our customers' mission and quest for professional growth. L3Harris provides an inclusive, engaging environment designed to empower employees and promote work-life success. Fundamental to our culture is an unwavering focus on values, dedication to our communities, and commitment to excellence in everything we do. L3Harris is the Trusted Disruptor in defense tech. With customers' mission-critical needs always in mind, our employees deliver end-to-end technology solutions connecting the space, air, land, sea and cyber domains in the interest of national security. Job Title: Sr. Spec, Integration & Test Engineer Job Code : 36444 Job Location: Northampton, MA Schedule: 9/80 Job Description: The purpose of the Integration and Test engineer position is to synthesize and define test processes for complex electro-optical and electro-mechanical systems. Coordinate assembly level through system level integration and test activities and ensure that technical obligations are fulfilled. Senior professional with strong knowledge of job area and broad knowledge of project management. May manage complex projects or processes with general oversight. Communications within and outside of own function to gain cooperation on operation processes, practices, and procedures. Make moderate to substantial improvements to systems and processes. Contributes to achievements of departmental goals and operating plans with direct impact on the departmental results. Essential Functions: Provide technical leadership acting as I&T Lead working with an IPT lead on design and development issues related to product development. Provide technical guidance to the engineering development teams and offer improvements based on lessons learned during Submarine and Surface Imaging system design and development activities. Perform Control Account Manager (CAM) responsibilities for System Qualification WBS on development programs including managing schedules, quoting & estimating work Coordinate with I&T commodity teams in the flow down of customer requirements Support internal and external design reviews including SDR, PDR, and CDR. Contribute to the Risk and Opportunities register for development and production programs. Generate test validation metrics for Engineering Program Reviews Support business development on proposals for Submarine and Surface Imaging Systems including generating BOE's, technical volumes, and technical approach. Mentor less tenured engineers on the I&T Engineering team. Prepare and deliver technical presentations to domestic and international customers. Lead customer discussions at a variety of forums such as the Systems Engineering Working Group, Management Working Group, Environmental Qualification Testing IPT, Integration meetings, and Test Readiness Review. Develop test plans, test procedures, requirements traceability, test reports, test flow, and test case design and implementation. Execute component through system level verification and validation, troubleshooting and document results. Perform root cause analysis and implement correction action s Support Operations in Failure Trend analysis and ensure failure trends are quickly and effectively identified and resolved. Contribute to continuous improvement efforts Capable of traveling domestically and internationally up to 10% Capable of traveling domestically and internationally Qualifications: Bachelor's degree in Electrical Engineering, Computer Engineering, or related field and minimum 6 years of prior Integration/Test experience Graduate Degree and a minimum of 4 years of prior related experience. In lieu of a degree, minimum of 10 years of prior related experience. Ability to obtain a US DOD Secret Clearance which requires US Citizenship. Technical Software Used: IBM Rational DOORS, Test Rail, MBSE, Atlassian Suite: JIRA and Confluence Test Hardware: DC Power Supplies, Digital Multi-Meters, Oscilloscope, Signal Generator, RF Signal Generator, Spectrum Analyzer, Noise Figure Analyzer, Fiber Optic Scope Meter Understanding of systems engineering concepts Knowledge of Electro-Optical Imaging testing, Broadband RF/Microwave and Antenna test, Line of sight testing Project and team leadership experience In compliance with pay transparency requirements, the salary range for this role in Massachusetts is $102,000- $189,000 . This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits, including health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, schedule type, and the applicability of collective bargaining agreements. L3Harris Technologies is proud to be an Equal Opportunity Employer. L3Harris is committed to treating all employees and applicants for employment with respect and dignity and maintaining a workplace that is free from unlawful discrimination. All applicants will be considered for employment without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender (including pregnancy, childbirth, breastfeeding or other related medical conditions), gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, characteristic or membership in any other group protected by federal, state or local laws. L3Harris maintains a drug-free workplace and performs pre-employment substance abuse testing and background checks, where permitted by law. Please be aware many of our positions require the ability to obtain a security clearance. Security clearances may only be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information. By submitting your resume for this position, you understand and agree that L3Harris Technologies may share your resume, as well as any other related personal information or documentation you provide, with its subsidiaries and affiliated companies for the purpose of considering you for other available positions. L3Harris Technologies is an E-Verify Employer. Please click here for the E-Verify Poster in English or Spanish. For information regarding your Right To Work, please click here for English or Spanish.
