CrawlJobs Logo
Capital One Logo Capital One · IT - Administration

Senior Manager, Information Security Office (ISO) Consultant

United States, Plano 209000.00 - 238500.00 USD / Year · Job Posted March 04, 2026
Apply Position
Job Link Share

Job Description

Senior Manager, Information Security Office (ISO) Consultant. At Capital One, you will help consult on initiatives, programs, and projects to raise their game in Information Security. You are pragmatic and practical in your understanding of risk and security, but also willing to know when to pull in experts and escalate. You collaborate and innovate with other teams within Capital One to push the envelope. You are comfortable with Cloud Service technologies like Storage Services, Security & Access Control Management, Container Services, and API Implementation and Management. You are familiar with various Cloud computing models to include IaaS, PaaS, and SaaS along with their architectural differences. Security is essential to what we do here, from protecting our customers to our associates.

Job Responsibility

  • Act as a central Information Security point of contact for the Global Payment Networks line of business
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Collaborating with enterprise cyber teams and tech architects in defining and driving the cyber architecture strategy and guiding principles for the architecting and designing of the modern platforms
  • Support security architecture and implementation needs for technology modernization efforts
  • Overseeing all cyber related dependencies across the multiple components being built for the modernization effort
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad-hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
  • Work with line of business leadership to anticipate their objectives and needs to better serve the line of business
  • Support the team on collectively mapping technologies to a standardized framework in order to identify and execute on best practices in risk reduction through the configuration of cybersecurity tools and platforms
  • Support the development, modification, and use of capability, risk, or threat classification frameworks and standardization methodologies to facilitate the conduct of correlative capability, maturity, and effectiveness evaluations
  • Support data validation and communications on the impact of identified operational, compliance, process, control, and tooling gaps and potential remediation courses of action to multiple audiences, including leadership, to support the enhancement of their cybersecurity postures

Requirements

  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cybersecurity or information technology
  • At least 5 years of experience providing guidance and oversight of cyber security concepts
  • At least 5 years of experience performing cyber security risk assessments or cyber security architecture reviews
  • At least 4 years of experience with cloud security

Nice to have

  • Bachelor’s Degree
  • 7+ years of experience in securing a public cloud environment (AWS, GCP, Azure)
  • 6+ years of cyber security advisory and technology consulting experience
  • 6+ years of experience in Cyber Risk Management
  • 3+ years of experience on cryptography, HSMs and similar systems
  • Knowledge of HPNS, ATM, Mainframe technologies and other payment networks infrastructure technologies
  • Experience in security integration for Mergers and Acquisitions
  • Experience with PCI and Payment Network Compliance
  • Professional certifications AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP)

What we offer

  • comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being
  • performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
Capital One - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Manager, Information Security Office (ISO) Consultant

8 matching positions

India Cyber Controls Lead - Senior Vice President

The India Cyber Controls Lead (CCL) is a senior management level position respon...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of relevant experience
  • Demonstrable information security risk knowledge based on working in similar environments and situations
  • Excellent verbal and written communication skills and ability to comfortably interact with senior management as well as external agencies and regulators
  • Advanced Microsoft Office skills
  • Demonstrated ability to collaborate with a variety of analytical groups and service delivery organizations
  • Advanced analytical and problem solving skills
  • Consistently demonstrates clear and concise written and verbal communication
  • Proficient in interpreting and applying policies, standards and procedures
  • Demonstrated ability to remain unbiased in a diverse working environment
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Manage a large/complex team or multiple teams, overseeing resources, budget, policy formation and short to medium term planning
  • Manage and support risk and control programs for the organization including working with global teams to effectively deliver quality information security services to businesses in India
  • Manage and validate deliverables of all Information Security (IS) programs, ensuring closure per agreed timelines and goals
  • Perform Business Consulting Activities on IS topics, and ensure Information Security Officer (ISO) consulting services are performed
  • Conduct cost-benefit analysis to justify IS investment, and build the IS team by promoting partnerships, and marketing IS developments
  • Partner with Global Information Security Officers and Global Information Security Program Managers to improve processes and reduce risk
  • Ensure risks are identified, assessed, mitigated and controlled, and assist Security Incident Response Teams as the Business IS Consultant
  • Ensure Control Preparedness and control effectiveness, as part of the Audit preparedness exercise, ensuring IS programs are audit ready
  • Manage critical regulatory interactions and assessments making optimum use of available resources
  • Ensure CISO presence in appropriate country forums and conduct regulatory required meetings and discussions
  • Fulltime
Read More
Arrow Right

