Sign In
 [New User? Sign Up]
Mobile Version

Pen-Tester/Vulnerability Identification - Cyber Security Director

Capital One


Location:
Vienna, VA
Date:
08/17/2017
2017-08-172017-09-16
Job Code:
capitalone2-R30258
Categories:
  • Management
  •  
  • Save Ad
  • Email Friend
  • Print
  • Research Salary

Job Details

Company Capital One

Job Title: Pen-Tester/Vulnerability Identification - Cyber Security Director

JobID: capitalone2-R30258

Location: Tysons Corner, VA, 22182, USA

Description: 7900 Westpark Drive (12131), United States of America, Tysons, Virginia



At Capital One, we’re building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking. We measure our efforts by the success our customers enjoy and the advocacy they exhibit. We are succeeding because they are succeeding.



Guided by our shared values, we thrive in an environment where collaboration and openness are valued. We believe that innovation is powered by perspective and that teamwork and respect for each other lead to superior results. We elevate each other and obsess about doing the right thing. Our associates serve with humility and a deep respect for their responsibility in helping our customers achieve their goals and realize their dreams. Together, we are on a quest to change banking for good.



Pen-Tester/Vulnerability Identification - Cyber Security Director



This position is an exciting role for the right candidate with technical know-how and leadership qualities who is eager to drive security initiatives from start to finish. This position presents opportunities to advise on risk associated with vulnerabilities and exposure to senior management and a best-in-class security team. The Cyber Security values an entrepreneurial attitude and fosters an environment for professional growth and career development.



**Responsibilities:**



+ Position will be a security technology officer of the group and will help merge & create technologies from VM & AppSec. As well as participate in threat modeling and pen-testing.

+ Help build an automated system to help scale vulnerability identification across many layers of the stack including network, system, app & data.

+ Monitor and analyze new vulnerabilities discovered through scanning and industry reporting and propose remediation approaches.

+ Recommend and drive capability and functionality improvements in critical security tools and their associated processes.

+ Perform incident triage, analysis, response, and remediation for computer network intrusions

+ Collaborate with colleagues to ensure that security monitoring tools support the overall security strategy

+ Implement company-specific procedures and documentation in accordance with Capital One's Information Security Policy

+ Proficient with working in a cross functional environment, which includes Partnering with Governance and Risk Management to maintain up to date Information Security policies, risk assessments and response plans.

+ Proactively identify and resolve security weaknesses as identified by security event correlation tools, security vulnerability scanning and other capabilities that provide security visibility across a dynamic computing environment.

+ Proactively identify and resolve security weaknesses as identified by security event correlation tools, security vulnerability scanning, network intrusion monitoring, data loss protection monitoring and other capabilities that provide security visibility across a dynamic computing environment.



**Leadership and Professional Competencies:**



+ Ability to collaborate and communicate effectively and tactfully with both business-oriented leadership and technology-oriented colleagues

+ Ability to negotiate compromise among business partners with competing priorities

+ Ability to work independently and proactively in unstructured environments

+ Ability to manage multiple projects simultaneously that involve key stakeholders across a global and complex organization

+ Leadership Skills- Ability to build immediate credibility with the peers and staff operating teams with the bench strength required.

+ Organizational Agility- Build productive relationships and collaborate with key business and technology groups, and organizational peers to employ complex strategies to share cyber, encourage adoptions, influence attitudes, behavior and/or decision making.

+ Professional of high integrity and how shows respect for all stakeholders.

+ Exceptional analytical, critical-thinking and problem-solving skills

+ Excellent communication skills

+ Ability to flex styles to work well with a range of personalities.

+ Proven organizational leadership and program management skills.

+ Able to effectively work and enjoy working in a dynamic team environment.

+ Collaborate with members of IT, business units, functional teams, field personnel, internal and external audit functions, regulatory bodies and third party service providers with regards to vulnerability management priorities and assessments.

+ Knowledge of cyber security regulations, guidance and policies (e.g., PCI, NIST, SOX, etc.)

+ Knowledge of current and upcoming IT security technologies and techniques that cover all levels of IT architecture, including those that affect business processes, data, applications, and network and systems infrastructure, and their effects on a diverse computing environment, and a passion to stay abreast of emerging technologies.

+ Knowledge of cloud computing and impacts of vulnerability management to software driven infrastructure a plus.



**Basic Qualification:**



+ Bachelor’s Degree or Military Experience

+ At least 4 years’ experience with Information Technology

+ At least 2 years’ experience in operating system patching and vulnerability scanning



**Preferred Qualifications:**



+ 5 years of experience in information security

+ 2 years of experience in vulnerability management

+ 5 firewall, system, and network architectures and knowledge of security best practices

+ 5 years of experience working with a broad array of security tools like such as Rapid7, Nessus, McAfee, FireEye, Bluecoat, Qualys, and Tripwire

+ 2 years of experience in disaster recovery, business continuity planning, auditing or risk management

+ 2 years of experience in security concepts and methods like vulnerability assessments, privacy assessments, intrusion detection, incident response, security policy creation, enterprise security strategies, and governance.



**At this time, Capital One will not sponsor a new applicant for employment authorization for this position**



At Capital One, we’re building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking. We measure our efforts by the success our customers enjoy and the advocacy they exhibit. We are succeeding because they are succeeding.                                               


Powered By

Featured Employers

Featured Jobs

CareerConnection Video