|
Director, Cyber Risk and Analysis- Information Security Office - Richmond Virginia
Company: Capital One Location: Richmond, Virginia
Posted On: 05/16/2024
Plano 1 (31061), United States of America, Plano, TexasDirector, Cyber Risk and Analysis- Information Security Office -As a Director of Cyber Risk and Analysis at Capital One, you will work closely within our cyber security team, and with extended technical teams to manage and improve our processes from beginning to end, using our business' management framework, SLQ2CQ, based on Lean Enterprise and Six Sigma.We are seeking a dedicated and disciplined process and risk professional, who excels in a team environment, displays strong leadership skills, and motivates others. They must be proficient in managing and directing their own work independently, while influencing partners across the company and across multiple levels of the organization. This person will have excellent communication skills, attention to detail, strong analytical skills, quickly adapts to change, and is self motivated. As a part of the Information Security Office, you will have the opportunity to work with cross functional teams. You will do this in a collaborative environment that values your insight, encourages you to take on new responsibilities, promotes strategic thinking, and supports continuous learning and growth.Responsibilities include: - Be the process management subject matter expert that will manage, coach, and guide our team to incorporate process engineering and improvement into our daily operations and in line with our strategic direction. Your daily role will apply SLQ2CQ, Lean and Kaizen concepts, incorporate Six Sigma methodologies and tools, conduct root cause analysis, leverage Service Design methodology, utilize Agile methodologies, make use of Scrum framework, and other process management and quality strategies within your own work and the program. Must be comfortable learning and working in supporting applications, such as JIRA, Confluence, and Tableau, and become the functional SME to teach the team how to use the applications effectively.
- Create and execute on a short and long term strategic plan to further mature the department's process management and improvement program. Will involve operationalizing and maintaining the program, such as setting and managing the processes for change management, artifact review, continual process review for enhancements, effectiveness, and education.
- Lead and collaborate with various teams to drive the execution to improve, create, and validate requirements, processes, controls, and metrics to measure process efficiency and effectiveness. Will drive the projects end to end, which may include the creation and maintenance of formal process documents (e.g. procedures and diagrams), and supporting artifacts. -
- Proficiently tailor verbal and written communications to the audience's needs and levels. Articulate our program's strategy, processes and its intent, inputs and outputs, related failure modes, and measurements when representing the department in projects, meetings, reports, and communications.
- Monitor progress, collect, analyze, and measure process data and metrics. Leverage metrics to initiate or improve sustainable practices and procedures; review data for trends and gaps in the process that may require additional review and re-engineering. May include assisting teams design surveys and empathy interviews that enable feedback loops as a means of continuous process improvement.
- Manage the issue resolution process by proactively identifying and mitigating risk related to the delivery of the projects and program. Resolve complex problems, where expertise is required to interpret against policies, guidelines, requirements or processes; escalate breakdowns in the process by asking probing questions and identify and involve the right stakeholders to correct breakdowns. -
- Prepare the program and team for annual cyber assessments by working with the risk office to understand the assessment process and criteria. Analyze the program and team's gaps and create an action plan to remediate the deficiencies. - -Basic Qualifications: -
- Bachelor's Degree
- At least 7 years experience in cybersecurity or technology -
- At least 5 years experience in process management
- At least 5 years experience in risk management
- At least 5 years experience in people managementPreferred Qualifications: -
|
|