1+ months

Principal Associate, Technology Risk Management

Capital One
New York, NY 10007
11 West 19th Street (22008), United States of America, New York, New York

At Capital One, were building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking. We measure our efforts by the success our customers enjoy and the advocacy they exhibit. We are succeeding because they are succeeding.                                               

Guided by our shared values, we thrive in an environment where collaboration and openness are valued. We believe that innovation is powered by perspective and that teamwork and respect for each other lead to superior results. We elevate each other and obsess about doing the right thing. Our associates serve with humility and a deep respect for their responsibility in helping our customers achieve their goals and realize their dreams. Together, we are on a quest to change banking for good.

Principal Associate, Technology Risk Management

As a Technology Risk Management professional in Capital Ones Enterprise Services (ES) Risk organization, you will apply your risk management skills to the companys Technology organization. You will support risk-based engagements across Financial Services Technology, Divisional CIO, and Cyber Security teams to develop and support best-in-class industry risk solutions in a manner that supports innovation and protects our customers, shareholders and associates. You will collaborate with second lines of defense to lead and implement risk and control tools, techniques, and frameworks for the Technology organization, as well as support your lead Technology Risk Guide (TRG) with risk-based decision making in collaboration with our first line Divisional CIO teams. Your contributions will drive organizational change through risk identification, measurement, analysis and reporting in order to better manage the companys risk in an open and collaborative environment.

Technology Risk professionals are experienced and progressive individuals that operate within a highly collaborative team environment to deliver value-added risk management services to our Technology savvy business partners. You will have a significant level of exposure across lines of business and have the opportunity to work with technology professionals to create and implement innovative solutions to identify and mitigate potential risks to the Company. Proficiency in risk management programs (ideally Technology risk-driven programs) are key to success in this role. The successful candidate will be a solid risk management professional who understands technology functions and organizations, with strong analytical, planning, strategic thinking, organizational and communication skills.


  • Assist TRG leadership in delivering against their strategy and service model

  • Serve as interdepartmental advisor, interfacing with technology lines of business and other areas such as Business Risk Offices, Compliance, Cyber Security, second line risk organizations, and Internal Audit; collaborate effectively across multiple organizations to achieve objectives.

  • Support implementing continual program enhancements based on industry standards and best practices related to risk management (especially technology risk) and aligned with Capital Ones strategic risk direction

  • Gather risk and control data and reporting; perform initial analysis or potentially evaluate data provided by team analysts

  • Implement internal risk and control governance processes

  • Build successful relationships with line of business risk offices and Cyber Security partners to understand the impact of technology risk on critical business processes

  • Manage, implement and deliver on a subset of the program deliverables

  • Manage, drive executing application risk assessments (ARA) with Engineers, Cyber Security partners and their leaders.

  • Support Risk Control and Self Assessments (RCSAs)

  • Understand, document and analyze current state capabilities regarding one or more risk methods. Leverage industry benchmarking to determine best practices and lessons learned regarding components of the risk framework.

  • Write and revise documents such as policies, standards, procedures, and guidelines. Develop and enhance processes, tools, templates, and job aides. Draft, contribute to, edit, and deliver presentations that aide in the design, development, refinement, and usage of risk methods.

Basic Qualifications:

  • Bachelors Degree or Military experience

  • At least 3 years of Risk Management Experience

  • At least 1 year of Project Management experience

  • At least 3 years of experience supporting internal business clients

Preferred Qualifications:

  • 3 years of Project Management experience leading cross functional projects in Risk

  • CISA, CRISC and/or other Industry Risk Professional Certification

  • Cloud risk, governance, control, and security experience

  • Experience executing application risk assessments (ARA)

  • Experience managing risks, governance, and controls in a DevOps environment

  • Experience managing risks, governance, and controls related to logical access at the application, platform, and network levels

At this time, Capital One will not sponsor a new applicant for employment authorization for this position.


Posted: 2020-01-15 Expires: 2020-03-15

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Principal Associate, Technology Risk Management

Capital One
New York, NY 10007

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast