Capital One’s Technology and Data Risk Management team is seeking a Manager-level associate to join their dynamic group of approximately 200 professionals overseeing over 14,000 developers. This role involves coordinating and executing assessments to evaluate the compliance impacts of risk-taking activities and ensuring adherence to international laws and regulatory requirements. Day-to-day responsibilities include mapping complex legal and regulatory frameworks such as NIST, PCI DSS, CSF, and FFIEC guidance to internal processes, providing credible challenge to business initiatives, and conducting thorough risk assessments. The ideal candidate will have at least four years of experience in information security, technology, or risk management, with a focus on second-line oversight roles within financial institutions. Strong knowledge of domestic and international regulatory requirements, along with professional certifications like CISSP or CISM, is preferred. This position demands impeccable attention to detail, strong communication skills, and the ability to work collaboratively across various stakeholders including senior management and regulatory agencies.
Skills
PCI DSS
NIST
FFIEC
CSF
CISSP
CISM
Python
SQL
Excel
PowerPoint
JIRA
Confluence
Regulatory Reporting
Compliance Management Systems
Risk Assessment Methodologies
Cloud Security Standards
Data Privacy Laws
ISO 27001
What you'll do
Map complex legal and regulatory requirements to internal business processes.
Evaluate compliance risk of business initiatives and provide credible challenge.
Assess the applicability and impact of technology and cyber regulations.
Coordinate and execute compliance assessments for risk-taking activities.
Identify and manage compliance issues requiring investigation or follow-up.
Develop and enhance existing compliance assessment reporting for stakeholders.
What we're looking for
At least 4 years of experience in information security, technology, or risk management.
At least 3 years of experience in a second-line or oversight role at a financial institution or regulatory agency.
Strong knowledge and application of cybersecurity, technology, or compliance risk assessments.
Experience with FFIEC IT Handbook, Federal Reserve Supervisory Letters, OCC Bulletins, FDIC Financial Institution Letters.
Professional security management certifications such as CISSP or CISM.
Excellent verbal and written communication skills for stakeholder collaboration.
Ability to manage multiple projects while maintaining superior results.
Market check
Salary context
This
$164,800–$188,100
range sits above
48%
of similar postings on FindRole.
Peer median band
$150,100–$218,000
Median floor and ceiling across peers.
Typical midpoint (25–75%)
$153,250–$221,168
Middle half of comparable postings.
Based on 238 comparable postings.*
* 240 is the maximum number of comparable postings sampled.
Employer
About Capital One Financial
Capital One Financial is a bank holding company specializing in credit cards, auto loans, banking, and savings products, known for its data-driven approach to consumer and commercial finance. Industry: Financial Services & Banking
Capital One Financial currently has
489 open roles
on FindRole.
Listed pay typically runs
$197,300–$225,100
across 483 roles with salary data.
Us - Ga - Atlanta, US17 days ago
$124,600–$148,200
SAP GRC
Workiva
ITGC
SOX compliance
CI/CD
Kubernetes
AWS
Azure
Google Cloud Platform
Terraform
Docker
Python
SQL
PostgreSQL
Linux
Windows Server
NIST
ISO 27001
CISM
CISSP