|
Principal Associate, Controls Governance - Fredericksburg Virginia
Company: Capital One Location: Fredericksburg, Virginia
Posted On: 11/21/2024
Center 3 (19075), United States of America, McLean, VirginiaPrincipal Associate, Controls GovernanceAs a Cyber Controls Compliance expert in the Capital One Cyber Organization, you will apply your risk management and internal Cyber controls skills to the company's organization. You will partner across Technology, Enterprise Service Risk, and Cyber Teams to develop and support best-in-class internal Cyber controls in a manner that supports innovation and protects our customer, shareholders, and associates.As part of Capital One's Cyber Governance team, you are the Controls Governance subject matter expert. The Cyber Controls Governance Associate will collaborate with fellow Cyber organization team members, first line partners, and second line partners to establish a governance function that sets the tone for internal controls within Cyber. The Cyber Controls Governance Associate will organize, equip, train, and support Cyber Process Owners, Document Owners, Control Owners, Accountable Executive Designees, and Control performers throughout the ownership lifecycle for Cyber controls.The Cyber Controls Governance Associate will be able to operate within a highly collaborative team environment. The work we participate in has a high level of exposure across the Cyber line of business, including other first and second line risk partners. Proficiency in the life cycle of internal controls (ideally technology controls) and an understanding of the Capital One Risk Management Framework are important for success in this role. -Responsibilities: - Work with control owners to ensure they are meeting Capital One's expectation of maintaining an effective control rating
- Partner with governance leads within Cyber sub-divisions to prepare AEs and AE Designees for upcoming reviews, assessments, and testing from our enterprise partners, shifting to a proactive posture
- Utilize the Cyber Services delivery model to integrate cyber governance work into Jira and Cyber PMO workflows
- Assist with creating a "risk positive" culture within the organization
- Build successful relationships across the enterprise to understand the impact of how cyber internal controls mitigate risk
- Contribute to a small team of cyber internal control professionals to document guidance and teach control owners best practices
- Work with control subject matter experts to ensure that risks and regulatory requirements are appropriately mapped to Cyber controls. -
- Assist control performing teams with controls testing and validation
- Communicate control gaps and deficiencies, risk exposures, and changes to the risk profile to senior management
- Actively seek and report on opportunities to strengthen processes via automation
- Enable a strong culture of controls management that's adaptable to a changing environment
- Influence risk stakeholders through an active and collaborative environment
- Advocate and influence outcomes with Lines of Defense teams
- Establish and maintain strong working relationships with key partners across the Enterprise and within CyberBasic Qualifications: -
- High School Diploma, GED, or equivalent certification
- At least 3 years of risk management or internal technical controls experience
- At least 2 years of project management experiencePreferred Qualifications:
|
|