CrawlJobs Logo
Capital One Logo Capital One · IT - Administration

Manager Information Security Office (ISO), Enterprise Data

United States, McLean, Virginia Employment contract 197300.00 - 225100.00 USD / Year · Job Posted June 15, 2026
Apply Position
Job Link Share

Job Description

Manager Information Security Office (ISO), Enterprise Data

Job Responsibility

  • Act as a central Information Security point of contact for Capital One’s Enterprise Data organization
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering API Security, File Transfer, Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, Datalake Architecture, BI, and consumption tools, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
  • Work with line of business leadership to anticipate their objectives and needs to better serve the line of business

Requirements

  • High School Diploma, GED or equivalent certification
  • At least 4 years of experience working in cybersecurity or information technology
  • At least 1 year of experience providing guidance and oversight of Security concepts
  • At least 1 year of experience performing security risk assessments and security architecture reviews
  • At least 1 year of experience with architecture, software design, networking, and cloud infrastructure

Nice to have

  • Bachelor’s Degree
  • 3+ years of experience with Software Security Architecture, Application Security, Threat Modeling, Penetration Testing, or Vulnerability Management
  • 3+ years of experience in securing a public cloud environment (AWS, GCP, Azure)
  • 1+ year of experience building software utilizing public cloud (AWS, GCP, Azure)
  • 1+ year of experience with Cloud patch management practices such as system rehydration and image management
  • 1+ year of experience utilizing Agile methodologies
  • 1+ year of experience with integrating SaaS products into an Enterprise Environment
  • 1+ year of experience with securing Container services
  • 1+ year of experience Splunk-Fu or Enterprise Monitoring experience
  • 1+ year of experience in Offensive and Defensive Security techniques
  • 1+ year of experience in a regulated environment
  • Financial services industry experience
  • Professional certifications such as AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP)

What we offer

  • Performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits
Capital One - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Manager Information Security Office (ISO), Enterprise Data

8 matching positions

Senior Manager, Information Security Office (ISO) Consultant

Senior Manager, Information Security Office (ISO) Consultant. At Capital One, yo...
Location
Location
United States , Plano
Salary
Salary:
209000.00 - 238500.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cybersecurity or information technology
  • At least 5 years of experience providing guidance and oversight of cyber security concepts
  • At least 5 years of experience performing cyber security risk assessments or cyber security architecture reviews
  • At least 4 years of experience with cloud security
Job Responsibility
Job Responsibility
  • Act as a central Information Security point of contact for the Global Payment Networks line of business
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Collaborating with enterprise cyber teams and tech architects in defining and driving the cyber architecture strategy and guiding principles for the architecting and designing of the modern platforms
  • Support security architecture and implementation needs for technology modernization efforts
  • Overseeing all cyber related dependencies across the multiple components being built for the modernization effort
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad-hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
What we offer
What we offer
  • comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being
  • performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • Fulltime
Read More
Arrow Right

Global Chief Information Security Officer

The Global Chief Information Security Officer (GCISO) will lead Allied Universal...
Location
Location
United States , Irvine
Salary
Salary:
275000.00 - 350000.00 USD / Year
aus.com Logo
Allied Universal®
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in computer science, Information Technology, cybersecurity, or a related field
  • Minimum of fifteen (15) years of progressive experience in cybersecurity
  • Minimum of seven (7) years in a senior management role in an information security function
  • Experience in managing, responding to, and mitigating cyber incidents
  • Experience or familiarity with government contracting and public and private company cybersecurity reporting requirements
  • Hands-on cyber incident response coordination and oversight experience
  • Expertise in risk-based frameworks (NIST CSF, ISO 27001, SOC 2, CMMC, NIST 800-171) and familiarity with applicable regulatory regimes (SEC, GDPR, state breach laws, etc.)
  • Proven ability to engage with CEO, Board of Directors, and Executive Team on cybersecurity strategy and governance
  • Ability to operate effectively as both strategist and practitioner, a player-coach who drives global cybersecurity direction while engaging hands-on to guide, mentor, and resolve complex technical and operational challenges
  • Strong leadership skills as well as the ability to work and communicate (verbal, written, and interpersonal) effectively with other leadership and their teams
Job Responsibility
Job Responsibility
  • Develop and execute a global, risk-based cybersecurity strategy and program aligned with Allied Universal's business objectives
  • Establish, communicate, and oversee governance of enterprise-wide cybersecurity policies, standards, and controls that are appropriate for the company's diverse global operations
  • Lead, mentor and manage Regional Cybersecurity Leaders to promote consistency, accountability, and operational effectiveness across all regions
  • Define and monitor key risk indicators, cybersecurity metrics, and maturity objectives to inform executive decision-making and drive ongoing program improvement
  • Oversee global monitoring, detection, and response capabilities that provide 24×7 visibility into potential cyber risks and support timely containment activities
  • Identify and assess emerging threats, technologies, and vulnerabilities to support informed planning and risk mitigation efforts
  • Provide recommendations regarding cybersecurity investments and resource allocation, helping prioritize efforts based on risk, business impact, and value
  • Foster a culture of cybersecurity awareness, ownership, and accountability across all functions and geographies
  • Coordinate, develop, and implement programs designed to train Allied Universal's workforce regarding the company's cybersecurity requirements, including applicable cybersecurity laws and requirements and responding to evolving cybersecurity threats
  • Evaluate emerging threats and vulnerabilities, driving continuous improvement of the company's cybersecurity posture as appropriate
What we offer
What we offer
  • Medical, dental, vision, supplemental income plan with a company match, basic life, AD&D, and disability insurance
  • Eight paid holidays annually, five sick days, and four personal days
  • Executive Flex Vacation Plan
  • Fulltime
Read More
Arrow Right

