Director, Information Security Officer

Capital One

Chicago, IL, US
Base: $244,700 - $307,200; bonus/equity: performan...
End-to-end security for strategic projects
Product security advisory services
Modern software and technology architectures
As Director, Information Security Officer, you will lead end to end security for strategic projects for one of our lines of business

Job Summary

  • As Director, Information Security Officer, you will lead end to end security for strategic projects for one of our lines of business.
  • You will play a leading role in delivering product security advisory services for a fast moving project within a line of business portfolio, working closely with other professionals as required.
  • Instills a culture that works toward the highest standards in cyber (safeguard the business) while ensuring that business requirements are understood and adhered to (enabling the business).

Matching Summary

As Director, Information Security Officer, you will lead end to end security for strategic projects for one of our lines of business.

Salary

Base: $244,700 - $307,200; Bonus/Equity: performance based incentive compensation; Benefits: comprehensive, competitive, and inclusive set of health, financial and other benefits

Skills & Requirements

Must-have

  • end-to-end security for strategic projects
  • product security advisory services
  • modern software and technology architectures
  • data driven business decisions and products
  • modern software, data analytics ecosystems
  • cloud based technologies and protective methods

Nice-to-have

  • security as an enabler and differentiator
  • pragmatic and practical understanding of risk
  • collaborate and innovate with other teams
  • advocate for security, business and digital innovation
  • calmness and clarity of thought under pressure

Key Requirements

  • Bachelor's degree
  • At least 7 years of experience in Information Security
  • At least 5 years of experience in people management
  • At least 5 years of experience with cyber policies, standards, and procedures
  • At least 5 years of experience in securing public cloud environments and services (AWS, GCP, Azure)
  • Masters degree or PhD in Computer Science, Information Systems, or Engineering
  • 10+ years experience in technology and cybersecurity risk
  • 7+ years experience in leading applications security, vulnerability management and incident response
  • 7+ years experience performing security risk assessments
  • 5+ years experience in security automation and integrating security into software development pipelines
  • 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS)
  • 2+ years experience with information technology audit or compliance management
  • 2+ years in payment security including securing digital payments and payment cryptography
  • 2+ years experience utilizing agile methodologies within DevOps environments
  • Industry-recognized professional certifications such as CISSP, CCSP, AWS Certified Solutions Architect, CISM
  • 4+ years experience in the e-commerce industry
  • 4+ years experience in a regulated environment
  • 2+ years experience in financial services industry
  • 2+ years of experience in security integration for Mergers and Acquisitions

Work Rights

Not specified

Tailored Resume

Cover Letter