06/22/2026
Full time
L3Harris is dedicated to recruiting and developing high-performing talent who are passionate about what they do. Our employees are unified in a shared dedication to our customers' mission and quest for professional growth. L3Harris provides an inclusive, engaging environment designed to empower employees and promote work-life success. Fundamental to our culture is an unwavering focus on values, dedication to our communities, and commitment to excellence in everything we do. L3Harris is the Trusted Disruptor in defense tech. With customers' mission-critical needs always in mind, our employees deliver end-to-end technology solutions connecting the space, air, land, sea and cyber domains in the interest of national security. Job Title: Sr. Spec, Integration & Test Engineer Job Code : 36444 Job Location: Northampton, MA Schedule: 9/80 Job Description: The purpose of the Integration and Test engineer position is to synthesize and define test processes for complex electro-optical and electro-mechanical systems. Coordinate assembly level through system level integration and test activities and ensure that technical obligations are fulfilled. Senior professional with strong knowledge of job area and broad knowledge of project management. May manage complex projects or processes with general oversight. Communications within and outside of own function to gain cooperation on operation processes, practices, and procedures. Make moderate to substantial improvements to systems and processes. Contributes to achievements of departmental goals and operating plans with direct impact on the departmental results. Essential Functions: Provide technical leadership acting as I&T Lead working with an IPT lead on design and development issues related to product development. Provide technical guidance to the engineering development teams and offer improvements based on lessons learned during Submarine and Surface Imaging system design and development activities. Perform Control Account Manager (CAM) responsibilities for System Qualification WBS on development programs including managing schedules, quoting & estimating work Coordinate with I&T commodity teams in the flow down of customer requirements Support internal and external design reviews including SDR, PDR, and CDR. Contribute to the Risk and Opportunities register for development and production programs. Generate test validation metrics for Engineering Program Reviews Support business development on proposals for Submarine and Surface Imaging Systems including generating BOE's, technical volumes, and technical approach. Mentor less tenured engineers on the I&T Engineering team. Prepare and deliver technical presentations to domestic and international customers. Lead customer discussions at a variety of forums such as the Systems Engineering Working Group, Management Working Group, Environmental Qualification Testing IPT, Integration meetings, and Test Readiness Review. Develop test plans, test procedures, requirements traceability, test reports, test flow, and test case design and implementation. Execute component through system level verification and validation, troubleshooting and document results. Perform root cause analysis and implement correction action s Support Operations in Failure Trend analysis and ensure failure trends are quickly and effectively identified and resolved. Contribute to continuous improvement efforts Capable of traveling domestically and internationally up to 10% Capable of traveling domestically and internationally Qualifications: Bachelor's degree in Electrical Engineering, Computer Engineering, or related field and minimum 6 years of prior Integration/Test experience Graduate Degree and a minimum of 4 years of prior related experience. In lieu of a degree, minimum of 10 years of prior related experience. Ability to obtain a US DOD Secret Clearance which requires US Citizenship. Technical Software Used: IBM Rational DOORS, Test Rail, MBSE, Atlassian Suite: JIRA and Confluence Test Hardware: DC Power Supplies, Digital Multi-Meters, Oscilloscope, Signal Generator, RF Signal Generator, Spectrum Analyzer, Noise Figure Analyzer, Fiber Optic Scope Meter Understanding of systems engineering concepts Knowledge of Electro-Optical Imaging testing, Broadband RF/Microwave and Antenna test, Line of sight testing Project and team leadership experience In compliance with pay transparency requirements, the salary range for this role in Massachusetts is $102,000- $189,000 . This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits, including health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, schedule type, and the applicability of collective bargaining agreements. L3Harris Technologies is proud to be an Equal Opportunity Employer. L3Harris is committed to treating all employees and applicants for employment with respect and dignity and maintaining a workplace that is free from unlawful discrimination. All applicants will be considered for employment without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender (including pregnancy, childbirth, breastfeeding or other related medical conditions), gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, characteristic or membership in any other group protected by federal, state or local laws. L3Harris maintains a drug-free workplace and performs pre-employment substance abuse testing and background checks, where permitted by law. Please be aware many of our positions require the ability to obtain a security clearance. Security clearances may only be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information. By submitting your resume for this position, you understand and agree that L3Harris Technologies may share your resume, as well as any other related personal information or documentation you provide, with its subsidiaries and affiliated companies for the purpose of considering you for other available positions. L3Harris Technologies is an E-Verify Employer. Please click here for the E-Verify Poster in English or Spanish. For information regarding your Right To Work, please click here for English or Spanish.
EDUCATION & EXPERIENCE: Minimum Qualifications: A high school diploma or GED and three years related experience. Preferred Qualifications: Three (3) years of experience in DRG and/or PCS coding. Experience with communicating, training, and educating providers in proficiency. Knowledge of coding guidelines, anatomy and physiology, biology and microbiology, medical terminology and medical abbreviations. REQUIRED LICENSES, REGISTRATIONS, OR CERTIFICATIONS: One of the following: CCS - Certified Coding Specialist (AHIMA) or RHIA - Registered Health Information Administrator (AHIMA) or RHIT - Registered Health Information Technician (AHIMA) JOB SUMMARY: To provide the advanced skills necessary for proper coding of all pertinent diagnoses and procedures and to provide optimal DRG assignment after thorough review of medical record and analysis of DRG options. ESSENTIAL JOB FUNCTIONS: Selects records from EPIC WQ according to priority. Reviews all federally insured and other patient discharge encounters for accurate coding and sequencing of diagnoses and procedures. Correctly assigns ICD-10 -CM diagnoses and I C D - 1 0 - P C S procedure codes and enters appropriate codes into EPIC Encoder. Identifies responsible staff and resident physicians for each procedure coded. Always protects confidentiality of patient information. Participates in section meeting and office in-services. Attends and participates in coding education sessions. Keeps coding knowledge and skills current through attending continuing education activities and reviewing pertinent literature. Obtains required CEU's for certification and completes any required education. Works coding related charge reviews/claim edits daily to ensure timely and accurate billing within filing deadlines. Responsible for productivity and quality standards to adhere with coding compliance and federal regulations. Marginal or Periodic Functions: Adheres to internal controls and reporting structure Performs related duties as required KNOWLEDGE/SKILLS/ABILITIES: Strong interpersonal, written, and oral communication skills Proficient in inpatient coding with the ability to audit and provide education to providers and coders WORKING ENVIRONMENT/EQUIPMENT: Standard office environment at UTMB's main campus or other location. Occasional travel may be required. Standard office equipment SALARY RANGE: Actual salary commensurate with experience. WORK SCHEDULE: Flexible schedule between 6:00 a.m. - 6:00 p.m. Equal Employment Opportunity UTMB Health strives to provide equal opportunity employment without regard to race, color, religion, age, national origin, sex, gender, sexual orientation, gender identity/expression, genetic information, disability, veteran status, or any other basis protected by institutional policy or by federal, state or local laws unless such distinction is required by law. As a Federal Contractor, UTMB Health takes affirmative action to hire and advance protected veterans and individuals with disabilities.
01/15/2026
Full time
EDUCATION & EXPERIENCE: Minimum Qualifications: A high school diploma or GED and three years related experience. Preferred Qualifications: Three (3) years of experience in DRG and/or PCS coding. Experience with communicating, training, and educating providers in proficiency. Knowledge of coding guidelines, anatomy and physiology, biology and microbiology, medical terminology and medical abbreviations. REQUIRED LICENSES, REGISTRATIONS, OR CERTIFICATIONS: One of the following: CCS - Certified Coding Specialist (AHIMA) or RHIA - Registered Health Information Administrator (AHIMA) or RHIT - Registered Health Information Technician (AHIMA) JOB SUMMARY: To provide the advanced skills necessary for proper coding of all pertinent diagnoses and procedures and to provide optimal DRG assignment after thorough review of medical record and analysis of DRG options. ESSENTIAL JOB FUNCTIONS: Selects records from EPIC WQ according to priority. Reviews all federally insured and other patient discharge encounters for accurate coding and sequencing of diagnoses and procedures. Correctly assigns ICD-10 -CM diagnoses and I C D - 1 0 - P C S procedure codes and enters appropriate codes into EPIC Encoder. Identifies responsible staff and resident physicians for each procedure coded. Always protects confidentiality of patient information. Participates in section meeting and office in-services. Attends and participates in coding education sessions. Keeps coding knowledge and skills current through attending continuing education activities and reviewing pertinent literature. Obtains required CEU's for certification and completes any required education. Works coding related charge reviews/claim edits daily to ensure timely and accurate billing within filing deadlines. Responsible for productivity and quality standards to adhere with coding compliance and federal regulations. Marginal or Periodic Functions: Adheres to internal controls and reporting structure Performs related duties as required KNOWLEDGE/SKILLS/ABILITIES: Strong interpersonal, written, and oral communication skills Proficient in inpatient coding with the ability to audit and provide education to providers and coders WORKING ENVIRONMENT/EQUIPMENT: Standard office environment at UTMB's main campus or other location. Occasional travel may be required. Standard office equipment SALARY RANGE: Actual salary commensurate with experience. WORK SCHEDULE: Flexible schedule between 6:00 a.m. - 6:00 p.m. Equal Employment Opportunity UTMB Health strives to provide equal opportunity employment without regard to race, color, religion, age, national origin, sex, gender, sexual orientation, gender identity/expression, genetic information, disability, veteran status, or any other basis protected by institutional policy or by federal, state or local laws unless such distinction is required by law. As a Federal Contractor, UTMB Health takes affirmative action to hire and advance protected veterans and individuals with disabilities.
Job Title: Senior Network Engineer Location: Tallahassee, FL Regular/Temporary: Regular Full/Part Time: Full-Time Job ID: 61818 Department This position is within FSU's Department of Information Technology Services (ITS) Department This position plays a key role in the ITS NCT Engineering Networking Group, focusing on the installation, maintenance, operation, and repair of the University's network infrastructure and related systems. Key responsibilities include configuring and managing network hardware (PaloAlto, Juniper (Mist), Rukus, Aruba (Clearpass/Central/AOS 8), Bluecat, Azure, AWS, Cisco) to ensure optimal performance and security. Troubleshooting connectivity issues and resolving network-related incidents efficiently. Optimizing network performance through proactive monitoring and maintenance. Ensuring the reliability and security of the University's networking environment. Supporting the integration of new technologies to enhance network functionality. Collaborating with other ITS teams to develop and implement network solutions. Assisting in the planning and execution of network upgrades and expansions. This role requires strong technical expertise, problem-solving skills, and a commitment to maintaining a robust and secure network infrastructure that supports the University's operational and academic needs. The Network Specialist is responsible for troubleshooting and resolving network- related issues to include wired and wireless, to minimize downtime. This role requires proficiency in networking diagnostic tools to analyze, monitor, and optimize network performance. The Specialist facilitates cases and AiM work orders, ensuring efficient management of network-related service requests. Additionally, they continuously monitor network connectivity, proactively identifying and addressing issues. Support is provided across all FSU-ITS supported networks, including cloud environments, international sites, the Panama City campus, remote offices, and the main campus network. Responsible for configuring network infrastructure to ensure optimal performance and reliability. This includes performing code upgrades, managing certificates, and planning routine maintenance to minimize disruptions. The role also involves overseeing physical and logistical network configurations, ensuring seamless integration and operation. Additionally, the Network Specialist provides support and configuration for all ITS-managed networks, including cloud environments, international sites, the Panama City campus, remote offices, and the main campus network. General knowledge of scripting automation to enhance operational efficiencies. Responsible for designing network infrastructure to meet the evolving needs of ITS- managed environments. This role requires ongoing research and staying up to date with emerging tools, threats, and technologies to ensure network integrity and efficiency. The specialist provides estimates for network-related projects and is involved in both wired and wireless planning to optimize connectivity and performance. Additionally, they oversee logistical and physical planning across all ITS networks, including cloud environments, international sites, the Panama City campus, remote offices, and the main campus network. Responsible for policy development, enforcement, and compliance to ensure the security and efficiency of ITS-managed networks. This role requires an understanding of HIPAA, NIST, and PCI standards to maintain regulatory compliance. The specialist follows NCT and ITS standards and policies while also providing insights for improvements when necessary. Additionally, they are expected to provide feedback for the development, enforcement, and compliance of network policies across all ITS-managed environments, including cloud infrastructure, international sites, the Panama City campus, remote offices, and the main campus network. Responsible for project participation, ensuring the successful planning and execution of network-related initiatives. Serving as a contact for NCT, this role facilitates communication and coordination across ITS teams. Additionally, the specialist plays a lead role and collaborates on internal NCT projects and initiatives, driving improvements and innovation within the network infrastructure. Responsible for additional duties as assigned, including participation in an on-call rotation to provide after-hours support. This role also requires travel across various site premises using a state vehicle, golf cart, utility vehicle, or all-terrain vehicle. Qualifications Bachelor's degree in Computer Science, MIS, or other appropriate degree and two years' experience or a high school diploma or equivalent and six years of experience. (Note: or a combination of appropriate post high school education and experience equal to six years.) A valid Florida or Georgia driver's license or the ability to obtain one. Preferred Qualifications Strong working knowledge of TCP/IP, VLANs, routing, switching, and DNS/DHCP. Experience configuring and troubleshooting Layer 2 and Layer 3 networks. Proficiency with network monitoring and troubleshooting tools (packet capture, SNMP, NetFlow, syslog). Experience supporting wireless networks (Wi-Fi 5/6), including APs, controllers, and RF fundamentals. Familiarity with network security concepts (NAC, RADIUS/TACACS, firewalls, ACLs). Ability to diagnose complex network issues and clearly communicate findings and resolutions. Experience working in ticketing systems and documenting network configurations and procedures. Experience with enterprise networking vendors (e.g., Aruba, Cisco, Juniper). Experience with ClearPass or NAC solutions. Familiarity with cloud-managed networking platforms (Aruba Central, Mist, VPNs, Azure (VNETs), AWS (VPCs), Panaroma, etc.). Knowledge of high-availability, redundancy, and failover designs. Experience in campus or large-scale network environments. Scripting or automation experience (Python, Ansible, REST APIs). Understanding of VoIP, multicast, and QoS concepts. Experience supporting network upgrades, refresh projects, and lifecycle management. Knowledge of and experience with CompTIA Network+, CCNA / CCNP/CWNA, Aruba ACMA / ACMP / ACSP, and Juniper JNCIA / JNCIS. University Information One of the nation's elite research universities, Florida State University preserves, expands, and disseminates knowledge in the sciences, technology, arts, humanities, and professions, while embracing a philosophy of learning strongly rooted in the traditions of the liberal arts and critical thinking. Founded in 1851, Florida State University is the oldest continuous site of higher education in Florida. FSU is a community steeped in tradition that fosters research and encourages creativity. At FSU, there's the excitement of being part of a vibrant academic and professional community, surrounded by people whose ideas are shaping tomorrow's news! Learn more about our university and campuses. FSU Total Rewards FSU offers a robust Total Rewards package. Visit our website to learn more about our Compensation, Benefits, Wellness, Recognition, and Employee Development programs. Use our interactive tool to calculate Total Compensation options based on potential salary, benefits and retirement contributions, earned leave, and other employment-related perks. How To Apply If qualified and interested in a specific job opening as advertised, apply to Florida State University at . If you are a current FSU employee, apply via myFSU > Self Service. Applicants are required to complete the online application with all applicable information. Applications must include all work history up to ten years, and education details even if attaching a resume. Considerations This is an A&P position. This position requires successful completion of a criminal history background check . Participation in an on-call rotation to provide after-hours support This position is open until filled. Equal Employment Opportunity FSU is an Equal Employment Opportunity Employer.