Global Chief Information Security Officer

The Global Chief Information Security Officer (GCISO) will lead Allied Universal...
Location
Location
United States , Irvine
Salary
Salary:
275000.00 - 350000.00 USD / Year
aus.com Logo
Allied Universal®
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in computer science, Information Technology, cybersecurity, or a related field
  • Minimum of fifteen (15) years of progressive experience in cybersecurity
  • Minimum of seven (7) years in a senior management role in an information security function
  • Experience in managing, responding to, and mitigating cyber incidents
  • Experience or familiarity with government contracting and public and private company cybersecurity reporting requirements
  • Hands-on cyber incident response coordination and oversight experience
  • Expertise in risk-based frameworks (NIST CSF, ISO 27001, SOC 2, CMMC, NIST 800-171) and familiarity with applicable regulatory regimes (SEC, GDPR, state breach laws, etc.)
  • Proven ability to engage with CEO, Board of Directors, and Executive Team on cybersecurity strategy and governance
  • Ability to operate effectively as both strategist and practitioner, a player-coach who drives global cybersecurity direction while engaging hands-on to guide, mentor, and resolve complex technical and operational challenges
  • Strong leadership skills as well as the ability to work and communicate (verbal, written, and interpersonal) effectively with other leadership and their teams
Job Responsibility
Job Responsibility
  • Develop and execute a global, risk-based cybersecurity strategy and program aligned with Allied Universal's business objectives
  • Establish, communicate, and oversee governance of enterprise-wide cybersecurity policies, standards, and controls that are appropriate for the company's diverse global operations
  • Lead, mentor and manage Regional Cybersecurity Leaders to promote consistency, accountability, and operational effectiveness across all regions
  • Define and monitor key risk indicators, cybersecurity metrics, and maturity objectives to inform executive decision-making and drive ongoing program improvement
  • Oversee global monitoring, detection, and response capabilities that provide 24×7 visibility into potential cyber risks and support timely containment activities
  • Identify and assess emerging threats, technologies, and vulnerabilities to support informed planning and risk mitigation efforts
  • Provide recommendations regarding cybersecurity investments and resource allocation, helping prioritize efforts based on risk, business impact, and value
  • Foster a culture of cybersecurity awareness, ownership, and accountability across all functions and geographies
  • Coordinate, develop, and implement programs designed to train Allied Universal's workforce regarding the company's cybersecurity requirements, including applicable cybersecurity laws and requirements and responding to evolving cybersecurity threats
  • Evaluate emerging threats and vulnerabilities, driving continuous improvement of the company's cybersecurity posture as appropriate
What we offer
What we offer
  • Medical, dental, vision, supplemental income plan with a company match, basic life, AD&D, and disability insurance
  • Eight paid holidays annually, five sick days, and four personal days
  • Executive Flex Vacation Plan
  • annual bonus
  • equity package
  • Fulltime
Read More
Arrow Right

