CrawlJobs Logo
Capital One Logo Capital One · IT - Administration

Senior Manager, Risk Advisor, Technology and Data Risk Management

United States, Richmond Employment contract 182500.00 - 229100.00 USD / Year · Job Posted June 04, 2026
Apply Position
Job Link Share

Job Description

Senior Manager, Risk Advisor, Technology and Data Risk Management at Capital One. This position will play a key role in shaping the second line's independent point of view on cybersecurity, reliability, and tech risk with a focus on emerging technologies and risks, and analyzing the outcomes of the first line's analysis to enable robust challenge across assessments.

Job Responsibility

  • Lead independent risk analysis workshops
  • Apply quantitative and qualitative risk assessment methodologies
  • Understand the stack of controls
  • Identify new approaches to reducing risk
  • Systematically review, analyze, aggregate and compare outputs of different assessments
  • Influence 1st Line to drive definition and prioritization of high leverage risk reduction initiatives
  • Provide expert guidance and mentorship across TDRM
  • Foster strong working relationships with other 1st and 2nd Line groups
  • Expertly navigate the Enterprise Risk Management framework
  • Shape and further refine the risk program

Requirements

  • Bachelor's degree or military experience
  • At least 6 years of experience managing, consulting, or auditing in the fields of risk management, information security or technology
  • At least 5 years of experience performing or challenging risk assessments leveraging qualitative and quantitative methodologies (COSO Framework, quantitative analysis, Factor Analysis Information Risk (FAIR), Process, Risk & Control (PRC) library, Risk and Control Self Assessment (RCSA), scenario analysis, new initiative risk assessments)
  • Professional security management certification (Open FAIR, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC))

Nice to have

  • Master's degree in Information Technology, Cybersecurity, or equivalent
  • 5+ years of experience communicating and presenting data to both technical and non-technical audiences
  • 5+ years of experience applying risk quantification methodologies and rolling out risk framework changes
  • 4+ years of experience interacting with different stakeholders and leaders across multiple organizations
  • 4+ years of experience in a second-line or oversight role at a financial institution or regulatory agency
  • Experience implementing risk and controls framework for GenAI or other emerging technologies and risks

What we offer

  • Performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • Comprehensive, competitive, and inclusive set of health, financial and other benefits
Capital One - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Manager, Risk Advisor, Technology and Data Risk Management

8 matching positions

Senior Manager, Enterprise Risk Data Management

As a Second Line Risk Advisor - Data Risk Management (Senior Risk Manager) at Ca...
Location
Location
United States , McLean
Salary
Salary:
161500.00 - 221200.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree or military experience
  • At least 5 years of experience in a data management or data governance
  • At least 5 years of experience in risk management within a FinTech, Financial Services, or Technology organization
Job Responsibility
Job Responsibility
  • Trusted Data Risk Advisor: Build strong relationships with business and technology partners to become a trusted data risk advisor, providing insight into data management risks, guidance on technical control needs to manage data, and shaping risk mitigation strategies across the enterprise
  • Second Line Risk Assessment: As a member of the 2nd line tech and data risk oversight team, conduct thorough risk assessments, data process and control design, and advocate for process excellence to enhance the organization’s data management risk posture
  • Embed Data Management Practices: Identify opportunities to embed data risk management best practices within business operations, influencing stakeholders to adopt proactive risk management measures through technical and data driven solutions
  • Influence Technology & Data Maturity Roadmaps: Collaborate with Product and Technology teams to ensure data management controls are incorporated into technical product roadmaps, driving effective risk mitigation in new and existing platforms
  • Gap Assessments & Recommendations: Perform gap assessments to identify weaknesses in current data management controls/processes, technical designs, architecture data flow diagrams, and propose actionable recommendations to drive organizational transformation and compliance
  • Communication Excellence: Utilize strong verbal and written communication skills to articulate data management risks, communicate progress against risk mitigation efforts, and influence decision-making at senior levels
  • Metadata, Data Quality, and Governance: Partner across divisions and functions on initiatives related to metadata management, data quality, data governance, and data stewardship to ensure risks are mitigated and compliance is maintained
What we offer
What we offer
  • performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being
  • Fulltime
Read More
Arrow Right

