×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Project Manager

Senior Manager, Technology Risk Oversight

Job in Richmond, Henrico County, Virginia, 23214, USA
Listing for: Capital One
Full Time position
Listed on 2026-01-04
Job specializations:
  • IT/Tech
    Cybersecurity, IT Project Manager
Job Description & How to Apply Below
Position: Senior Manager,  Technology Change Risk Oversight

Senior Manager, Technology Change Risk Oversight

Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute:
Capital One moved our entire enterprise to the public cloud over the course of five years. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity, reliability, and managing technology risk.

Technology Risk Management (TRM) is a small organization that packs a big punch. The ~100 professionals in TRM are trusted experts who oversee ~14,000 developers at Capital One. We raise the bar for excellence in cybersecurity, reliability, and tech risk. We shape strategy and decisions, challenge activities to ensure they meet our standards, and perform independent tests of our security and technology risk.

As the Senior Manager, Technology Change Risk Oversight you will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of technology processes, controls, and capabilities, including but not limited to material and high risk technology changes. You will provide subject matter expertise, oversight, and effective challenge of key Technology areas such as cloud services, enterprise architecture, cloud migrations, and overall technology deployments.

As part of the second line of defense, this position will also collaborate closely with associates in first line Cyber, Technology, the Lines of Business, as well as other second line of defense risk management offices to perform and support evaluations of the effectiveness of the firm’s controls infrastructure and offer independent advice and recommendations regarding ways to further mature the firm’s cyber risk management capabilities.

Essential

Functions (Responsibilities)
  • Provide technical leadership in assessing the practices of designing, developing, testing and implementing cloud native solutions to crucial business problems through thoughtful use of industry best practices and Capital One policy.
  • Evaluate proposed and approved cloud technical solutions for automation, resiliency, performance, scalability, and security including appropriate tradeoffs, risks and opportunities.
  • Evaluate/assess complex technological and business environment migrations to the cloud and integrated end-to-end solution options.
  • Build and maintain relationships with technical leaders, business owners, engineers and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risks are well communicated and understood by the key stakeholders.
  • Keep up-to-date on cutting edge technology, standards, protocols and tools in areas relevant to the rapidly changing environment at Capital One, specifically cloud native architecture, serverless, and emerging AWS services.
  • Demonstrate strong analytical, problem-solving, and decision-making skills.
  • Communicate and drive highly complex technology solutions to broad audiences including executives, business leaders, product managers, legal experts, security specialists and software engineers.
  • Define, structure and plan work independently.
  • Perform independent risk assessment of our cloud environment focusing on architecture, engineering, networking, governance.
  • Provide expertise and advice regarding the effectiveness of device configurations, IT architecture, or IT engineering solutions.
  • Consult with risk owners on the design and implementation or adjustment of mitigating controls associated with emerging technologies.
  • Draft and publish independent reports for risk owners, senior management, and other stakeholders regarding risks associated with new or emerging technologies.
Basic Qualifications
  • Bachelor’s Degree or equivalent military experience.
  • At least 6 years of experience managing, consulting, auditing, or working in the fields of information security or information technology.
  • At least 3 years of experience with Public Cloud implementations.
Preferred Qualifications
  • Master’s Degree in Computer Science or an Engineering discipline.
  • Professional certification (AWS Certified Solutions…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search