CrawlJobs Logo

Manager, Information Security Office Consultant

United States, McLean Employment contract 197300.00 - 245600.00 USD / Year · Job Posted June 30, 2026
Apply Position
Job Link Share

Job Description

At Capital One, you will help consult on initiatives, programs, and projects to raise their game in Information Security. You are pragmatic and practical in your understanding of risk and security, but also willing to know when to pull in experts and escalate. You collaborate and innovate with other teams within Capital One to push the envelope. You are comfortable with Cloud Service technologies like Storage Services, Security & Access Control Management, Container Services, and API Implementation and Management. You are familiar with various Cloud computing models to include IaaS, PaaS, and SaaS along with their architectural differences. Security is essential to what we do here, from protecting our customers to our associates.

Job Responsibility

  • Act as a central Information Security point of contact for the Enterprise Platforms Tech
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
  • Work with line of business leadership to anticipate their objectives and needs to better serve the line of business

Requirements

  • High School Diploma, GED or equivalent certification
  • At least 4 years of experience working in cybersecurity or information technology
  • At least 1 years of experience with architecture, software design, networking, and cloud infrastructure
  • At least 1 years of experience providing guidance and oversight of Security concepts
  • At least 1 years of experience performing security risk assessments and security architecture reviews

Nice to have

  • Bachelor's Degree
  • 5+ years of experience working in cybersecurity or information technology
  • 5+ years of experience with architecture, software design, networking, and cloud infrastructure
  • 4+ years of experience providing guidance and oversight of Security concepts
  • 4+ years of experience performing security risk assessments and security architecture reviews
  • 4+ years of experience in securing a public cloud environment (e.g. AWS, GCP, Azure)
  • Experience building software utilizing public cloud (e.g. AWS, GCP, Azure)
  • Familiarity with Cloud patch management practices such as system rehydration and image management
  • Experience with Artificial Intelligence security, notably Agentic workflows
  • Experience with fundamental Identity and Access Management concepts
  • Experience with Software Security Architecture
  • Experience with Application Security
  • Experience with Threat Modeling
  • Experience with Penetration Testing and/or Vulnerability Management
  • Experience with integrating SaaS products into an Enterprise Environment
  • Experience with securing Container services
  • Splunk-Fu / Enterprise Monitoring experience
  • Financial services industry experience
  • Professional certifications such as AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP)
  • Experience in Offensive and/or Defensive Security techniques
  • Experience in a regulated environment

What we offer

  • Performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • health, financial and other benefits

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Manager, Information Security Office Consultant

8 matching positions

Senior Manager, Information Security Office (AI) Consultant

At Capital One, the AIML Division is working to bring the transformative power o...
Location
Location
United States , McLean; Plano; Richmond; New York
Salary
Salary:
209000.00 - 286200.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cybersecurity or information technology
  • At least 5 years of experience providing guidance and oversight of cyber security concepts
  • At least 5 years of experience performing cyber security risk assessments or cyber security architecture reviews
  • At least 4 years in securing a public cloud environment
  • At least 3 years of experience with API security, observability, cloud access control and privacy best practices
Job Responsibility
Job Responsibility
  • Lead the development of secure, enterprise grade AI/ML and agentic AI solutions
  • Establish Ai-First SDLC practices and build scalable platforms
  • Design and implement security controls for AI/ML systems, including LLM applications
  • Conduct threat modeling, risk assessments and security reviews using frameworks such as NIST AI RMF, OWASP, and MITRE ATLAS
  • Define and enforce AI Model guardrails, safety standards, and governance policies
  • Identify and mitigate risk in open -source AI ML models
  • Build and scale processes for AI security testing, monitoring and stress validation
  • Partner with engineering, research, and security teams to deliver secure and compliant AI solutions
  • Advise senior leadership on AI cybersecurity risks, strategy, and regulatory considerations
  • Drive continuous improvement through vulnerability assessments, risk remediation, and security innovation
What we offer
What we offer
  • performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits
  • Fulltime
Read More
Arrow Right

Senior Manager, Information Security Office (ISO) Consultant

Senior Manager, Information Security Office (ISO) Consultant. At Capital One, yo...
Location
Location
United States , Plano
Salary
Salary:
209000.00 - 238500.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cybersecurity or information technology
  • At least 5 years of experience providing guidance and oversight of cyber security concepts
  • At least 5 years of experience performing cyber security risk assessments or cyber security architecture reviews
  • At least 4 years of experience with cloud security
Job Responsibility
Job Responsibility
  • Act as a central Information Security point of contact for the Global Payment Networks line of business
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Collaborating with enterprise cyber teams and tech architects in defining and driving the cyber architecture strategy and guiding principles for the architecting and designing of the modern platforms
  • Support security architecture and implementation needs for technology modernization efforts
  • Overseeing all cyber related dependencies across the multiple components being built for the modernization effort
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad-hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
What we offer
What we offer
  • comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being
  • performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • Fulltime
Read More
Arrow Right