Senior Manager - Category Management (Technology Services)

The Global Category Senior Manager at Amgen will develop and execute global stra...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
amgen.com Logo
Amgen
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate degree and 5 years of Global Strategic Sourcing, Procurement or Commercial (Sales) experience
  • Master’s degree and 8 years of Global Strategic Sourcing, Procurement or Commercial (Sales) experience
  • Bachelor’s degree and 12 years of Global Strategic Sourcing, Procurement or Commercial (Sales) experience
  • 2 years of managerial experience directly managing people and/or leadership experience leading teams, projects, programs, or directing the allocation of resources
  • Familiarity with procurement platforms (e.g., Ariba), ERP systems, and advanced analytics tools
  • Excellent problem-solving, organizational, and analytical skills, including the ability to interpret large datasets and generate actionable insights
  • Experience leading large, cross-functional teams and managing complex global projects in a matrixed environment
Job Responsibility
Job Responsibility
  • Own and evolve the global category strategy for Technology Services, aligned with business goals, with a focus on unlocking value, optimizing supplier relationships, and mitigating risk
  • Partner with Technology stakeholders across R&D, Commercial, and Operations to understand needs and shape procurement strategies that support enterprise priorities in a proactive manner
  • Act as a trusted advisor and thought leader, delivering insights on market trends, supplier capabilities, and best practices tailored to the Technology Services domain
  • Lead the creation of robust, financially grounded business cases (e.g., outsourcing models, total cost of ownership, supplier consolidation) that support procurement decisions and drive measurable impact
  • Stay ahead of market shifts in professional technology services— including evolving delivery models, workforce trends, and service innovation— and translate insights into actionable strategies
  • Design and drive a multi-year sourcing roadmap for Technology Services aligned with Amgen’s broader vision
  • Build relationships with external experts, peer companies, and industry bodies to bring leading practices and innovation into Amgen’s Technology Services sourcing strategy
  • Partner with category managers for consulting and staff augmentation to ensure Amgen take a holistic approach to all external resource driven spend
  • Provide strategic oversight as the global lead for Technology Services sourcing, ensuring alignment between category strategies and evolving business needs
  • Guide and facilitate collaboration across cross-functional teams and regional stakeholders, ensuring strategies meet diverse needs and are implemented effectively
Read More
Arrow Right

Senior Advisor Operational Risk and Resiliency

The Operational Risk Management team is part of the IT Project Management depart...
Location
Location
Canada , Mississauga
Salary
Salary:
105000.00 - 120000.00 USD / Year
thecignagroup.com Logo
The Cigna Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Disaster and Emergency Management (DEM), technology, or a related field
  • Five or more years of experience in Business Continuity, Disaster Recovery, Operational Resilience, or a related risk management role
  • Professional certification from DRII, BCI, or equivalent is an asset
  • Strong experience leading BCP/DR programs, including planning, testing, execution, and continuous improvement
  • Hands-on experience developing and executing IT disaster recovery plans in test or real-world scenarios
  • Good understanding of data center, infrastructure, application recovery, and technology recovery strategies
  • Ability to translate business impact and continuity requirements into practical technology and recovery solutions
  • Strong stakeholder management skills with the ability to influence and engage leaders and teams
  • Excellent communication, organization, and problem-solving skills
  • Ability to work effectively in a fast-paced, complex, and evolving environment
Job Responsibility
Job Responsibility
  • Lead Business Impact Analysis (BIA) and risk assessment activities, develop and maintain BCP/DR policies, standards, procedures, runbooks and provide guidance and updates to senior leaders and governance committees
  • Identify operational risks and develop practical mitigation and prevention plans to reduce the impact of business disruptions
  • Plan and lead regular BCP/DR testing activities such as tabletop exercises, simulations, and recovery tests to validate preparedness
  • and apply the learnings and practices to lead recovery efforts during real incidents, coordinating cross-functional teams, managing communications, and tracking recovery progress
  • Oversee continuous improvements, drives the implementation of improvements identified through risk assessments, exercises, and real events, and report on outcomes
  • Design, maintain, and lead Business Continuity and Disaster Recovery (BCP/DR) strategies to ensure critical systems and services can be restored during disruptions
  • Promote and uphold enterprise-wide operational resilience standards and practices
  • Leads and drives excellence for enterprise operational resilience standards, processes and requirements
  • Create and maintain clear, repeatable documentation that maps critical business operations end-to-end, including people, facilities, systems, data, vendors, and processes
What we offer
What we offer
  • Competitive compensation, benefits and pension plan
  • Career development and advancement opportunities
  • A culture that celebrates innovation and collaboration
  • Flexible work options and wellness programs
  • Fulltime
Read More
Arrow Right
New

Senior Manager, Identity and Access Management (IDAM)

The Senior Manager, Identity and Access Management (IDAM) is a key leader in the...
Location
Location
United States , Lexington
Salary
Salary:
Not provided
valvoline.com Logo
Valvoline
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in business, accounting, finance, computer science, information systems, engineering, or a related field
  • A miniumum of 8-10 years of experience in identity and access management, cybersecurity, or related areas, including at least 3 years in a senior leadership role. Experience leading global IDAM programs is essential, with a strong understanding of regulatory requirements such as SOX, GDPR, and PCI, as well as industry best practices. Experience managing third-party vendor relationships and evaluating IDAM solutions with a focus on scalability and global implementation. Demonstrated ability to provide strategic leadership for cross-functional teams, particularly within cybersecurity, IT, legal, and business units, and have a proven track record of recruiting, mentoring, and developing high-performing teams, with a focus on leadership of leaders.
Job Responsibility
Job Responsibility
  • Provide visionary leadership for the Identity and Access Management team, fostering a culture of continuous improvement and professional development. Be accountable for the recruitment, development, and retention of top talent, ensuring the team is well-equipped to meet the organization’s goals. Mentor and coach team members to excel in their roles and align closely with the strategic direction of the enterprise
  • Lead the IAM function within the broader cybersecurity organization, emphasizing cross-functional collaboration with global IT, cybersecurity, legal, and business units. Ensure that IDAM strategies are integrated across all departments and regions, driving secure, seamless access management that aligns with organizational objectives and business operations
  • Oversee the development and implementation of a global IDAM governance framework that enforces robust policies, standards, and controls. Ensure compliance with international regulatory and industry standards (e.g., SOX, GDPR, PCI), and drive continuous monitoring and auditing of IDAM processes to prevent unauthorized access and data breaches
  • Establish and enforce governance for third-party vendor access to corporate systems, ensuring continuous monitoring and adherence to stringent security standards. Collaborate with procurement, legal, and risk teams to ensure third-party access complies with global regulations and internal security policies. Implement robust monitoring and control mechanisms to detect and respond to any access-related incidents, mitigating risks associated with external partners and vendors
  • Develop and maintain a comprehensive reporting framework for IDAM Key Performance Indicators (KPIs) and metrics, ensuring visibility into the health and performance of IDAM processes. Regularly report to executive leadership on key metrics such as access management efficiency and compliance status. Provide actionable insights to drive continuous improvements, ensure alignment with business objectives, and support decision-making at the highest levels
  • Build and maintain strategic relationships with global IDAM technology vendors, ensuring the organization leverages best-in-class solutions that align with business goals and security requirements. Ensure that technology investments align with the organization’s global scale and future-proof the IDAM infrastructure. Regularly review the vendor landscape to stay ahead of industry advancements and maintain the organization’s competitive edge
  • Serve as the primary advisor to executive leadership on IDAM strategies, providing insights into risks, opportunities, and the evolving global landscape of identity and access management.
  • Fulltime
Read More
Arrow Right

Senior Manager, Identity and Access Management (IDAM)

