Sr. Manager, Technology Controls Governance - Enterprise Services Risk

Capital One
McLean, Virginia
Nov 12, 2021
Dec 11, 2021
Full Time
Center 2 (19050), United States of America, McLean, Virginia

Sr. Manager, Technology Controls Governance - Enterprise Services Risk

As a Senior Manager in the Technology Controls Governance Program in Capital One's Enterprise Services Risk team you will be responsible for working with technology, cyber, and other teams in both the first and second lines of defense to consult on controls and applying your risk and controls skills to help Enterprise Services continue to drive well-managed control environment across Technology. If you are curious and eager to learn new things, love problem solving, have a deep reverence for risk and controls and love to have fun at work, this may be the role for you!

Risk Management Senior Managers at Capital One are highly motivated risk and controls professionals with excellent analytical, organizational, and communication skills. These skills allow the Senior Manager to gain insights, and act as a change agent to influence their business partners. As Capital One evolves to meet the ever-changing technology landscape, so do our risk managers. A successful risk manager influences controls designs and overall controls framework within Technology. They will be responsible for end to end Controls Lifecycle Management from creation to deletion. The ideal candidate is also responsible for maturing the issue management process and to identify opportunities for automation to streamline the process. They are forward thinking, quick to adapt, and technologically adept.

Senior Managers have a high level of exposure across lines of business and have the opportunity to work with executives to create and implement innovative solutions to appropriately manage risks within Technology. The ideal candidate will be a highly-motivated risk or controls expert with excellent communication skills. The candidate will be detail-oriented and results focused, and will have a proven record of problem solving and collaborating with others, including direct and indirect leadership positions.

  • Manage end to end controls lifecycle management along with ensuring adherence to Enterprise Control Standard
  • Leads a blended team of internal risk professionals as they help lines of business create and update controls that duly manage the risk in the system
  • Build and manage automated reporting around risk topics to management including controls testing automation
  • Work with the Enterprise Services Risk Partners to ensure that impact of control changes on processes such as regulatory gap assessments, process and risks are thoroughly assessed and reflected in the system of record
  • Work with the technology controls testing team to ensure that testing results are adequately captured in the system of record.
  • Mature the issue management process along with building proactive issue notification capabilities
  • Apply adequate due diligence when working with lines of business on issue management during issue remediation, extension and closure
  • Will build metrics around data quality and periodically monitor to ensure data around issues, controls and testing results is complete and accurate in the system of record
  • Partner with Enterprise Services Risk Analytics to identify and implement automated solutions to enable proactive risk management
  • Supports development of content in response to Internal Audit and Regulatory agencies related to controls management
  • Assists and drives project and program delivery, including project and process management, reporting, facilitation of senior leadership meetings, drafting and reviewing materials for senior management and the Board of directors, and other governance activities.

Basic Qualifications:
  • Bachelor's Degree or Military experience
  • At least 8 years of risk management, compliance, regulatory, audit, or legal experience
  • At least 6 years of experience in controls development, controls management, and reporting activities
  • At least 8 years of information technology or cybersecurity experience

Preferred Qualifications:
  • At least 10 years of experience in responding to and interacting with internal audit or regulatory agencies
  • Experience in issue management and reporting
  • Experience with applying automation in risk management
  • People leadership experience
  • Certified in Risk & Information Systems Control (CRISC), or Certified Information Systems Auditor (CISA), or Certified Information Security Manager (CISM)
  • Experience in designing controls on Cloud platforms (AWS, GCP, or Azure)

At this time, Capital One will not sponsor a new applicant for employment authorization for this position.

No agencies please. Capital One is an Equal Opportunity Employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex, race, color, age, national origin, religion, physical and mental disability, genetic information, marital status, sexual orientation, gender identity/assignment, citizenship, pregnancy or maternity, protected veteran status, or any other status prohibited by applicable national, federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.

For technical support or questions about Capital One's recruiting process, please send an email to

Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.

Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).

Similar jobs