Top Risk Management Executive jobs in Rockville, MD

Capital One is one of the fastest growing organizations in the world today. The growth of the business is being accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk.

The Risk Management Business Risk Office is seeking a highly motivated Risk Advisor to apply their analytical, risk, communication, and project management skills to support Technology Risk Management (TRM) and, as needed, other operational risk areas. In this role, you will contribute to TRMs overarching strategy; you will support TRM through ongoing supervision and regulatory engagements by providing counsel and thought leadership; and you will drive execution for audit and regulatory engagements. You will also be responsible for helping identify any issues related to TRMs governance and oversight processes, and for providing advice on how to address those issues.

As a key partner, you will work with the Chief Technology Risk Officer (CTRO), and other leaders across Risk Management. Through your work, you will gain a broad, general understanding of how Capital One manages technology risk and cybersecurity. You will also gain deeper knowledge in specific areas of technology risk management focus at any given moment, such as identity and access management. At the same time, you will exercise your skills in analytic rigor, problem solving and strategic thinking. Our ideal candidate will be a self motivated technology risk / cybersecurity professional with excellent analytical, organizational, and communication skills.

Responsibilities:

• Understand TRMs strategy and contribute to its evolution over time; understand how TRM executes its responsibilities and help TRM effectively communicate those activities;
• Supports TRM through ongoing supervision and routine regulatory engagements by providing counsel and thought partnership;
• Manages internal audits and regulatory exams directed to and/or impacting TRM;
• Facilitates and leads risk assessments and related activities (Critical Business Process Identification, Process Level Assessments, Risk and Control Self-Assessments, etc), which include providing advice and challenge and driving influential outcomes;
• Stays current on the changing regulatory environment and understands impacts to Technology Risk Management
• Leverages industry benchmarking and best practices to provide thought leadership and guidance to Executives and their teams on sound risk management practices;
• Analyzes data to proactively identify risks, trends, and process improvements;
• Effectively collaborates with executives, business stakeholders and other risk management professionals across all three lines of defense (e.g. Business Risk Office Partners; Audit; Enterprise Risk Management) through various risk programs and engagements;
• Monitors issue remediation, tracking, and closure;

• Sets direction, manages expectations and indirectly leads cross-functional teams
• Escalates and reports critical issues and risks to the Risk Management Business Risk Office and TRM Leadership team;

• Manages and oversees special projects and engagements in collaboration with ROCoS Leadership

Basic Qualifications:

• Bachelor's Degree or military experience
• At least 5 years of experience consulting, auditing, or working in the fields of information security, technology, or risk management
• At least 3 years of experience interacting with internal audit, federal regulators, or government agencies

Preferred Qualifications:

• 6 years of experience consulting, auditing, or working in the fields of information security, technology, or risk management
• 5 years of experience interacting with or engaging with internal audit or federal regulators
• 3 years of process or Project Management or related experience leading cross functional projects and programs
• Experience in a second-line or oversight role at a financial institution or regulatory agency
• Knowledge of supervisory expectations expressed in the FFIEC IT Handbook, Federal Reserve Supervisory Letters, Office of the Comptroller of the Currency Bulletins, or Federal Deposit Insurance Corporation Financial Institution Letters
• Professional security or risk management certifications, [Certified Risk Management Assurance (CRMA), Certified Regulatory Compliance Manager (CRCM), Certified Information Systems Security Manager (CISSM), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or Certified Risk & Information Systems Control (CRISC)]
• Excellent written and verbal communication

At this time, Capital One will not sponsor a new applicant for employment authorization for this position.

Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.

For technical support or questions about Capital One's recruiting process, please send an email to

Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.

Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).