The Senior Manager, Identity and Access Management (IDAM) is a key leader in the...
Location
Location
United States , Lexington
Salary
Salary:
Not provided
valvolineglobal.com Logo
Valvoline Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in business, accounting, finance, computer science, information systems, engineering, or a related field
  • A miniumum of 8-10 years of experience in identity and access management, cybersecurity, or related areas, including at least 3 years in a senior leadership role
  • Experience leading global IDAM programs is essential, with a strong understanding of regulatory requirements such as SOX, GDPR, and PCI, as well as industry best practices
  • Experience managing third-party vendor relationships and evaluating IDAM solutions with a focus on scalability and global implementation
  • Demonstrated ability to provide strategic leadership for cross-functional teams, particularly within cybersecurity, IT, legal, and business units, and have a proven track record of recruiting, mentoring, and developing high-performing teams, with a focus on leadership of leaders
  • Possession of relevant professional certifications such as Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), or Certified Information Systems Security Professional (CISSP) is highly desirable
Job Responsibility
Job Responsibility
  • Provide visionary leadership for the Identity and Access Management team, fostering a culture of continuous improvement and professional development
  • Be accountable for the recruitment, development, and retention of top talent, ensuring the team is well-equipped to meet the organization’s goals
  • Mentor and coach team members to excel in their roles and align closely with the strategic direction of the enterprise
  • Lead the IAM function within the broader cybersecurity organization, emphasizing cross-functional collaboration with global IT, cybersecurity, legal, and business units
  • Ensure that IDAM strategies are integrated across all departments and regions, driving secure, seamless access management that aligns with organizational objectives and business operations
  • Oversee the development and implementation of a global IDAM governance framework that enforces robust policies, standards, and controls
  • Ensure compliance with international regulatory and industry standards (e.g., SOX, GDPR, PCI), and drive continuous monitoring and auditing of IDAM processes to prevent unauthorized access and data breaches
  • Establish and enforce governance for third-party vendor access to corporate systems, ensuring continuous monitoring and adherence to stringent security standards
  • Collaborate with procurement, legal, and risk teams to ensure third-party access complies with global regulations and internal security policies
  • Implement robust monitoring and control mechanisms to detect and respond to any access-related incidents, mitigating risks associated with external partners and vendors
Read More
Arrow Right

Senior Risk Manager - Third Party Risk

The role supports the Head of Operational Risk in the oversight and management o...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
socialvalueportal.com Logo
Social Value Portal Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree level educated or an equivalent combination of education training and experience with third-party frameworks and industry standards
  • and/or relevant professional qualification (e.g., IRM International Certificate in Operational Risk, Practitioner Certificate in Information Management, etc.)
  • Proven third party risk expertise, preferably with knowledge of relevant standards such as ISO 27001, ISO 22301, NIST, and COBIT
  • A strong understanding of the Lloyd's or wider company insurance market and frameworks is preferable
  • Knowledge and experience of risk management frameworks and tools
  • Demonstrate effective understanding of relevant TPRM regulations for a global organisation operating across the UK, EU, US and Asia
  • Understanding of the commercial drivers and dynamics affecting risk decisions in the insurance sector, as well as operational and risk processes found within an international insurance group
  • Ability to build strong partnering relationships with a wide range of stakeholders, in particular the 1st Line TPRM team
  • Ability to interact professionally and with credibility and manage expectations of management and key stakeholders
  • Ability to manage time, meet deadlines and prioritise
Job Responsibility
Job Responsibility
  • Provide independent oversight and effective challenge to first-line operational risk activities
  • Review, challenge and contribute to the Third Party Risk Management (TPRM) framework, policies and standards
  • Support the Head of Operational Risk in facilitating regular Risk & Control Self Assessments (RCSAs) with first line risk owners and stakeholders, ensuring the assessments are performed and documented accordingly
  • Oversee the management of delegated authority risk within Underwriting, Claims and Operations as part of the TPRM framework
  • Ensure consistent risk tiering and materiality assessments for all third parties
  • Review and challenge residual risk assessments, risk acceptances, and exceptions related to Operational Risk
  • Oversee integration of Third Party Risk into operational resilience, technology, cyber, and data frameworks
  • Support the implementation and maintenance of a robust control environment with clear ownership and accountability within the business, ensuring control documentation remains accurate and current
  • Develop and monitor key risk indicators (KRIs) and support risk appetite monitoring and management
  • Work collaboratively with 1st Line and Risk domain teams, supporting the embedding of the Operational Risk and TPRM framework into the organisation and across the 3 Lines of Defence model
  • Fulltime
Read More
Arrow Right