01/14/2026
Full time
Job Title: Senior Network Engineer Location: Tallahassee, FL Regular/Temporary: Regular Full/Part Time: Full-Time Job ID: 61818 Department This position is within FSU's Department of Information Technology Services (ITS) Department This position plays a key role in the ITS NCT Engineering Networking Group, focusing on the installation, maintenance, operation, and repair of the University's network infrastructure and related systems. Key responsibilities include configuring and managing network hardware (PaloAlto, Juniper (Mist), Rukus, Aruba (Clearpass/Central/AOS 8), Bluecat, Azure, AWS, Cisco) to ensure optimal performance and security. Troubleshooting connectivity issues and resolving network-related incidents efficiently. Optimizing network performance through proactive monitoring and maintenance. Ensuring the reliability and security of the University's networking environment. Supporting the integration of new technologies to enhance network functionality. Collaborating with other ITS teams to develop and implement network solutions. Assisting in the planning and execution of network upgrades and expansions. This role requires strong technical expertise, problem-solving skills, and a commitment to maintaining a robust and secure network infrastructure that supports the University's operational and academic needs. The Network Specialist is responsible for troubleshooting and resolving network- related issues to include wired and wireless, to minimize downtime. This role requires proficiency in networking diagnostic tools to analyze, monitor, and optimize network performance. The Specialist facilitates cases and AiM work orders, ensuring efficient management of network-related service requests. Additionally, they continuously monitor network connectivity, proactively identifying and addressing issues. Support is provided across all FSU-ITS supported networks, including cloud environments, international sites, the Panama City campus, remote offices, and the main campus network. Responsible for configuring network infrastructure to ensure optimal performance and reliability. This includes performing code upgrades, managing certificates, and planning routine maintenance to minimize disruptions. The role also involves overseeing physical and logistical network configurations, ensuring seamless integration and operation. Additionally, the Network Specialist provides support and configuration for all ITS-managed networks, including cloud environments, international sites, the Panama City campus, remote offices, and the main campus network. General knowledge of scripting automation to enhance operational efficiencies. Responsible for designing network infrastructure to meet the evolving needs of ITS- managed environments. This role requires ongoing research and staying up to date with emerging tools, threats, and technologies to ensure network integrity and efficiency. The specialist provides estimates for network-related projects and is involved in both wired and wireless planning to optimize connectivity and performance. Additionally, they oversee logistical and physical planning across all ITS networks, including cloud environments, international sites, the Panama City campus, remote offices, and the main campus network. Responsible for policy development, enforcement, and compliance to ensure the security and efficiency of ITS-managed networks. This role requires an understanding of HIPAA, NIST, and PCI standards to maintain regulatory compliance. The specialist follows NCT and ITS standards and policies while also providing insights for improvements when necessary. Additionally, they are expected to provide feedback for the development, enforcement, and compliance of network policies across all ITS-managed environments, including cloud infrastructure, international sites, the Panama City campus, remote offices, and the main campus network. Responsible for project participation, ensuring the successful planning and execution of network-related initiatives. Serving as a contact for NCT, this role facilitates communication and coordination across ITS teams. Additionally, the specialist plays a lead role and collaborates on internal NCT projects and initiatives, driving improvements and innovation within the network infrastructure. Responsible for additional duties as assigned, including participation in an on-call rotation to provide after-hours support. This role also requires travel across various site premises using a state vehicle, golf cart, utility vehicle, or all-terrain vehicle. Qualifications Bachelor's degree in Computer Science, MIS, or other appropriate degree and two years' experience or a high school diploma or equivalent and six years of experience. (Note: or a combination of appropriate post high school education and experience equal to six years.) A valid Florida or Georgia driver's license or the ability to obtain one. Preferred Qualifications Strong working knowledge of TCP/IP, VLANs, routing, switching, and DNS/DHCP. Experience configuring and troubleshooting Layer 2 and Layer 3 networks. Proficiency with network monitoring and troubleshooting tools (packet capture, SNMP, NetFlow, syslog). Experience supporting wireless networks (Wi-Fi 5/6), including APs, controllers, and RF fundamentals. Familiarity with network security concepts (NAC, RADIUS/TACACS, firewalls, ACLs). Ability to diagnose complex network issues and clearly communicate findings and resolutions. Experience working in ticketing systems and documenting network configurations and procedures. Experience with enterprise networking vendors (e.g., Aruba, Cisco, Juniper). Experience with ClearPass or NAC solutions. Familiarity with cloud-managed networking platforms (Aruba Central, Mist, VPNs, Azure (VNETs), AWS (VPCs), Panaroma, etc.). Knowledge of high-availability, redundancy, and failover designs. Experience in campus or large-scale network environments. Scripting or automation experience (Python, Ansible, REST APIs). Understanding of VoIP, multicast, and QoS concepts. Experience supporting network upgrades, refresh projects, and lifecycle management. Knowledge of and experience with CompTIA Network+, CCNA / CCNP/CWNA, Aruba ACMA / ACMP / ACSP, and Juniper JNCIA / JNCIS. University Information One of the nation's elite research universities, Florida State University preserves, expands, and disseminates knowledge in the sciences, technology, arts, humanities, and professions, while embracing a philosophy of learning strongly rooted in the traditions of the liberal arts and critical thinking. Founded in 1851, Florida State University is the oldest continuous site of higher education in Florida. FSU is a community steeped in tradition that fosters research and encourages creativity. At FSU, there's the excitement of being part of a vibrant academic and professional community, surrounded by people whose ideas are shaping tomorrow's news! Learn more about our university and campuses. FSU Total Rewards FSU offers a robust Total Rewards package. Visit our website to learn more about our Compensation, Benefits, Wellness, Recognition, and Employee Development programs. Use our interactive tool to calculate Total Compensation options based on potential salary, benefits and retirement contributions, earned leave, and other employment-related perks. How To Apply If qualified and interested in a specific job opening as advertised, apply to Florida State University at . If you are a current FSU employee, apply via myFSU > Self Service. Applicants are required to complete the online application with all applicable information. Applications must include all work history up to ten years, and education details even if attaching a resume. Considerations This is an A&P position. This position requires successful completion of a criminal history background check . Participation in an on-call rotation to provide after-hours support This position is open until filled. Equal Employment Opportunity FSU is an Equal Employment Opportunity Employer.
Job no: 493133 Work type: Full-Time Staff Location: Arnold/Main Campus Categories: Full-Time Staff Title: Senior Engineer - Infrastructure Department: Info Security & Infrastructure Campus Location: Arnold/Main Campus Salary Range: $110,590-$138,237 Work Mode: This position requires regular in-person presence on campus and at alternative locations, depending on class schedule and other assigned duties. Hours Per Week: 40 Work Schedule: Position Type: Full-Time Staff, Exempt Position Summary This position provides technical solutions in the design, implementation, management, administration and troubleshooting of the Enterprise-wide data network infrastructure/Hybrid Cloud environments. It requires the ability to analyze the needs of user departments and establish priorities for network design accordingly. This position is responsible for network design, hardware recommendation and implementation for all data infrastructure hardware and related software applications. The successful candidate will possess a high degree of experience and skill in managing the installation, testing, monitoring and maintenance of the data communications, wireless, and IP based services environment to include voice communications and security cameras. Information and Instructional Technology team members must be dedicated to fostering a culture of excellence. Successful candidates will help IIT build our culture by enabling frictionless service, valuing feedback, and embracing continuous improvement and learning. To support this foundation, IIT has established five pillars. These pillars create a collaborative, supportive, and inclusive professional culture. Successful candidates will be skilled technologists who value AACC's community and people. They will also be empathetic to the challenges faced by our students, faculty, and staff. Our Characteristics of Excellence are the guiding principles of our Division, empowering our teams to deliver exceptional results and drive success. Successful candidates will treat people with respect, dignity, and fairness, consistently delivering quality results and following through on commitments and responsibilities. They will cultivate teamwork and collaboration, embrace opportunities for improvement and innovation, and maintain open and honest communication with integrity. Additionally, they will appreciate the value of simple, efficient solutions, recognize the importance of building positive relationships, and respect others' time. Job Duties and Responsibilities Lead efforts to develop and implement comprehensive network infrastructure system designs that meet business requirements by utilizing technology in a cost effective and scalable manner. Provide design, configuration, implementation, monitoring, and support for enterprise/Hybrid network infrastructure (routers and switches) wireless, and video systems. Responsible for hands-on engineering activities to ensure the successful operation of a mission critical Hybrid network architecture spanning multiple data centers and sites. Leads efforts to define and execute ongoing network security, health maintenance plans, processes, procedures, documentation, and operations for the enterprise infrastructure system in accordance with industry standards and guidelines. Provide guidance and assistance to the IIT team in the implementation and administration of system monitoring tools. Monitor performance and tuning of key technology components for the college's network infrastructure; recommend changes or enhancements to resolve stability and performance issues based on findings. Maintain statistics on system performance and availability. Practice effective project management skills, including the ability to adequately manage assigned projects and report project progress and status. Lead projects to upgrade and/or expand the network including design, planning, testing, and implementation. Develop and maintain document repositories and architectural diagrams related to the installation, administration, maintenance, and use of systems. Strives to ensure solutions, systems, and content are secure, accessible, inclusive, and compliant with WCAG and other relevant standards. Continuously improves technical skills and knowledge. Documents and tracks service disruptions and requests in the appropriate systems and provides their supervisor with timely updates on project progress, status, and issues. Develop and maintain document repositories and architectural diagrams related to the installation, administration, maintenance, and use of systems. Plan and execute changes which impact the hybrid network infrastructure following established change management processes. Ensure planned testing activities are developed, documented, and executed. Troubleshoot incidents, identify root causes, fix and document problems, and implement preventive measures. Works to ensure availability of applications and services by monitoring systems and services used at all AACC locations. Assist the Director, Information Security & Infrastructure in the college-wide budget planning process to review and ensure new initiatives are properly vetted for technology needs. Support the development of SOW's, RFP's and RFQ's for Information and Instructional Technologies related technologies and maintenance while working very closely with the Purchasing department. Communicate with vendors, customers, management, and technology staff. Maintain expertise of current hybrid Cloud networking trends and provide guidance about direction of various hybrid Cloud networking technologies. Ensure that network infrastructure equipment is installed in dedicated spaces that are physically secure, provide stable temperature and humidity within equipment manufacturer's specified ranges, and have reliable Uninterruptible Power Supply (UPS) units capable of keeping equipment running during power outages of up to 30 minutes. Provides training and guidance to AACC staff and students to develop new technology skills. Required Qualifications: Bachelor's degree Minimum of five years of relevant experience Current industry standard Cloud related certification, i.e. Extreme ECNA, Aruba ACMA, ACMP or other industry recognized networking certification. Possess comprehensive knowledge of, and hands-on experience with Extreme Networks wired network infrastructure products and management software. Considerable experience with cloud (AWS, Azure) networking and/or security. Experience in designing, implementing, and maintaining complex Enterprise Wireless, Local Area Networks (LANs) & Wide Area Networks (WANs), Ethernet and Fiber Optic cabling infrastructures. Knowledge of dynamic routing protocols (RIP, BGP, EIGRP, OSPF, IGRP), IPSEC, wireless and TCP/IP protocols, switched Ethernet and VLAN technologies. Layer 2 and 3 LAN design and operation Preferred Qualifications: Certifications: Extreme Networks Associate, Specialist (ECS) or Professional (ECP) highly desired. However, other industry routing and switching certifications will be considered. Microsoft Azure Network Engineer Associate, or Microsoft Azure Solutions Architect Expert highly desired. However, other Cloud provider certifications will be considered. General Industry Experience: Extreme Networks Routers and Switches, Panduit Cable Management Systems, HPE/Aruba Wireless, FatPipe WAN Optimization and APC UPS experience highly desired. Anne Arundel Community College (AACC) is committed to enriching the educational experience it offers through the diversity of its faculty, administrators, and staff members. The college seeks to recruit and support a broadly diverse team who will contribute to the college's excellence, diversity of viewpoints and experiences, embrace concepts of equity and inclusiveness, and support the equal rights of all people by advancing the understanding and appreciation of differences including age, race, gender, ability, religious convictions, socio-economic status, ethnic heritage, or sexual orientation. While we appreciate your interest in employment with Anne Arundel Community College, applicants must be currently authorized to work in the U.S. on a full-time basis. Employment-based visa sponsorship (including H-1B sponsorship) is not available for any position. Pay dates occur on the 7th and 22nd of each month. If those dates fall on a weekend, the pay date occurs on the Friday prior to the 7th and 22nd. As an employee of the college, you are eligible for a comprehensive benefits package. In the best interest of the College, only individuals who are residents of Maryland or one of the following states will be eligible for employment at the college: Delaware, Pennsylvania, Virginia, West Virginia or the District of Columbia. The college will annually review this restriction and, if appropriate, expand the list of states of employment eligibility. Advertised: 03 Dec 2025 Eastern Standard Time Applications close: Whatsapp Facebook LinkedIn Email App if (typeof SocialShareKit != 'undefined') SocialShareKit.init( forceInit: true, reinitialize: true, selector: '.social-share-kit .ssk' );
01/14/2026
Full time
Job no: 493133 Work type: Full-Time Staff Location: Arnold/Main Campus Categories: Full-Time Staff Title: Senior Engineer - Infrastructure Department: Info Security & Infrastructure Campus Location: Arnold/Main Campus Salary Range: $110,590-$138,237 Work Mode: This position requires regular in-person presence on campus and at alternative locations, depending on class schedule and other assigned duties. Hours Per Week: 40 Work Schedule: Position Type: Full-Time Staff, Exempt Position Summary This position provides technical solutions in the design, implementation, management, administration and troubleshooting of the Enterprise-wide data network infrastructure/Hybrid Cloud environments. It requires the ability to analyze the needs of user departments and establish priorities for network design accordingly. This position is responsible for network design, hardware recommendation and implementation for all data infrastructure hardware and related software applications. The successful candidate will possess a high degree of experience and skill in managing the installation, testing, monitoring and maintenance of the data communications, wireless, and IP based services environment to include voice communications and security cameras. Information and Instructional Technology team members must be dedicated to fostering a culture of excellence. Successful candidates will help IIT build our culture by enabling frictionless service, valuing feedback, and embracing continuous improvement and learning. To support this foundation, IIT has established five pillars. These pillars create a collaborative, supportive, and inclusive professional culture. Successful candidates will be skilled technologists who value AACC's community and people. They will also be empathetic to the challenges faced by our students, faculty, and staff. Our Characteristics of Excellence are the guiding principles of our Division, empowering our teams to deliver exceptional results and drive success. Successful candidates will treat people with respect, dignity, and fairness, consistently delivering quality results and following through on commitments and responsibilities. They will cultivate teamwork and collaboration, embrace opportunities for improvement and innovation, and maintain open and honest communication with integrity. Additionally, they will appreciate the value of simple, efficient solutions, recognize the importance of building positive relationships, and respect others' time. Job Duties and Responsibilities Lead efforts to develop and implement comprehensive network infrastructure system designs that meet business requirements by utilizing technology in a cost effective and scalable manner. Provide design, configuration, implementation, monitoring, and support for enterprise/Hybrid network infrastructure (routers and switches) wireless, and video systems. Responsible for hands-on engineering activities to ensure the successful operation of a mission critical Hybrid network architecture spanning multiple data centers and sites. Leads efforts to define and execute ongoing network security, health maintenance plans, processes, procedures, documentation, and operations for the enterprise infrastructure system in accordance with industry standards and guidelines. Provide guidance and assistance to the IIT team in the implementation and administration of system monitoring tools. Monitor performance and tuning of key technology components for the college's network infrastructure; recommend changes or enhancements to resolve stability and performance issues based on findings. Maintain statistics on system performance and availability. Practice effective project management skills, including the ability to adequately manage assigned projects and report project progress and status. Lead projects to upgrade and/or expand the network including design, planning, testing, and implementation. Develop and maintain document repositories and architectural diagrams related to the installation, administration, maintenance, and use of systems. Strives to ensure solutions, systems, and content are secure, accessible, inclusive, and compliant with WCAG and other relevant standards. Continuously improves technical skills and knowledge. Documents and tracks service disruptions and requests in the appropriate systems and provides their supervisor with timely updates on project progress, status, and issues. Develop and maintain document repositories and architectural diagrams related to the installation, administration, maintenance, and use of systems. Plan and execute changes which impact the hybrid network infrastructure following established change management processes. Ensure planned testing activities are developed, documented, and executed. Troubleshoot incidents, identify root causes, fix and document problems, and implement preventive measures. Works to ensure availability of applications and services by monitoring systems and services used at all AACC locations. Assist the Director, Information Security & Infrastructure in the college-wide budget planning process to review and ensure new initiatives are properly vetted for technology needs. Support the development of SOW's, RFP's and RFQ's for Information and Instructional Technologies related technologies and maintenance while working very closely with the Purchasing department. Communicate with vendors, customers, management, and technology staff. Maintain expertise of current hybrid Cloud networking trends and provide guidance about direction of various hybrid Cloud networking technologies. Ensure that network infrastructure equipment is installed in dedicated spaces that are physically secure, provide stable temperature and humidity within equipment manufacturer's specified ranges, and have reliable Uninterruptible