Company
Capital OneLocation
USA-VA-RichmondRemuneration
CompetitivePosition Type
PermanentEmployment type
Full timeUpdated
27-Oct-2013eFC Ref no
1267324
See job description for details
Capital One is a diversified bank that offers a broad array of financial products and services to consumers, small business and commercial clients. Ranked #127 on the Fortune 500, Capital One is one of the nation's top 10 banks and has one of the most widely recognized brands in America. We nurture a work environment where people with a variety of thoughts, ideas and backgrounds, guided by our shared Values, come together to make Capital One a great company and a great place to work.
Are you interested in joining a team of Corporate Audit leaders whose mission is to enable game-changing business results by providing programs and solutions that unleash greatness in our associates? If so, Capital One wants to talk to you!
Corporate Audit Services (CAS), the Internal Audit function within Capital One, is a dedicated group of audit professionals focused on delivering top quality assurance services to the organization's Audit and Risk Committee. The CAS department is considered one of the leading internal audit functions within the financial services industry and is highly regarded within Capital One. CAS professionals are experienced, well-trained and credentialed, and operate within a highly collaborative team environment to deliver value added opinions and recommendations. In addition, the CAS vision of Innovate Continually, Perform Brilliantly, and Set the Standard create a dynamic and challenging atmosphere for both personal growth and professional opportunity.
Capital One is seeking an energetic, self-motivated Information Security Auditor interested in becoming part of our Corporate Audit Services team aligned to our Digital (i.e., web, mobile devices/apps, and social media) and Information Security audits. The Information Security auditor will provide leadership on the audit approach for auditing emerging Digital technologies and platforms, and will provide advice and counsel to business leadership related to cyber-security risks, threats, and countermeasures. As a member of the team, the Information Security auditor will lead audits of the Digital infrastructure, support integrated application audits that rely on Digital technology, lead project audits of the Digital environment, and monitor Digital innovations within the enterprise and broader industry. Additionally, the Information Security Auditor will lead audits of the enterprise security architecture and technical security configurations, support integrated application audits where information security skills are required, and lead information security project audits. The candidate will also facilitate knowledge sharing of best practices and industry trends to team members, and contribute to thought leadership activities within the Audit team. The candidate will work independently, with guidance from Audit management as needed. Career development and growth opportunities exist through our established training programs within the Corporate Audit Services team, as well as in IT and business functions. The candidate will be expected to maintain all organizational and professional ethical standards.
Responsibilities:
- Monitors emerging Digital, cybersecurity, and fraud risk. Networks with peers from other organizations to stay in front of emerging risks and trends. Attends external events and training to maintain deep technical knowledge of risks and controls related to Digital technologies, Cyber Security, and Industry standards (e.g., FFIEC Authentication Guidelines, PCI DSS, ISO 27001).
Actively participates in working groups to understand the organization's current and planned countermeasures related to information security and digital risks.
- Participates in annual planning, engagement planning, and fieldwork to understand the broader enterprise information security risks.
- Leads information security audits and projects, as well as components of integrated audits with significant security considerations, such as enterprise security architecture, information security policy and standards, network infrastructure security, server/database security, web application security, mobile device security, and encryption.
- Leads Digital audits and projects, as well as components of integrated audits with significant Digital considerations, including those related to social media, web application security, mobile application development, APIs, and cyberfraud.
Qualifications
Basic Qualifications:
- Bachelors Degree or military experience
- 3 years of experience working with information security risks and controls, such as vulnerability management, network security, mobile security
- 3 years of experience in information systems auditing.
- 1 year experience in supervising audit engagements.
Preferred Qualifications:
- Masters Degree in Auditing, Information Systems or Information Security.
- Certified or working toward a professional certification such as a CISSP , CEH, CISM, or CISA
- 5 years of experience working with information security risks and controls, such as vulnerability management, network security, mobile security
- 5 years of experience in information systems auditing
- 3 years experience in supervising audit engagements.
- 3 years experience in banking or financial services industry. Understanding of financial institution laws, regulations and business processes.
- Demonstrated analytical, critical thinking, and problem solving skills.
- Excellent communication skills, both written and verbal.
At this time, Capital One will not sponsor a new applicant for employment authorization for this position.
No agencies please. Capital One is an equal opportunity employer committed to diversity in the workplace. We promote a drug-free work environment. We emphasize recruiting, hiring, and retaining the most qualified candidates and providing them with the opportunity to meet their potential. We provide an environment where differences lead to solutions.
TBEFC
TBLI2
TBM
TBCB
Job Audit, Risk Management and Security
Primary Location United States-Virginia-Richmond-Richmond-West Creek 3 (12073)
Schedule Full-time
Travel Yes, 10 % of the Time
Job Posting
Unposting Date
0 comments:
Post a Comment