Senior Lead Information Security Office Consultant

At Capital One, you will help consult on initiatives, programs, and projects to ...
Location
Location
United States , Plano, Texas; McLean, Virginia
Salary
Salary:
Not provided
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cybersecurity or information technology
  • At least 5 years of experience providing guidance and oversight of cybersecurity concepts
  • At least 5 years of experience performing security risk assessments or security architecture reviews
  • At least 5 years of experience with architecture, software design, networking, or cloud infrastructure
  • At least 4 years of experience with cloud security engineering
  • At least 4 years of experience in securing a public cloud environment
Job Responsibility
Job Responsibility
  • Act as a central Information Security point of contact for the Data Protection Service, Endpoint Security and Cyber Intelligence services
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
  • Work with line of business leadership to anticipate their objectives and needs to better serve the line of business
What we offer
What we offer
  • Performance based incentive compensation which may include cash bonus(es) and/or long term incentives (LTI)
  • Health, financial and other benefits that support your total well-being
  • Fulltime
Read More
Arrow Right

Senior Lead Information Security Office Consultant

As a Senior Lead Consultant in Capital One’s Cyber Information Security Office (...
Location
Location
United States , McLean
Salary
Salary:
229900.00 - 262400.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cyber security or information technology
  • At least 5 years of experience providing guidance and oversight of cyber security concepts
  • At least 4 years of experience performing cyber security risk assessments and cyber security architecture reviews
  • At least 4 years of experience with architecture, software design, networking or cloud infrastructure
Job Responsibility
Job Responsibility
  • Act as a central Information Security point of contact for a portfolio of customer servicing technology assets
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
  • Work with line of business leadership to anticipate their objectives and needs to better serve the line of business
What we offer
What we offer
  • Performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits
  • Fulltime
Read More
Arrow Right

Manager Information Security Office (ISO), Enterprise Data

Manager Information Security Office (ISO), Enterprise Data
Location
Location
United States , McLean, Virginia
Salary
Salary:
197300.00 - 225100.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 4 years of experience working in cybersecurity or information technology
  • At least 1 year of experience providing guidance and oversight of Security concepts
  • At least 1 year of experience performing security risk assessments and security architecture reviews
  • At least 1 year of experience with architecture, software design, networking, and cloud infrastructure
Job Responsibility
Job Responsibility
  • Act as a central Information Security point of contact for Capital One’s Enterprise Data organization
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering API Security, File Transfer, Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, Datalake Architecture, BI, and consumption tools, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
  • Work with line of business leadership to anticipate their objectives and needs to better serve the line of business
What we offer
What we offer
  • Performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits
  • Fulltime
Read More
Arrow Right

Manager / Senior Manager - Financial Services Consulting - Information Technology

Location
Location
Hong Kong , Hong Kong
Salary
Salary:
Not provided
Forvis Mazars
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • University degree majoring in Finance, Accounting, Business, Legal, Information Systems, Computer Science/ Engineering or related subjects
  • Minimum 4-5 years’ experience gained in professional services firms, commercial banks or other financial institute experience will be an advantage
  • Demonstrate good analytical, problem solving and presentation skills. Flexible, self-starter possessing intellectual curiosity. Effective time and project management with excellent interpersonal skills
  • Keen on career development on any of the following areas: financial services regulatory consulting, compliance, governance and internal controls, risk management, operational / technology risk management, business & system processes review, internal audit, cyber-security and business consulting
  • Interested in gaining experience in any of the following industries: Banking and capital markets (client on-boarding / KYC / AML / investment product suitability and other regulatory compliance, front office activities in products / sales channels, middle and/or back office control, operational / technology risk management – commercial banking, private banking, investment banking)
  • Asset management (distribution channels, controls and processes – prime brokerage, fund administration, fund management (retail, institutional, and/or real estate / private equity, etc.))
  • Digital asset management/ trading (Cybersecurity, custodian management, licensing requirements)
  • Insurance (underwriting, claims, reserving, Solvency II, policy administration systems – general or life insurance)
  • Payment industry (Cybersecurity, settlement and clearing)
  • Ability to identify and assess business process controls and linkage to IT systems
Job Responsibility
Job Responsibility
  • Lead a client-centric advisory team in financial services industry
  • Support the development on consulting engagement plans and project approaches, analyse client’s current business processes and understanding the risk management environment for financial institutions
  • Support the planning, execution and delivery of consulting engagements covering regulatory, operational and IT advisory with FS clients in areas such as client onboarding, KYC, AML, system architecture/ pre- or post-implementation, reviews
  • IT regulatory & licensing reviews (e.g. cybersecurity requirements on C-RAF and iCAST requirements, IS guideline, MCRA membership application, etc.)
  • Utilise your skills in the areas of structured problem solving, business analysis, analytics, design thinking and lean process improvement to help our FS clients drive profitability and performance through their business operations
  • Use of technology and data including FinTech/ RegTech/ InsuTech innovation with respect to financial institutions to promote innovation and achieve regulatory compliance
  • Support change management including the revision or formulation of new policies, systems and controls aligned with regulatory requirements and regulators’ expectations
  • Plan, execute and communicate with engagement stakeholders of the financial institutions
  • Identify current and emerging trends of regulatory requirements for the financial services sector in Hong Kong, Singapore, Mainland China and other Asian markets and global regulatory expectations
What we offer
What we offer
  • medical and dental insurance
  • life insurance
  • a 5-day working week
  • discretionary performance bonus
  • birthday leave
  • marriage leave
  • Fulltime
Read More
Arrow Right

