Sr. Manager, Cyber Risk & Analysis | Retail Bank Products

Sr. Manager, Cyber Risk & Analysis | Retail Bank Premium Products & Experiences

As a Sr. Manager, Cyber Risk & Analysis within Capital One’s Business Risk Office, you will be a strategic risk partner to business leaders and senior technology executives, directly shaping our technology risk posture.

This is a high-impact leadership role where you will be on the front lines of technology innovation, specifically responsible for designing and governing the responsible implementation of AI, risk assessment for integration of acquired company technology, and other large scale architecture transformation programs. You will leverage your analytical and risk management expertise to drive meaningful outcomes, influence corporate policies and standards, and ensure the resilience of our enterprise technology.

• Strategic Risk Leadership: Act as the end‑to‑end tech and cyber risk partner for senior technology executives, providing comprehensive support to engineering organizations while driving the strategic vision for risk assessment and management programs.
• AI & Innovation Governance: Design and implement AI applications, agents, and automation workflows to enhance risk monitoring efficiency, ensuring the responsible implementation and governance.
• Policy & Control Optimization: Rationalize tech and cyber controls to align with technology processes, influencing updates to enterprise policies, standards, and control descriptions to proactively remediate exceptions.
• Program Transformation Leadership: Execute large‑scale architecture transformation programs and technology integrations, maintaining strict oversight of project scope, timelines, and deliverables.
• Stakeholder Partnership: Collaborate with Cyber, Audit, and Risk functions to ensure coverage of shared controls, fostering strong communication across all levels to influence risk identification and mitigation strategies.
• Reporting & Compliance: Serve as the primary point of contact for audit and compliance engagements, creating high‑level reporting and metrics to keep leadership informed of the overall risk environment.

• At least 5 years of experience in Cybersecurity, Technology, Consulting, Audit, or Risk Management.
• At least 3 years of People Management experience.

• Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or Certified Information Security Manager (CISM) certification.
• Certified AI Governance Professional (AIGP) certification or other relevant AI risk management certifications.
• Experience in a Large Financial Services or consulting organization.

McLean, VA: $200,700 - $229,100 for Sr. Manager, Cyber Risk & Analysis

Richmond, VA: $182,500 - $208,300 for Sr. Manager, Cyber Risk & Analysis

Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate’s offer letter.

This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan.

Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well‑being. Learn more at the Capital One Careers website. Eligibility varies based on full or part‑time status, exempt or non‑exempt status, and management level.

At this time, Capital One will not sponsor a new applicant for employment authorization for this position.

Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non‑discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug‑free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries.