Senior Audit Manager - Cyber, Risk Analysis Technology Audit

Overview

Senior Audit Manager - Cyber, Risk, & Analysis Technology Audit. Capital One’s Audit function delivers quality assurance to the organization’s Audit Committee. The team is collaborative, agile, and focused on independent, proactive insights and technology-enabled improvements.

Capital One seeks an energetic Technology Senior Manager with experience in evaluating and analyzing technology and cybersecurity risks to join the Tech Audit team. The role focuses on integrated audits and audits of critical technology functions including payment networks support, cloud-based technology implementations, application controls, and cybersecurity risks.

• Execute major components of audits, including critical technology functions, cloud-based infrastructure, emerging technology, cybersecurity, risk management, application and third-party management, and lead small to medium-size audits including integrated audits.
• Perform risk assessments of business units and technology operations; design and execute audit procedures to verify control effectiveness; identify and define issues; review and analyze evidence; document client processes and procedures.
• Understand the broader financial, legal, reputational, and other risk implications for the business and critical technology functions.
• Establish and maintain good client relations during engagements. Communicate audit results to management via written reports and oral presentations.
• Identify client expectations and support the client experience.
• Prepare clear, organized, and complete documentation to support work performed.
• Self-prioritize and effectively plan own work activities, managing multiple priorities across the team to deliver quality results.
• Coordinate with others and proactively take on additional work.
• Deliver appropriate, succinct, and organized information, tailoring communication to the audience.
• Communicate information, issues, and audit progress to teammates, clients, and the audit lead.
• Perform engagement administration, including hours and budget tracking.
• Provide periodic on-the-job coaching and direct supervision over less experienced associates.

• You are a critical thinker who seeks to understand the business and its control environment.
• You value insight and objectivity as core elements of assurance on governance, risk management, and internal controls.
• You maintain a relentless focus on quality and timeliness.
• You adapt to change, embrace bold ideas, and are intellectually curious, asking questions and testing assumptions.
• You develop influential relationships based on shared risk objectives and trust to deliver business impact.
• You believe a strong understanding of data, innovation, and technology enhances auditing; you leverage data analytics and advance technical expertise.
• You are a teacher who leads by example, coaches others, and drives change with candor and optimism.
• You foster an environment of trust, collaboration, and belonging to attract and retain top talent.

• Basic Qualifications: Bachelor’s Degree or military experience.
• At least 7 years in information technology (operations, software delivery, access management, microservices), information security (application/network security, cyber security, data protection), information systems risk management, information systems auditing, or a combination in banking/financial services.
• At least 4 years of experience leading a team to deliver initiatives or equivalent.
• At least 4 years of experience managing audit engagements, project management, or equivalent.
• At least 4 years of experience analyzing data extracts to identify trends and anomalies, including 1 year in test scripting or coding.
• At least 2 years of experience in cloud computing and controls (design, operation, risk management, or auditing).
• At least 2 years of people management experience.

• Certifications related to Cloud, Cyber, or Technology Operations (e.g., cloud provider certs, CISSP, CISM).
• Certifications related to Auditing (CIA, CISA).
• 7+ years of experience with IT control frameworks.
• 2+ years planning and leading audits; 2+ years auditing cyber or information…