Senior Lead Secure by Design

We are seeking a Secure by Design professional to lead technically orientated se...
Location
Location
India , Pune
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive professional experience in information technology and cyber security, with strong capability in securing Office IT products and services
  • Demonstrated expertise with Microsoft technologies, including O365 Security & Compliance, Copilot, Microsoft Defender, Azure and cloud productivity ecosystems
  • Strong understanding of AI security and governance, including LLM risk management, prompt security and secure enterprise AI deployment
  • Solid background in enterprise risk management across cloud, Office IT and AI-related environments
  • Proficient in agile ways of working, modern cloud service consumption models and identity management in collaboration ecosystems
  • Ability to communicate complex technical matters to diverse non‑technical business stakeholders clearly and effectively
  • Holds relevant qualifications such as CISSP, CISM, CISA, CRISC, ISO 27001 LA, GIAC, TOGAF or SABSA
  • Minimum 5 years of experience in cyber security, 10+ years with Microsoft Office 365 and related services, and 5+ years in cloud security
Job Responsibility
Job Responsibility
  • Deliver technically focused security assessments for OIT products and services, ensuring alignment to secure by design principles
  • Define, communicate and oversee implementation of security requirements for new and existing services
  • Provide expert security design consultancy to architecture, delivery and operational teams across markets and group entities
  • Evaluate risks and compliance status of Office IT products, cloud services and AI-driven platforms, ensuring mitigation to acceptable levels
  • Guide suppliers and third parties in meeting Vodafone’s security expectations and standards
  • Support agile teams by coaching Security Champions and managing external security consultancy resources
  • Influence a collaborative approach that positions security as a business enabler
What we offer
What we offer
  • Opportunity to influence global cyber security practices across multiple markets and functions
  • Work on cutting-edge technologies including cloud, AI and enterprise collaboration platforms
  • Exposure to cross-functional global teams and high-impact security governance
  • Ability to shape secure solutions for products used by millions globally
Read More
Arrow Right

Director of Information Security

The Director of Information Security is responsible for the design, development ...
Location
Location
United States , Mesa
Salary
Salary:
Not provided
verramobility.com Logo
Verra Mobility
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree from an accredited university
  • 10 years of progressive technology experience
  • Minimum of 5 years of experience in a cybersecurity engineering or architecture leadership role
  • The ability to motivate and lead a team of cybersecurity staff
  • Articulate with strong business acumen and executive presence
  • Foster and build a collaborative working relationship with various stakeholders
  • Expert in information security management, and business risk management
  • Ability to develop and maintain relationships with senior leaders at Verra Mobility and with customers, up to and including C-level executives
  • Must be adept at developing senior management presentations, enterprise communications, and whitepapers
  • Must be proficient in leading cross-functional teams of senior employees to achieve objectives
Job Responsibility
Job Responsibility
  • Responsible for the planning, design and implementation of security measures created to safeguard access to resources, enterprise networks, computer systems, and data elements
  • Setting the strategy for the enterprise cybersecurity solutions
  • Configure, deploy, fine tune, and monitor SIEM, WAF, Firewall, Zero-Trust, IAM, MFA, EPP, SOAR, Vulnerability Management, Threat Intelligence, DLP, CASB, Secure Web & Email Gateway
  • Stay abreast of industry best practices in risk management techniques and integrate new methods and tools as appropriate
  • Monitor vendor and third-party security reports/lists and proactively patch vulnerabilities
  • Work with business line executives to provide visibility into the security risks with a standard risk management approach to track, mitigate and report on the risks
  • Engage with internal and external partners to help design, test, and implement state-of-the-art secure operating systems, applications, networks, and database products/solutions
  • Lead and participate in security operations support and incident management
  • Oversee individual contributors such as security engineers to provide them with clear vision and goals so that cybersecurity is seen as an integral component of enterprise architecture and portfolio management
  • Serve as the cybersecurity subject matter expert by providing guidance and consulting services to IT teams and business units
  • Fulltime
Read More
Arrow Right