Power Supply (UPS) units capable of keeping equipment running during power outages of up to 30 minutes. Provides training and guidance to AACC staff and students to develop new technology skills. Required Qualifications: Bachelor's degree Minimum of five years of relevant experience Current industry standard Cloud related certification, i.e. Extreme ECNA, Aruba ACMA, ACMP or other industry recognized networking certification. Possess comprehensive knowledge of, and hands-on experience with Extreme Networks wired network infrastructure products and management software. Considerable experience with cloud (AWS, Azure) networking and/or security. Experience in designing, implementing, and maintaining complex Enterprise Wireless, Local Area Networks (LANs) & Wide Area Networks (WANs), Ethernet and Fiber Optic cabling infrastructures. Knowledge of dynamic routing protocols (RIP, BGP, EIGRP, OSPF, IGRP), IPSEC, wireless and TCP/IP protocols, switched Ethernet and VLAN technologies. Layer 2 and 3 LAN design and operation Preferred Qualifications: Certifications: Extreme Networks Associate, Specialist (ECS) or Professional (ECP) highly desired. However, other industry routing and switching certifications will be considered. Microsoft Azure Network Engineer Associate, or Microsoft Azure Solutions Architect Expert highly desired. However, other Cloud provider certifications will be considered. General Industry Experience: Extreme Networks Routers and Switches, Panduit Cable Management Systems, HPE/Aruba Wireless, FatPipe WAN Optimization and APC UPS experience highly desired. Anne Arundel Community College (AACC) is committed to enriching the educational experience it offers through the diversity of its faculty, administrators, and staff members. The college seeks to recruit and support a broadly diverse team who will contribute to the college's excellence, diversity of viewpoints and experiences, embrace concepts of equity and inclusiveness, and support the equal rights of all people by advancing the understanding and appreciation of differences including age, race, gender, ability, religious convictions, socio-economic status, ethnic heritage, or sexual orientation. While we appreciate your interest in employment with Anne Arundel Community College, applicants must be currently authorized to work in the U.S. on a full-time basis. Employment-based visa sponsorship (including H-1B sponsorship) is not available for any position. Pay dates occur on the 7th and 22nd of each month. If those dates fall on a weekend, the pay date occurs on the Friday prior to the 7th and 22nd. As an employee of the college, you are eligible for a comprehensive benefits package. In the best interest of the College, only individuals who are residents of Maryland or one of the following states will be eligible for employment at the college: Delaware, Pennsylvania, Virginia, West Virginia or the District of Columbia. The college will annually review this restriction and, if appropriate, expand the list of states of employment eligibility. Advertised: 03 Dec 2025 Eastern Standard Time Applications close: Whatsapp Facebook LinkedIn Email App if (typeof SocialShareKit != 'undefined') SocialShareKit.init( forceInit: true, reinitialize: true, selector: '.social-share-kit .ssk' );
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
12/17/2025
Full time
Senior Manager, Technology Change Risk Oversight Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk. Technology Risk Management (TRM) is a small organization that packs a big punch. The 100 professionals in TRM are trusted experts who oversee 14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk. Our business leaders must make technology decisions constantly. TRM makes sure they have the tech risk information they need to make good decisions. Associates within TRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, and risk management professionals. They have a wealth of experience and a demonstrated ability to add value with their advice and to deliver high-impact results. As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments. As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm's controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm's cyber risk management capabilities. Finally, as a member of a growing organization, you will have the opportunity to shape and further refine your portfolio commensurate with the priorities of the organization and the company. The demands and high-visibility nature of this position requires an expert with a proven ability to work independently in a fast-paced environment and who can begin contributing immediately. Essential Functions (Responsibilities): Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy. Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risk are well communicated and understood by the key stakeholders Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services Demonstrate strong analytical, problem-solving, and decision-making skills Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers Define, structure and plan work independently Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance. Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies Basic Qualifications: Bachelor's Degree or military experience At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology At least 3 years experience with Public Cloud implementations Preferred Qualifications: Master's Degree in Computer Science or in an Engineering discipline Professional certification (AWS Certified Solutions Architect, AWS Certified Security Speciality, AWS SysOps Administrator, or Certified Information Systems Security Professional (CISSP Experience with Information Security at the policy, architecture or implementation level Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus Experience with identifying and communicating key risks related to cloud native implementations and architectures Experience drafting reports or analytic assessments for senior management Experience with analysis of emerging threats and reports that describe the implications of threat(s) and opportunities to executives or senior decision-makers Passion and expertise in cybersecurity and technology risk, with an ability to be confident, respectful, and articulate when registering dissenting or unpopular opinions Ability to manage multiple high-visibility and high-impact projects while maintaining superior results Execution oriented and a self-motivator Experience with threat modeling frameworks (STRIDE, OWASP Top 10, MITRE ATT&CK) Familiarity with controls and control frameworks ( NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT.) Ability to work independently and in a team, taking a lead role on projects when necessary Prior experience working in financial services or other highly-regulated sectors Experience working in a hybrid IT environment that includes both traditional on-premises data centers and public cloud infrastructure (e.g., AWS, Azure, Google Cloud) Experience with OpenStack At this time, Capital One will not sponsor a new applicant for employment authorization for this position. This role is Hybrid, with associates expected to consistently spend three days per week in the office. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical New York, NY: $245,900 - $280,600 for Sr Manager, Cyber Technical Riverwoods, IL: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . click apply for full job details