Information Security Officer

The Information Security Officer will be responsible for the development, implem...
Location
Location
France , Tassin-la-Demi-Lune
Salary
Salary:
Not provided
lumapps.com Logo
LumApps
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
  • 5+ years of experience in information security, risk management, or IT auditing
  • Deep understanding of network security, cloud security (GCP/Azure), IAM (Identity and Access Management)
  • Ability to translate complex technical risks into "business language" for executive leadership
  • A calm, analytical approach to high-pressure crisis situations
  • Absolute commitment to ethics and confidentiality
Job Responsibility
Job Responsibility
  • Develop and maintain an enterprise-wide information security strategy and roadmap
  • Create, document, and enforce security policies, standards, and procedures (e.g., Access Control, Data Encryption, Incident Response)
  • Lead regular risk assessments and vulnerability audits
  • coordinate with department heads to mitigate identified risks
  • Ensure the organization meets regulatory requirements such as SOC2 and ISO 27001
  • Design and oversee security training programs for all employees to reduce human-factor risks like phishing
  • Evaluate the security posture of third-party vendors and supply chain partners
  • Customers main point of contact for security requests
What we offer
What we offer
  • Hybrid work model – 2 days at the office, 3 days remote
  • RTT days – ~10 extra days off per year
  • Meal vouchers (SWILE) + free snacks & coffee
  • Yoga classes – Take a mindful break in our Paris office
  • Supportive parental leave and family moments — yes, even a Christmas party for your kids !
  • Health insurance (ALAN) – 60% covered + full life & disability cover
  • Afterworks, team celebrations & seasonal parties
  • Equipment
  • French & English lessons, professional development & access to Leeto CSE
  • Fulltime
Read More
Arrow Right

Chief Information Security Officer

Location
Location
Egypt , New Cairo
Salary
Salary:
Not provided
ethicshr.com Logo
Ethics HR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s/Master’s degree in Information Security, Computer Science, Engineering, or related field from a reputable university
  • 12-15+ years of progressive experience in information security, cybersecurity, or technology risk roles, preferably in banking or financial services
  • Strong knowledge of Central Bank of Egypt cybersecurity frameworks, digital banking guidelines, and financial-sector regulations
  • Deep understanding of security technology, network security, IAM, application security, and SOC operations
  • Experience overseeing incident response, security architecture, and enterprise-wide risk management
  • Professional certifications preferred (CISSP, CISM, CRISC, CCSP or equivalent)
  • Strong knowledge of international standards like ISO 27001/27002 and global best practices for financial data protection
  • Strong leadership, communication, and stakeholder management skills with the ability to influence senior executives and steer enterprise-level decisions
Job Responsibility
Job Responsibility
  • Define and execute the bank’s enterprise information security strategy in alignment with the business and regulatory requirements
  • Establish security governance frameworks, policies, and standards across all technology and business functions
  • Oversee cybersecurity programs including threat detection, incident response, vulnerability management, and security operations
  • Lead enterprise-wide technology risk management, ensuring effective identification, assessment, and mitigation of risks
  • Ensure full compliance with Central Bank of Egypt cybersecurity mandates, digital banking requirements, and data protection regulations
  • Develop and manage the Cloud Security Architecture (e.g., AWS, Azure) strategy, ensuring secure configuration and compliance for all digital infrastructure
  • Establish Security Metrics and Key Risk Indicators (KRIs) for regular reporting to the Board and Executive Committee, demonstrating the effectiveness of the security program
  • Implement and govern API Security standards and best practices to protect data exchange within the digital ecosystem and external partners
  • Formally manage and sign off on outsourcing security agreements (third-party risk) to meet specific CBE requirements for external service providers
  • Coordinate internal and external audits, penetration tests, and security assessments
Read More
Arrow Right

Director of Information Security

The Director of Information Security is responsible for the design, development ...
Location
Location
United States , Mesa
Salary
Salary:
Not provided
verramobility.com Logo
Verra Mobility
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree from an accredited university
  • 10 years of progressive technology experience
  • Minimum of 5 years of experience in a cybersecurity engineering or architecture leadership role
  • The ability to motivate and lead a team of cybersecurity staff
  • Articulate with strong business acumen and executive presence
  • Foster and build a collaborative working relationship with various stakeholders
  • Expert in information security management, and business risk management
  • Ability to develop and maintain relationships with senior leaders at Verra Mobility and with customers, up to and including C-level executives
  • Must be adept at developing senior management presentations, enterprise communications, and whitepapers
  • Must be proficient in leading cross-functional teams of senior employees to achieve objectives
Job Responsibility
Job Responsibility
  • Responsible for the planning, design and implementation of security measures created to safeguard access to resources, enterprise networks, computer systems, and data elements
  • Setting the strategy for the enterprise cybersecurity solutions
  • Configure, deploy, fine tune, and monitor SIEM, WAF, Firewall, Zero-Trust, IAM, MFA, EPP, SOAR, Vulnerability Management, Threat Intelligence, DLP, CASB, Secure Web & Email Gateway
  • Stay abreast of industry best practices in risk management techniques and integrate new methods and tools as appropriate
  • Monitor vendor and third-party security reports/lists and proactively patch vulnerabilities
  • Work with business line executives to provide visibility into the security risks with a standard risk management approach to track, mitigate and report on the risks
  • Engage with internal and external partners to help design, test, and implement state-of-the-art secure operating systems, applications, networks, and database products/solutions
  • Lead and participate in security operations support and incident management
  • Oversee individual contributors such as security engineers to provide them with clear vision and goals so that cybersecurity is seen as an integral component of enterprise architecture and portfolio management
  • Serve as the cybersecurity subject matter expert by providing guidance and consulting services to IT teams and business units
  • Fulltime
Read More
Arrow Right

Chief Information Security Officer

We are seeking an experienced Chief Information Security Officer to lead our inf...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
sokin.com Logo
Sokin
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years in information security with 5+ years in senior security leadership roles
  • Experience in regulated financial services (payments, banking, or fintech)
  • Track record of building and leading security teams in scale-up environments
  • Experience with FCA regulation, PCI-DSS compliance, and financial services audits
  • Hands-on experience with security incident response and crisis management
  • Deep knowledge of AWS security services (GuardDuty, Security Hub, WAF, KMS, CloudTrail, Config)
  • Experience with containerised environments (EKS/Kubernetes) and serverless security
  • Strong understanding of network security, zero trust architecture, and micro-segmentation
  • Proficiency with SIEM platforms (Splunk, Datadog Security, or equivalent)
  • Knowledge of application security tools: Wiz, SonarQube, Burp Suite, OWASP ZAP
Job Responsibility
Job Responsibility
  • Define and execute the enterprise information security strategy aligned with business objectives
  • Establish and maintain the Information Security Management System (ISMS) to support constant certification readiness with PCI DSS, ISO 27001 and SOC2
  • Own security policies, standards, and procedures across the organisation
  • Report to the Board and senior leadership on security posture, risk exposure and programme maturity
  • Manage security budget and resource allocation
  • Lead enterprise security risk assessments and maintain the infosec item on the risk register
  • Ensure compliance with FCA operational resilience requirements and SYSC guidelines
  • Maintain PCI-DSS Level 1 compliance across payment processing infrastructure
  • Oversee GDPR, UK Data Protection Act, and international privacy compliance
  • Manage relationships with external auditors, penetration testers, and regulatory bodies
What we offer
What we offer
  • Competitive salary and equity participation
  • Hybrid working with flexibility
  • Private healthcare
  • Pension contribution
  • Professional development budget
  • Opportunity to shape security strategy at a high-growth fintech
Read More
Arrow Right

Security Engineering Manager

The Security Engineering Manager will serve as Chief Information Officer (CIO) o...
Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's / Master's Degree in Statistics, Mathematics, Computer Science, Cybersecurity, Information Systems or related field
  • Several years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), and information technology
  • Deep knowledge of enterprise compliance frameworks (e.g., NIST CSF, ISO 27001, GDPR, PCI DSS and DORA), and risk management practices
  • Willing to obtain the PCF-49 role as established by the Central Bank of Ireland.
Job Responsibility
Job Responsibility
  • Design, develop and implement an IT governance framework, including policies and procedures and roles and responsibilities, to deliver the regulated entity's business strategies and manage effectively IT risks
  • Be up to date with all regulatory requirements of the EBA, ECB and CBI related to IT Security in the financial services sector and work closely with Legal and Compliance teams to ensure the regulated entity’s IT program, platform and systems comply with all applicable legal requirements, regulatory obligations, and governance codes, including data protection, data privacy and financial services regulations
  • Oversee outsourcing relationships and manage vendor relationships with affiliated and third-party IT service providers and suppliers - own, negotiate and review SLAs
  • track and monitor service levels against SLAs, and address with senior management
  • ensure contracts and SLAs are up-to-date to align with our active requirements, risks, policies and standards, and are on commercial terms that deliver value for money
  • Responsible for overseeing the provision of IT infrastructure services for employees of the regulated entity (including remote connectivity for employees), including office infrastructure, network support, IT security and telecommunications, maintenance and support in partnership with facilities management
  • Prepare clearly defined monthly operational KPIs and strategic performance metrics on all aspects of the IT program for review with senior management, identify trends and items of concern, and escalate issues to senior management and/or board. As a result of this monitoring, prioritize and address any IT audit matters or risk issues as may arise in the course of good governance or supervision.
  • Fulltime
Read More
Arrow Right