Information Security Officer

The Information Security Officer is a senior level professional position respons...
Location
Location
Canada , Mississauga
Salary
Salary:
120800.00 - 170800.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of relevant experience as an ISO officer
  • Proficiency in application, architecture, information, and cyber security
  • Proficiency in one or more: GCP, AWS and Azure
  • Advanced proficiency with Microsoft Office tools and software
  • Consistently demonstrates clear and concise written and verbal communication
  • 5-10 years of experience in Application Security and/or Security Architecture
  • 5-10 years of experience Public & Private Cloud Security
  • Bachelor’s degree/University degree in Information Security/Computer Science/Electrical, Mechanical Engineering /Information Technology or equivalent experience
  • Master’s degree preferred
  • Professional certifications, such as CISSP and CSSLP, or willingness to obtain certification within 12-18 months of start date.
Job Responsibility
Job Responsibility
  • Perform security reviews on SaaS and PaaS products
  • Performing security assessment on Saas & Paas
  • Ability to engage in deep technical discussions with other Engineering groups, as well as ability to convey the same concepts and issues at an elevated level to senior leadership
  • Ability to execute technical responsibilities, including, Design / Architecture reviews, Code / Configuration reviews and vulnerability assessment
  • Develops security architecture, strategy, planning, and problem-solving solutions on an enterprise level
  • Identify opportunities to automate and standardize information security controls and for the supported groups
  • Resolve any vulnerabilities or issues detected in an application or infrastructure
  • Analyze source code to mitigate identified weaknesses and vulnerabilities within the system
  • Review and validate automated testing results and prioritize actions that resolve issues based on overall risk
  • Scan and analyze applications with automated tools, and perform manual testing if necessary
  • Fulltime
Read More
Arrow Right

Senior Security Consultant

We have an exciting opportunity for a Senior Security Consultant to join our gro...
Location
Location
United Kingdom , Glasgow or Reading, Berkshire
Salary
Salary:
Not provided
fsp.co Logo
FSP
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience of designing, leading and delivering cyber governance, risk and assurance outcomes
  • Strong knowledge of recognised cyber security frameworks and standards, including ISO/IEC 27001, NIS Directives, NIST, and UK Government Functional Standards
  • Experience aligning security controls to MOD requirements such as DEFSTAN 05-138, JSP 440, JSP 604 and Defence Cyber Resilience policies
  • Experience applying UK Government security and assurance frameworks, including GovAssure, the Cyber Assessment Framework (CAF), Defence Cyber Certification (DCC) and Government Standard (GovS) 007
  • Relevant academic or professional qualifications, such as, an MSc in cyber security or related specialism, Cyber Essentials Assessor, Cyber Assurance Assessor, CISM, CISSP, PCIRM or ISO/IEC 27001 Lead Implementer or Lead Auditor certification
  • Hold, or are actively working towards, Principal or Chartered Cyber Security Professional (ChCSP) status
  • Eligible to work in the UK and able to obtain and maintain UK security clearances
  • Flexibility to work from home, FSP office locations or at times visit client sites
Job Responsibility
Job Responsibility
  • Lead cyber governance, risk and compliance engagements, applying strong knowledge of cyber threats, risks, controls and mitigations to deliver effective security outcomes
  • Engage with clients to understand their threat landscape and business context, conducting risk and compliance assessments against recognised frameworks (e.g. ISO 27001, NIST, SOC 2)
  • Design, review and advise on the implementation and adoption of information security policies, standards, procedures and frameworks
  • Lead cyber and third-party risk assessments, evaluate supplier security posture, and provide risk-based recommendations for supplier selection and oversight
  • Identify control gaps, document findings, and track remediation activities to support assurance and audit outcomes
  • Produce clear, concise risk and compliance reports for executive and C-suite stakeholders, including prioritised mitigation strategies and improvement roadmaps
  • Contribute to thought leadership and continuous improvement by staying current with industry developments and sharing knowledge across the cyber security community
  • Demonstrate strong communication, stakeholder management and mentoring skills, upholding the highest standards of integrity and professionalism
What we offer
What we offer
  • A collaborative and supportive environment in which you can grow and develop your career
  • The tools and opportunity to do work you can be proud of
  • A chance to work alongside some of the best people in the industry, who always seek to share their knowledge and experience
  • Hybrid working – we empower you to make smart choices about when and where to work to achieve great results
  • Industry leading coaching and mentoring
  • Plus the excellent benefits package we offer at FSP
  • Fulltime
Read More
Arrow Right
New

