Principal Associate, Controls Governance - Capital One

Principal Associate, Controls Governance

As a Cyber Controls Compliance expert in the Capital One Cyber Organization, you will apply your risk management and internal Cyber controls skills to the company’s organization. You will partner across Technology, Enterprise Service Risk, and Cyber Teams to develop and support best-in-class internal Cyber controls in a manner that supports innovation and protects our customer, shareholders, and associates.

As part of Capital One’s Cyber Governance team, you are the Controls Governance subject matter expert. The Cyber Controls Governance Associate will collaborate with fellow Cyber organization team members, first line partners, and second line partners to establish a governance function that sets the tone for internal controls within Cyber. The Cyber Controls Governance Associate will organize, equip, train, and support Cyber Process Owners, Document Owners, Control Owners, Accountable Executive Designees, and Control performers throughout the ownership lifecycle for Cyber controls.

The Cyber Controls Governance Associate will be able to operate within a highly collaborative team environment. The work we participate in has a high level of exposure across the Cyber line of business, including other first and second line risk partners. Proficiency in the life cycle of internal controls (ideally technology controls) and an understanding of the Capital One Risk Management Framework are important for success in this role. 

Responsibilities:

• Work with control owners to ensure they are meeting Capital One’s expectation of maintaining an effective control rating

• Partner with governance leads within Cyber sub-divisions to prepare AEs and AE Designees for upcoming reviews, assessments, and testing from our enterprise partners, shifting to a proactive posture

• Utilize the Cyber Services delivery model to integrate cyber governance work into Jira and Cyber PMO workflows

• Assist with creating a “risk positive” culture within the organization

• Build successful relationships across the enterprise to understand the impact of how cyber internal controls mitigate risk

• Contribute to a small team of cyber internal control professionals to document guidance and teach control owners best practices

• Work with control subject matter experts to ensure that risks and regulatory requirements are appropriately mapped to Cyber controls. 

• Assist control performing teams with controls testing and validation

• Communicate control gaps and deficiencies, risk exposures, and changes to the risk profile to senior management

• Actively seek and report on opportunities to strengthen processes via automation

• Enable a strong culture of controls management that’s adaptable to a changing environment

• Influence risk stakeholders through an active and collaborative environment

• Advocate and influence outcomes with Lines of Defense teams

• Establish and maintain strong working relationships with key partners across the Enterprise and within Cyber

Basic Qualifications: 

• High School Diploma, GED, or equivalent certification

• At least 3 years of risk management or internal technical controls experience

• At least 2 years of project management experience

Preferred Qualifications:

• Bachelor’s Degree

• 2+ years of experience in governance

• 2+ years of experience with cloud environments

• 2+ years of experience in an agile or scrum environment

At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, or another type of work authorization).

Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

This role is expected to accept applications for a minimum of 5 business days.

No agencies please. Capital One is an equal opportunity employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex (including pregnancy, childbirth or related medical conditions), race, color, age, national origin, religion, disability, genetic information, marital status, sexual orientation, gender identity, gender reassignment, citizenship, immigration status, protected veteran status, or any other basis prohibited under applicable federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City’s Fair Chance Act; Philadelphia’s Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at RecruitingAccommodation@capitalone.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.

For technical support or questions about Capital One's recruiting process, please send an email to Careers@capitalone.com

Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.

Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).