Senior Lead Information Security Office (ISO) Consultant
Company: Capital One
Location: San Jose
Posted on: February 1, 2025
Job Description:
Senior Lead Information Security Office (ISO) ConsultantAt
Capital One, you will help consult on initiatives, programs, and
projects to raise their game in Information Security. You are
pragmatic and practical in your understanding of risk and security,
but also willing to know when to pull in experts and escalate. You
collaborate and innovate with other teams within Capital One to
push the envelope. You are comfortable with Cloud Service
technologies like Messaging Services, Security & Access Control
Management, Identity & Access management and API Implementation and
Management. You are familiar with various Cloud computing models to
include IaaS, PaaS, and SaaS along with their architectural
differences. Security is essential to what we do here, from
protecting our customers to our associates.Responsibilities:
- Act as a central Information Security point of contact for
Platform Messaging Services.
- Coordinate and execute proactive Information Security
consulting to the business and technology teams covering
Infrastructure Security, Data Security, Vulnerability Management,
Network Architecture and Design, API security, and User Access
Management.
- Serve as an expert in Capital One's Information Security
capabilities, solutions, policies, procedures and standards.
- Influence customers to leverage security capabilities and
solutions to shift and integrate security to the left in the
development processes.
- Escalate and manage cyber security risk.
- Provide ad hoc support on special Information Security hot
topics for the business.
- Provide regular updates to executive leadership with your line
of business on the overall Information Security health and risk
environment.
- Work with line of business leadership to anticipate their
objectives and needs to better serve the line of business.
- Work with line of business to identify risks with new and
existing vendor relationships.
- Develop strategic objectives curated towards the line of
business to support Cyber initiatives.About You:
- You have a desire to work in a very fast moving, forward
leaning, and modern computing environment.
- You have a deep passion for Securing modern computing
platforms.
- You have a strong desire to continually learn about new
technologies.
- You possess strong conceptual thinking and communication
skills.
- You are able to work well under minimal supervision.
- You are a demonstrated leader with team-oriented interpersonal
skills and the ability to interface effectively with a broad range
of people and roles, including upper management, IT leaders, and
technology vendors.
- You maintain calmness and clarity of thought under pressure and
ability to maintain confidentiality.
- You have a deep understanding of strategic business objectives
and the ability to drive results toward those objectives.Basic
Qualifications:
- High School Diploma, GED or equivalent certification.
- At least 6 years of experience working in cybersecurity or
information technology.
- At least 5 years of experience providing guidance and oversight
of cyber security concepts.
- At least 5 years of experience performing cyber security risk
assessments or cyber security architecture reviews.
- At least 5 years of experience with software design,
networking, or cloud infrastructure.
- At least 4 years of experience with cloud security
engineering.
- At least 2 years of experience with Messaging systems.Preferred
Qualifications:
- Bachelor's Degree.
- 7+ years of experience in securing a public cloud environment
(e.g. AWS, GCP, Azure).
- Experience building software utilizing public cloud (e.g. AWS,
GCP, Azure).
- Familiarity with Cloud patch management practices such as
system rehydration and image management.
- Experience with Application Security.
- Experience with integrating SaaS products into an Enterprise
Environment.
- Experience with securing Container services.
- Financial services industry experience.
- Professional certifications such as AWS Certified Solutions
Architect and Certified Information Systems Security Professional
(CISSP).
- Experience in a regulated environment.At this time, Capital One
will not sponsor a new applicant for employment authorization, or
offer any immigration related support for this position (i.e. H1B,
F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, or another type of work
authorization).The minimum and maximum full-time annual salaries
for this role are listed below, by location. Please note that this
salary information is solely for candidates hired to perform work
within one of these locations, and refers to the amount Capital One
is willing to pay at the time of this posting. Salaries for
part-time roles will be prorated based upon the agreed upon number
of hours to be regularly worked.McLean, VA: $225,400 - $257,200 for
Sr Manager, Cyber TechnicalNew York, NY: $245,900 - $280,600 for Sr
Manager, Cyber TechnicalPlano, TX: $204,900 - $233,800 for Sr
Manager, Cyber TechnicalRichmond, VA: $204,900 - $233,800 for Sr
Manager, Cyber TechnicalSan Francisco, CA: $245,900 - $280,600 for
Sr Manager, Cyber TechnicalSan Jose, CA: $245,900 - $280,600 for Sr
Manager, Cyber TechnicalCandidates hired to work in other locations
will be subject to the pay range associated with that location, and
the actual annualized salary amount offered to any candidate at the
time of hire will be reflected solely in the candidate's offer
letter.This role is also eligible to earn performance based
incentive compensation, which may include cash bonus(es) and/or
long term incentives (LTI). Incentives could be discretionary or
non discretionary depending on the plan.Capital One offers a
comprehensive, competitive, and inclusive set of health, financial
and other benefits that support your total well-being. Learn more
at the . Eligibility varies based on full or part-time status,
exempt or non-exempt status, and management level.This role is
expected to accept applications for a minimum of 5 business days.
No agencies please. Capital One is an equal opportunity employer
committed to diversity and inclusion in the workplace. All
qualified applicants will receive consideration for employment
without regard to sex (including pregnancy, childbirth or related
medical conditions), race, color, age, national origin, religion,
disability, genetic information, marital status, sexual
orientation, gender identity, gender reassignment, citizenship,
immigration status, protected veteran status, or any other basis
prohibited under applicable federal, state or local law. Capital
One promotes a drug-free workplace. Capital One will consider for
employment qualified applicants with a criminal history in a manner
consistent with the requirements of applicable laws regarding
criminal background inquiries, including, to the extent applicable,
Article 23-A of the New York Correction Law; San Francisco,
California Police Code Article 49, Sections 4901-4920; New York
City's Fair Chance Act; Philadelphia's Fair Criminal Records
Screening Act; and other applicable federal, state, and local laws
and regulations regarding criminal background inquiries.
#J-18808-Ljbffr
Keywords: Capital One, San Jose , Senior Lead Information Security Office (ISO) Consultant, Administration, Clerical , San Jose, California
Didn't find what you're looking for? Search again!
Loading more jobs...