Corporate Real Estate Associate

Please edit this JD before posting and ensure clients details are deleted. The C...
Location
Location
United States , Chicago
Salary
Salary:
Not provided
myn.co.uk Logo
Myn
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • real estate associate experience
  • joint ventures
  • acquisitions and dispositions
  • real estate m&a
  • real estate financing
  • commercial leasing
  • legal drafting
  • development projects
Job Responsibility
Job Responsibility
  • The Chicago Real Estate Practice is seeking highly qualified associates to join our team. Our practice spans the full spectrum of complex real estate transactions, including joint ventures, development projects, acquisitions, dispositions, real estate M&A, financings, and commercial leasing.
  • Fulltime
Read More
Arrow Right
New

Sr Commission Analyst

Location
Location
United States , Overland Park
Salary
Salary:
Not provided
https://www.t-mobile.com Logo
T-Mobile
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma/GED (Required)
  • 4-7 years Operations or Commissions experience (Required)
  • Demonstrated analytical experience (Required)
  • Strong attention to detail (Required)
  • Excellent written and verbal communication skills
  • effectively communicate with all levels of employees and management (Required)
  • Ability to meet tight deadlines and prioritize competing demands (Required)
  • Ability to work independently and with a team (Required)
  • Working knowledge of SQL (Required)
  • Proficient in Microsoft Excel (Required)
Job Responsibility
Job Responsibility
  • Analyze commission processes and support day-to-day commission operations, with a primary focus on researching and resolving commission-related inquiries, identifying improvements and ensuring accurate commission payouts
  • Lead and support projects related to commission operations to enhance process efficiency
  • Serve as a liaison between frontline support teams, internal partners including systems, testing, reporting, and compensation design teams
  • Validate system data loads and commission payouts, conducting impact assessments and researching and resolving payout issues, including exception-based adjustments and inquiries
  • Provide analytical support to management and program teams, including research and resolution of commission-related inquiries and identification of trends to inform process improvements
  • Also responsible for other duties/projects as assigned by business management as needed
What we offer
What we offer
  • competitive base salary
  • annual stock grant
  • employee stock purchase plan
  • 401(k)
  • free year-round money coaches
  • medical insurance
  • dental insurance
  • vision insurance
  • flexible spending account
  • paid time off
  • Fulltime
Read More
Arrow Right
New

General Associate

HI Sam, If you are advertising, please use CHAT to create a nice advert. At Lath...
Location
Location
Germany , Hamburg
Salary
Salary:
165000.00 - 180000.00 EUR / Year
myn.co.uk Logo
Myn
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • legal experience
  • german language proficiency
  • international law firm experience
  • general associate background
  • english language proficiency
  • Fulltime
Read More
Arrow Right