Senior Manager, Cyber Risk & Analysis - Enterprise Services Risk

Senior Manager, Cyber Risk & Analysis - Enterprise Services Risk

The Enterprise Services Risk organization is expanding with a focus on attracting innovative, pioneering, collaborative, and highly skilled professionals. We operate at the forefront of risk management, providing support for novel and developing technologies, as well as critical business strategies. Diverse perspectives and experiences are valued as we work to redefine the financial sector.

As a Senior Manager on the Material Technology and Cyber Change (MTC) team, you will be part of a first‑line risk management function that assesses technology and cybersecurity risks associated with the company’s material technology changes. You will be responsible for the identification process of in‑scope initiatives including leading program delivery, people leadership, preparing monthly executive reviews, fostering partner relationships, and maintaining a high quality bar to support the enterprise Technology and Cyber Risk Strategy.

Our team manages the end‑to‑end MTC lifecycle, which includes identifying in‑scope initiatives, facilitating Targeted Risk Assessments (TRAs), and monitoring mitigation plans to enable secure and well‑managed innovation across the enterprise. This position plays a key leadership role for the risk identification process for material technology and cybersecurity initiatives.

• Lead a team of ~5 associates and contractors, including People Leadership.
• Collaborate with Technology and Cyber teams, Lines of Business, and risk management teams to identify material changes.
• Stay informed about the changing regulatory environment and its impact on our work.
• Oversee program delivery, including project and process management, reporting, and governance activities.
• Effectively articulate complex technical concepts to both technical and non‑technical stakeholders, through clear, concise, and actionable written and verbal communication.
• Participate in risk and other management forums, and champion continuous improvement of the MTC Program.
• Develop and enhance processes, tools, templates, job aides, and documents (policies, standards, procedures, guidelines).

• High School Diploma, GED or Equivalent Certification
• At least 5 years of experience in Risk Management, Process Management, Project Management, or a combination of these
• At least 5 years of experience supporting, partnering, and interacting with internal and external business clients
• At least 3 years of experience in Technology or Cyber Risk Management
• At least 1 year of People Management or Leadership experience

• Bachelor’s Degree in Information Technology/Systems, Computer Science, Engineering or a related technical field, or Military Experience.
• Risk and / or Cyber Certifications (CRISC, CISM, CRCM, CIPP, ABA Risk Mgmt Certification, CompTIA Sec+, CISSP, CEH)
• At least 6 years of experience supporting, partnering and interacting with internal stakeholders
• At least 6 years of experience in Technology or Cyber Risk Management
• At least 3 years of Financial Services industry experience
• At least 3 years of experience writing communications and presentations for leadership audience
• At least 2 years of People Management experience
• Familiarity with financial sector regulatory practices and three lines of defense

At this time, Capital One will not sponsor a new applicant for employment authorization for this position.

The minimum and maximum full‑time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part‑time roles will be prorated based upon the agreed upon number of hours to be regularly worked.

Sales Territory: $175,500 - $200,300;
McLean, VA: $193,000 - $220,300;
Richmond, VA: $175,500 - $200,300.

Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected…