Capital One Network Vulnerability & Risk Management Specialist in Plano, Texas

West Creek 4 (12074), United States of America, Richmond, Virginia

At Capital One, we’re building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking. We measure our efforts by the success our customers enjoy and the advocacy they exhibit. We are succeeding because they are succeeding.

Guided by our shared values, we thrive in an environment where collaboration and openness are valued. We believe that innovation is powered by perspective and that teamwork and respect for each other lead to superior results. We elevate each other and obsess about doing the right thing. Our associates serve with humility and a deep respect for their responsibility in helping our customers achieve their goals and realize their dreams. Together, we are on a quest to change banking for good.

Network Vulnerability & Risk Management Specialist

As a Vulnerability and Risk Management Specialist, you will leverage analytic and technical skills to discover cyber risks; prioritize assets, assess risks and remediation/mitigation techniques; report on risks, and drive and track remediation/mitigation/acceptance of risk to tackle cyber business problems.

Vulnerability Management & Analysis:

  • Analyze vulnerabilities, investigate solutions and countermeasures

  • Review and validate vulnerability findings using tools, data sources available; identify new sources as needed

  • Advise stakeholders on appropriate prioritization of remediation/mitigation solutions

  • Project vulnerability decrease against proposed mitigation

  • Provide appropriate challenge to risk acceptance

  • Leverage creativity and influence to enhance the Network Vulnerability Management program

Risk Management:

  • Partner with Network Engineering and Operations to vet risks and develop mitigation plans / countermeasures

  • Document risks in a clear, concise manner using language that is easily understood by non-technical associates

  • Measure inherent risk; derive residual risk after countermeasures are applied

  • Develop materials to educate Network Operations on security best practices

  • Conduct proactive risk assessments to facilitate audit readiness

  • Partner with stakeholders to manage Network risk portfolio to Capital One’s processes and procedures

Our ideal candidate will have:

  • Degree specialized in Science, Technology, Engineering or Mathematics discipline

  • Solid experience in IT Risk Management and Network Vulnerability Analysis

  • Document risks in a clear, concise manner using language that is easily understood by non-technical associates

  • Measure inherent risk; derive residual risk after countermeasures are applied

  • Working knowledge of access controls

  • Ability to learn new skills as the environment evolves

Basic Qualifications:

  • Bachelor’s Degree or Military Experience

  • At least 3 years of experience in Network Engineering or Operations (Cisco)

  • At least 2 years of experience in Network Vulnerability Analysis

  • At least 2 years of experience in IT Risk Management

Preferred Qualifications:

  • Security related certification such as CEH, CISSP, CISM, etc.

  • Network related certifications such as CCNA Route/Switch, CompTIA Network+ Advanced Network Certification such as CCNP

  • 2+ years’ experience working in an Agile environment

  • 1+ years’ Blue Coat Proxy, F5 Load Balancer, Firewall, Aruba Wireless

  • 1+ years’ experience in scripting languages like Python, JSON, XML, SQL, etc.

  • 1+ years’ experience in querying, analyzing and working with large amounts of data

  • 1+ years’ experience working with Vulnerability scanning & reporting tools (Qualys, Rapid 7, NMAP, Kenna, NMAP and GRC tools such as RSA Archer

At this time, Capital One will not sponsor a new applicant for employment authorization for this position.