This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Senior Director, Cloud Architecture Risk Oversight. Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute. As the Sr Director,Cloud Risk Oversight, we are looking for a hands-on technical leader, focused on public cloud architecture at enterprise scale. This is a pivotal and high-impact role responsible for shaping the strategic vision and execution across multiple functions with the ability to influence how thousands of cloud systems are designed, deployed, and governed. Technical credibility, architectural judgment, and influence are critical to success.
Job Responsibility:
Represent the second line risk management function in many cloud and architecture councils to ensure an appropriate risk lens is applied to major cloud initiatives and strategic programs
Bring a passion to stay on top of cloud trends, experiment with and learn new technologies, participate in internal & external technology communities, and mentor other members of the risk management and engineering community
Lead a small but mighty team of trusted technical cloud risk advisors
Partner broadly across the enterprise to identify and assess continually evolving threats in a fast moving and complex environment
Advise architecture decisions and roadmaps across topics such as account segmentation and blast-radius containment, cloud-native service adoption, and cloud security posture management
Build and maintain relationships with technical leaders, engineers, architects, and other stakeholders to understand and evaluate implementation plans, business priorities and technical solutions to ensure risks are well communicated and understood by the key stakeholders
Identify cloud-specific threat scenarios (control plane vs. data plane, IAM abuse paths, service misconfiguration) and evaluate proposed and approved cloud technical solutions for automation, resiliency, scalability, and security including appropriate tradeoffs, risks and opportunities
Draft and communicate independent reports to inform broad audiences including engineers, executives, business leaders, product managers, board of directors, and regulators on the current cloud risk environment
Requirements:
Bachelor’s Degree or military experience
At least 5 years of public cloud experience or public cloud architecture or operations or security
At least 10 years experience of cybersecurity, software development, architecture, or infrastructure operations
Nice to have:
At least 8 years direct hands on experience with Amazon Web Services architecture, operations, security, or deployments
At least 5 years of people leadership experience
Master’s Degree in Computer Science or in an Engineering discipline
Experience leading large-scale migrations to the Public Cloud (i.e. Load Balancing, DNS, Interconnect, CDN, Compute, Networking, Storage, Security, Monitoring, etc.)
Ability to communicate clearly and to interact effectively at all levels of the organization, and to influence as warranted and appropriate to drive to consensus
Experience with identifying and communicating key risks related to cloud implementations and architectures to executives
Familiarity with controls and control frameworks (NIST Cybersecurity Framework, NIST 800-53, CIS Top 20, ISO, COBIT)
Prior experience working in financial services or other highly-regulated sectors
What we offer:
performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being