|
Insider Threat Exit Risk Program Lead - Williamsburg Virginia
Company: Capital One Location: Williamsburg, Virginia
Posted On: 11/20/2024
Center 3 (19075), United States of America, McLean, VirginiaInsider Threat Exit Risk Program LeadCapital One is looking for an Insider Threat Exit Risk Program Lead to join the Cyber Insider Threat and Technical Investigations (IT&TI) program. As an Insider Threat Exit Risk Program Lead in the Exit Risk Mitigation (XRM) team, you will provide program-level planning, support, and directional guidance to drive the XRM program's objectives for the monitoring, detection, triage, analysis, and investigation of departing associates. Candidates should be able to manage case workflows, understand investigative analyses and findings, identify program-level needs and plan and implement processes to accomplish them, and exercise attention to detail and discretion in sensitive investigative matters. Candidates should also thrive in a cross-functional and dynamic environment, where coordination with partner teams and stakeholders is required. -General Responsibilities: - Perform programmatic planning and development support for XRM program maintenance and growth, in coordination with the IT&TI Program Team and leadership, as the XRM scope expands
- Understand the XRM program controls and processes for enhanced monitoring and access controls
- Understand the XRM and IT&TI investigative processes, with focus on the XRM analyst team triage and analysis of activity data of exiting associates against insider threat alerts and referrals from partner teams
- Develop and maintain XRM program plans and documentation, exercising attention to detail and sound technical, interpersonal, and organizational judgment
- Effectively communicate with IT&TI teammates and leadership, other Cyber teams, and partners and stakeholders in HR, the Office of Corporate Investigations (OCI), Legal, and others
- Develop, follow, and maintain process 'playbooks' of various operational investigative workflows
- Identify trends, gaps, and opportunities for process or alert improvement, and raise or present these issues to Insider Threat team leads for resolution
- Identify and enhance processes where automation will improve efficiency
- Exercise discretion and professionalism when dealing with associate-based investigations and inquiries and other sensitive matters
- Work with alerting and monitoring technologies and other log sources available to the Cyber Operations and Intelligence Teams to refine investigation sequence and procedures
- Use technology, infrastructure, and operational processes to enable a more effective user-based threat detection and investigation program
- Strong communication skills with the ability to manage responsibilities across multiple areas and projects
- Excellent problem-solving and conceptual thinking skills, especially with process and technical troubleshooting
- Strong ability to develop and communicate recommendations to non-technical associates in business areasBasic Qualifications:
- High School Diploma, GED, or equivalent certification
- At least 4 years of experience working in cybersecurity or information technology
- At least 2 years of experience with project or program management
- At least 2 years of experience analyzing information and data, and documenting and communicating the findings or outcomesPreferred Qualifications:
|
|