Application and Data Security Consultant

Tier4 is looking for a Security Consultant who will be responsible for ensuring ...
Location
Location
United States , Quincy
Salary
Salary:
Not provided
tier4group.com Logo
Tier4 Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of IT experience with at least 5+ years as a Security Manager/officer
  • Bachelor's degree in Information Technology or computer science or related field or equivalent experience
  • In-depth knowledge and experience working with common regulatory framework applications related to data security, including HIPAA, HITRUST, – General Data Protection Regulation (GDPR), National Institute of Standards & Technology (NIST) standards, and similar constructs are highly desired
  • Previous knowledge and experience in designing and architecting information technology and security controls across complex and diverse networks, applications, and infrastructures are strongly preferred
  • Technical aptitude, critical thinking skills, and the ability to think outside the box
  • Demonstrated ability to solve complex information security problems, observe security risks and weaknesses, and provide security recommendations to the respective project and delivery teams
  • Ability to translate technical risk issues to business leaders and upper management
  • Excellent verbal, written, and interpersonal communication skills
  • Detail-oriented and value teamwork
  • Ability to resolve problems as they arise and handle situations expediently
Job Responsibility
Job Responsibility
  • Implement Data Security Management and Operation models
  • Establish various security compliance standards including (but not limited to) NIST(National Institute of Standards and Technology), FIPS(Federal Information Processing Standards), FedRAMP(Federal Risk and Authorization Management Program)
  • Engage with agency Privacy and Security office teams to exchange Compliance reports and obtain approvals as necessary
  • Involve with auditors as necessary to provide compliance reports as requested and implement mitigation steps as required
  • Implement process and tools for application vulnerability testing(SAST/DAST)
  • Establish and manage a vulnerability management including coordination of penetration testing and ongoing vulnerability remediation, tracking, and security compliance reporting
  • Setup requirements for penetration testing and engage with vendors and agencies to perform/report pen tests
  • Setup infrastructure audits and reports with the help of system admins and vendors as necessary
  • Maintaining the system integrity and security by following the industry standard IT Controls
  • Implement automation of systems administration and software migration for QA and Production
Read More
Arrow Right

Senior Security Consultant

We have an exciting opportunity for a Senior Security Consultant to join our gro...
Location
Location
United Kingdom , Glasgow or Reading, Berkshire
Salary
Salary:
Not provided
fsp.co Logo
FSP
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience of designing, leading and delivering cyber governance, risk and assurance outcomes
  • Strong knowledge of recognised cyber security frameworks and standards, including ISO/IEC 27001, NIS Directives, NIST, and UK Government Functional Standards
  • Experience aligning security controls to MOD requirements such as DEFSTAN 05-138, JSP 440, JSP 604 and Defence Cyber Resilience policies
  • Experience applying UK Government security and assurance frameworks, including GovAssure, the Cyber Assessment Framework (CAF), Defence Cyber Certification (DCC) and Government Standard (GovS) 007
  • Relevant academic or professional qualifications, such as, an MSc in cyber security or related specialism, Cyber Essentials Assessor, Cyber Assurance Assessor, CISM, CISSP, PCIRM or ISO/IEC 27001 Lead Implementer or Lead Auditor certification
  • Hold, or are actively working towards, Principal or Chartered Cyber Security Professional (ChCSP) status
  • Eligible to work in the UK and able to obtain and maintain UK security clearances
  • Flexibility to work from home, FSP office locations or at times visit client sites
Job Responsibility
Job Responsibility
  • Lead cyber governance, risk and compliance engagements, applying strong knowledge of cyber threats, risks, controls and mitigations to deliver effective security outcomes
  • Engage with clients to understand their threat landscape and business context, conducting risk and compliance assessments against recognised frameworks (e.g. ISO 27001, NIST, SOC 2)
  • Design, review and advise on the implementation and adoption of information security policies, standards, procedures and frameworks
  • Lead cyber and third-party risk assessments, evaluate supplier security posture, and provide risk-based recommendations for supplier selection and oversight
  • Identify control gaps, document findings, and track remediation activities to support assurance and audit outcomes
  • Produce clear, concise risk and compliance reports for executive and C-suite stakeholders, including prioritised mitigation strategies and improvement roadmaps
  • Contribute to thought leadership and continuous improvement by staying current with industry developments and sharing knowledge across the cyber security community
  • Demonstrate strong communication, stakeholder management and mentoring skills, upholding the highest standards of integrity and professionalism
What we offer
What we offer
  • A collaborative and supportive environment in which you can grow and develop your career
  • The tools and opportunity to do work you can be proud of
  • A chance to work alongside some of the best people in the industry, who always seek to share their knowledge and experience
  • Hybrid working – we empower you to make smart choices about when and where to work to achieve great results
  • Industry leading coaching and mentoring
  • Plus the excellent benefits package we offer at FSP
  • Fulltime
Read More
Arrow Right