Senior Technology and Platform Lead Analyst

The Applications Development Technology Lead Analyst is a senior level position ...
Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree/University degree or equivalent experience, Master’s degree preferred
  • 12+ years of relevant Technology experience in Application Development with at least 3+ years in technical leadership
  • Extensive experience in system analysis and in programming of software applications
  • Strong experience in implementing and delivering successful projects
  • Subject Matter Expert (SME) in Securities Financing Transactions Processing is a plus
  • Ability to adjust priorities quickly as circumstances dictate
  • Demonstrated Strong leadership skills
  • Consistently demonstrates clear and concise written and verbal communication
  • Strong core Java skills, JDBC/JPA, Restful web services
  • Strong Experience with frameworks like Hibernate, Junit, Spring Boot/Microservice-style application development
Job Responsibility
Job Responsibility
  • Partner with multiple management teams to ensure appropriate integration of functions to meet goals as well as identify and define necessary system enhancements to deploy new products and process improvements
  • Resolve variety of high impact problems/projects through in-depth evaluation of complex business processes, system processes, and industry standards
  • Provide expertise in area and advanced knowledge of applications programming and ensure application design adheres to the overall architecture blueprint
  • Utilize advanced knowledge of system flow and develop standards for coding, testing, debugging, and implementation
  • Develop comprehensive knowledge of how areas of business, such as architecture and infrastructure, integrate to accomplish business goals
  • Provide in-depth analysis with interpretive thinking to define issues and develop innovative solutions
  • Serve as advisor or coach to mid-level developers and analysts, allocating work as necessary
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency
  • Own end‑to‑end solution architecture, including application design, system patterns, data models, APIs, and integration strategies aligned to industry‑specific requirements
  • Design and build highly scalable, resilient, and secure enterprise applications using modern architectural patterns (microservices, event‑driven, cloud‑native)
  • Fulltime
Read More
Arrow Right

Quality Review and Audit Senior Advisor

The Quality Review & Senior Audit Advisor provides enterprise-level quality assu...
Location
Location
United States of America , Bloomington
Salary
Salary:
100000.00 - 166600.00 USD / Year
thecignagroup.com Logo
The Cigna Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree strongly preferred
  • clinical, pharmacy, nursing, or healthcare-related background strongly preferred
  • management experience required, with a demonstrated ability to lead and develop high-performing teams
  • strong analytical, data management, and technical skills
  • advanced proficiency with Microsoft Office Suite
  • excellent verbal and written communication skills, with the ability to explain complex clinical and pharmacy concepts clearly
  • if you will be working at home occasionally or permanently, the internet connection must be obtained through a cable broadband or fiber optic internet service provider with speeds of at least 10Mbps download/5Mbps upload
Job Responsibility
Job Responsibility
  • Provide expert clinical and pharmacy oversight for quality monitoring and testing across Medicare, Medicaid, and Exchange (HIM) lines of business
  • apply clinical judgment and pharmacy expertise to assess benefit configurations, clinical rules, and pharmacy setups for accuracy, safety, and compliance
  • validate pharmacy benefit designs, including formularies, prior authorization criteria, step therapy, quantity limits, and utilization management logic
  • interpret clinical documentation, policies, and regulatory guidance to ensure correct implementation within systems and operational workflows
  • lead and co-lead end-to-end clinical and pharmacy benefit testing for new implementations, benefit changes, and remediation initiatives
  • evaluate clinical program integrity, including medication therapy management, adherence programs, utilization management, and quality initiatives
  • identify clinical and pharmacy risks, defects, and configuration gaps
  • document findings and drive resolution through cross-functional collaboration
  • ensure testing outcomes align with CMS regulations, NCQA standards, and state-specific clinical and pharmacy requirements
  • serve as a trusted advisor on regulatory interpretation, translating complex clinical and pharmacy guidance into actionable testing and configuration requirements
What we offer
What we offer
  • medical
  • vision
  • dental
  • well-being and behavioral health programs
  • 401(k)
  • company paid life insurance
  • tuition reimbursement
  • a minimum of 18 days of paid time off per year
  • paid holidays
  • Fulltime
Read More
Arrow Right