Capital One Associate, Cyber Threat Strategy in Tysons Corner, Virginia

7900 Westpark Drive (12131), United States of America, Tysons, Virginia

At Capital One, we’re building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking. We measure our efforts by the success our customers enjoy and the advocacy they exhibit. We are succeeding because they are succeeding.

Guided by our shared values, we thrive in an environment where collaboration and openness are valued. We believe that innovation is powered by perspective and that teamwork and respect for each other lead to superior results. We elevate each other and obsess about doing the right thing. Our associates serve with humility and a deep respect for their responsibility in helping our customers achieve their goals and realize their dreams. Together, we are on a quest to change banking for good.

Associate, Cyber Threat Strategy

The Cyber Threat Strategy (CTS) team is tasked with developing Cyber Threat Use Cases that resonate with the various lines of business to ensure adequate coverage of insider and external threats across attack paths associated with people, applications, infrastructure, and systems.

The team is responsible for operationalizing use cases to support proper alignment of security controls. Successful candidates in this role will have basic to strong aptitude in strategies, processes, and technologies associated with external and insider threats.

The primary stakeholders are: 24x7 security monitoring team, Incident Response, Red Team, Threat Intelligence, Hunt, Architecture, Information Security Officers.

Roles and Responsibilities:

  • Manage various tasks, processes and technologies for the Threat Strategy program

  • Ensure use cases are aligned to business risks by partnering with key stakeholders

  • Outline and document opportunities for teams to strategize tactical cyber efforts

  • Partner with teams to develop actionable alerting to detect insider and external threats

  • Undertake special projects that requires access to very sensitive data, requiring enhanced monitoring and access validation

  • Model attack paths to understand critical process flows and attack vectors

  • Prioritize and validate use cases by testing tactics, techniques, and procedures (TTPs)

  • Ensure detective and preventative controls are applied along the attack path correctly

  • Manage and measure the lifecycle of Cyber Threat use cases

  • Develop and deliver presentations to senior leaders

  • Experience in conveying Cyber Security threat to business stakeholders to influence key decisions

  • Excellent oral and written communication skills

Basic Qualifications:

  • Bachelor's Degree or military experience

  • At least 1 year of technical experience in Cyber Security Operations, Insider Threat or Threat Intelligence program support

  • At least 1 year of experience with Cyber threat analysis and mitigations

  • At least 1 year of experience working with Cyber security solutions in the Public Cloud environments like AWS

  • At least 3 years of experience working with complex Cyber security data sets from SIEM, UBA, DLP, DRM or Endpoint Protection

Preferred Qualifications:

  • Cyber Security industry certification: CISSP,CISM, CEH, SEC+, CERT-ITPM

  • At least 3 + years of experience working with Cyber security solutions in Public Cloud environments (AWS)

  • At least 3 + years of experience working with complex Cyber security data sets from SIEMs, UBA, DLP, DRM or Endpoint Protection

At this time, Capital One will not sponsor a new applicant for employment authorization for this position.