Principal Risk Specialist, Identity & Access Management | Retail Bank

Capital One Financial

Actively hiring
McLean, VA · Richmond, VA Posted 30 days ago $120,800$137,900 / year
View original post Log in to save

At a glance

AI generated

TL;DR

As a Principal Risk Specialist in Capital One’s Business Risk Office, you will collaborate with business and technology stakeholders to shape the risk posture of Identity and Access Management (IAM) processes. This high-impact role involves designing responsible AI implementations while leveraging analytical skills to enforce corporate policies and ensure resilience. You will support IAM strategy and governance, conduct risk assessments, manage cross-functional projects, liaise between various teams, prepare executive reports, and identify process improvements for automation. The ideal candidate has 4+ years of experience in cybersecurity or related fields, with at least 2 years in IAM, along with relevant certifications such as CISSP, CISA, CRISC, AIGP, CIAM, and CIMP. This role addresses critical risk management needs within a large financial services organization.

Skills

Identity Governance & Administration Privileged Access Management Entitlement Management Risk Assessment Data Analysis Project Management Process Improvement Automation Single Sign-On Multi-Factor Authentication Segregation of Duties CISSP CISA CRISC CISM CIAM CIMP AIGP

What you'll do

  • Support the development and execution of identity and access risk frameworks.
  • Perform risk assessments to identify trends and reduce residual risks in IAM.
  • Manage cross-functional projects ensuring scope, timelines, and regulatory compliance.
  • Act as a liaison between technology teams, cyber, vendors, and business partners.
  • Prepare executive-level presentations on IAM risk posture and remediation status.
  • Identify opportunities for automation to streamline business processes efficiently.
  • Provide industry expertise on IAM concepts like SSO, MFA, and Segregation of Duties.

What we're looking for

  • At least 4 years of experience in Cybersecurity, Technology, Consulting, Audit, or Risk Management.
  • Minimum 2 years of hands-on experience with Identity and Access Management (IAM).
  • Possession of cybersecurity certifications such as CISSP, CISA, CRISC, or CISM.
  • Certified Identity and Access Manager (CIAM) or Certified Identity Management Professional (CIMP).
  • Experience in a large financial services organization or Big4 consulting firm.
  • Proficiency in AI governance with AIGP certification or equivalent AI risk management credentials.

Market check

Salary context

This $120,800–$137,900 range sits above 17% of similar postings on FindRole.

Peer median band

$149,900$215,000

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$144,500$229,759

Middle half of comparable postings.

Based on 240 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About Capital One Financial

Capital One Financial is a bank holding company specializing in credit cards, auto loans, banking, and savings products, known for its data-driven approach to consumer and commercial finance. Industry: Financial Services & Banking

Capital One Financial currently has 489 open roles on FindRole.

Listed pay typically runs $197,300–$225,100 across 483 roles with salary data.

Most-posted roles

View all roles at Capital One Financial

More like this

Similar roles

Principal Associate, Risk Specialist

Capital One Financial

Richmond, Va, US 42 days ago $120,800$137,900
Microsoft Excel Google Sheets FCPA BBA CI/CD Kubernetes AWS Python SQL PostgreSQL Tableau Power BI JIRA Confluence GitHub Mandate Time Away Compliance Program Global Payment Networks Business风险管理 过程管理 数据分析技能

Head of Identity & Access Management (IAM) Governance, Risk & Operations

Northern Trust

Locations Chicago, Illinois, US 22 days ago $205,700$360,100
IAM AI Agentic AI Privileged Access Management (PAM) Authentication and access control SailPoint Saviynt CyberArk Okta Cloud IAM platforms CI/CD Kubernetes Docker Python Go PostgreSQL AWS Azure Google Cloud Terraform Prometheus Grafana