Director, Metrics Strategy
Company: Capital One
Location: Charlottesville
Posted on: November 3, 2024
Job Description:
West Creek 3 (12073), United States of America, Richmond,
VirginiaDirector, Metrics StrategyCapital One is one of the fastest
growing organizations in the world today, powered by our passion
for our customers. We are serious about technology, we dream big,
and we execute: Capital One moved our entire enterprise to the
public cloud over the course of five years. Just as we prioritize
driving innovation through technology, we equally prioritize
cybersecurity and managing technology risk. -For years, the
cybersecurity community has debated whether the CISO should report
to the CIO or not. In regulated financial services, the answer is:
both. The first-line CISO has operational responsibilities and
reports to the CIO. The second-line Chief Tech Risk Officer (CTRO)
and their Technology Risk Management (TRM) organization oversee
cybersecurity but also have broader responsibilities for
reliability, software quality, resilience, and other technology
risks. The CTRO is independent, reports to the Chief Risk Officer,
and oversees the work of the CISO and the CIO. -Technology Risk
Management (TRM) is a small organization that packs a big punch.
The -100 professionals in TRM are trusted experts who oversee
-14,000 developers at Capital One. We raise the bar for excellence
in cybersecurity, reliability, and tech risk. We shape strategy and
decisions, challenge activities to ensure they meet our standards,
and perform independent tests of our security and technology
risk.Our business leaders must make technology decisions
constantly. TRM makes sure they have the tech risk information they
need to make good decisions. Associates within TRM are
highly-skilled information security, cybersecurity, site
reliability engineering, technology, and risk management
professionals. They have a wealth of experience and a demonstrated
ability to add value with their advice and to deliver high-impact
results.As the Director, Metrics Strategy, you will create a
strategy for how to use metrics to drive change; help us update our
suite of metrics for cybersecurity, technology risk, and developer
quality; and drive the implementation of those metrics to effect
systemic change. You will be an independent contributor who will
partner with subject matter experts in TRM and across all three
lines of defense. -The successful candidate will be a seasoned
leader with strong knowledge of quantitative methods applied to
technology/cyber risk, who can think strategically, who is
intellectually curious, and who thrives in a data-driven
environment.Responsibilities: -
- Understand our current approach and develop a strategy to
better use metrics, dashboards, and governance fora to drive
change. The intended audience starts at the program manager level
and progresses up through the Board of Directors and formal risk
appetite metrics. -
- Develop suites of metrics across the technology, technology
risk, and cybersecurity domains, aligned to industry
frameworks.
- Engage stakeholders across the first, second, and third lines
of defense to align on the metrics and thresholds.
- Dive deeply into different domains to understand the
shortcomings and limitations of metrics and ensure they are
appropriately documented and communicated.
- Monitor metrics, investigate anomalies, and escalate necessary
response actions.Basic Qualifications:
- Bachelor's degree or military experience
- At least 10 years of experience in cybersecurity or technology
risk
- At least 2 years of experience in cybersecurity or technology
risk metrics
- At least 2 years of experience with governance foraPreferred
Qualifications:
- Bachelor's degree in computer science, mathematics, or
engineering.
- Master's degree in computer science, mathematics, or
engineering.
- At least 10 years of experience in cybersecurity or technology
risks related to resilience, reliability, or code quality (e.g.,
the DORA work).
- At least 2 years of experience in cloud computing.
- An understanding of more than one of the following domains:
cybersecurity, site reliability engineering, dev/ops, and developer
excellence.
- Experience revamping an organizational metrics program.
- Experience with governance fora in which senior leaders use
metrics to manage their organizations.
- Execution oriented and a self-motivator.
- Ability to collaborate effectively with colleagues,
stakeholders, and leaders across multiple organizations to get
consensus, socialize strategy, and achieve objectives.
- Passion and expertise in technology risk and cybersecurity
domains, with an ability to be confident, respectful, and
articulate when registering dissenting or unpopular opinions.
- Critical analytical thinker, including the ability to express a
point of view supported by data (with both technical and
non-technical audiences).At this time, Capital One will not sponsor
a new applicant for employment authorization for this position.
-The minimum and maximum full-time annual salaries for this role
are listed below, by location. Please note that this salary
information is solely for candidates hired to perform work within
one of these locations, and refers to the amount Capital One is
willing to pay at the time of this posting. Salaries for part-time
roles will be prorated based upon the agreed upon number of hours
to be regularly worked.New York City (Hybrid On-Site): $233,100 -
$266,000 for Director, Cyber Risk & AnalysisCandidates hired to
work in other locations will be subject to the pay range associated
with that location, and the actual annualized salary amount offered
to any candidate at the time of hire will be reflected solely in
the candidate's offer letter.This role is also eligible to earn
performance based incentive compensation, which may include cash
bonus(es) and/or long term incentives (LTI). Incentives could be
discretionary or non discretionary depending on the plan.Capital
One offers a comprehensive, competitive, and inclusive set of
health, financial and other benefits that support your total
well-being. Learn more at the -Capital One Careers website.
Eligibility varies based on full or part-time status, exempt or
non-exempt status, and management level.This role is expected to
accept applications for a minimum of 5 business days.No agencies
please. Capital One is an equal opportunity employer committed to
diversity and inclusion in the workplace. All qualified applicants
will receive consideration for employment without regard to sex
(including pregnancy, childbirth or related medical conditions),
race, color, age, national origin, religion, disability, genetic
information, marital status, sexual orientation, gender identity,
gender reassignment, citizenship, immigration status, protected
veteran status, or any other basis prohibited under applicable
federal, state or local law. Capital One promotes a drug-free
workplace. Capital One will consider for employment qualified
applicants with a criminal history in a manner consistent with the
requirements of applicable laws regarding criminal background
inquiries, including, to the extent applicable, Article 23-A of the
New York Correction Law; San Francisco, California Police Code
Article 49, Sections 4901-4920; New York City's Fair Chance Act;
Philadelphia's Fair Criminal Records Screening Act; and other
applicable federal, state, and local laws and regulations regarding
criminal background inquiries.If you have visited our website in
search of information on employment opportunities or to apply for a
position, and you require an accommodation, please contact Capital
One Recruiting at 1-800-304-9102 or via email at
RecruitingAccommodation@capitalone.com. All information you provide
will be kept confidential and will be used only to the extent
required to provide needed reasonable accommodations.For technical
support or questions about Capital One's recruiting process, please
send an email to Careers@capitalone.comCapital One does not
provide, endorse nor guarantee and is not liable for third-party
products, services, educational tools or other information
available through this site.Capital One Financial is made up of
several different entities. Please note that any position posted in
Canada is for Capital One Canada, any position posted in the United
Kingdom is for Capital One Europe and any position posted in the
Philippines is for Capital One Philippines Service Corp.
(COPSSC).
Keywords: Capital One, Potomac , Director, Metrics Strategy, Executive , Charlottesville, Maryland
Didn't find what you're looking for? Search again!
Loading more jobs...