Global Network Technology Risk Advisor

Global Payments Network Technology Risk Advisor

Capital One is one of the fastest growing organizations in the world today. The growth of the business is accelerated by leveraging innovative and emerging technologies. We are serious about technology, we dream big, and we execute:
Capital One moved our entire enterprise to the public cloud over the course of five years, fully exiting our data centers. Just as we prioritize driving innovation through technology, we equally prioritize cybersecurity and managing technology risk. Technology and Data Risk Management (TDRM) are trusted expert advisers who shape decisions, challenge activities to ensure they meet our standards, and generally oversee technology, data and information security risk across the business and the central technology organization.

TDRM is a second line organization, which means it is independent and reports up through the Chief Enterprise Risk Officer.

TDRM provides business leaders with crucial technology risk information for informed decision‑making. Our highly-skilled associates specialize in areas like information security, cybersecurity, SRE, technology, and risk management, offering significant experience and delivering high‑impact results.

As Global Payments Network Tech Risk Advisor you will play a key second‑line‑of‑defense role focused on independent oversight of the organization’s cybersecurity and technology risk‑taking, providing expert advice and constructive challenge during assessments and throughout the Agile delivery lifecycle. You will collaborate with partners (cybersecurity, technology, lines of business, and other risk offices) to evaluate the firm’s risk posture and offer independent recommendations for risk reduction.

Success requires translating data, business drivers, and priorities into meaningful risk analysis, establishing you as a trusted advisor to stakeholders. For this role in particular you will be focused on providing independent oversight of the Global Payments Network, a newly formed line of business.

• Has a strong foundation, passion, and proficiency in cybersecurity, technology risk management, regulatory expectations within financial services
• Is intellectually curious and stays current on emerging cyber threats, technologies, and potential implications for the company.
• Has a team‑first attitude and is comfortable building relationships and collaborating with the team and other partners and stakeholders to get the work done.
• Is execution oriented, a self‑motivator in an ambiguous environment, can manage multiple projects while maintaining superior results, can successfully work in a fast‑paced environment, and is able to quickly come up to speed with the business and technology environments with which they will be working.
• Demonstrates the ability to provide independent and effective challenges.
• Has excellent verbal and written communication skills (tailored to the audience) and can concisely and logically explain complex/technical topics.

• Be a trusted second‑line Technology & Data Risk advisor and subject matter expert in your assigned Lines of Business
• Guide/drive effective and relevant risk conversations with Line of Business leadership and their teams to enable meaningful insights into key technology and cybersecurity risks (e.g., aligning to or providing insights in support of strategic priorities or objectives for the business, increasing risk accountability and visibility)
• Communicate in a compelling manner, with a strong point of view, grounded in technology, cyber, and data risk analysis
• Strong knowledge and proficiency in risk management skills (i.e., risk analysis and assessment, risk management, risk communication, risk quantification, threat modeling, and technical writing)
• Navigate regulatory and compliance requirements while providing independent and effective challenge within a second‑line‑of‑defense model
• Collaborate effectively and build trusted relationships with colleagues, stakeholders, and leaders across multiple organizations to achieve objectives.
• Coordinate assessment activities and deliverables, ensuring…