Capital One Associate, Cyber Threat Strategy in Tysons Corner, Virginia
7900 Westpark Drive (12131), United States of America, Tysons, Virginia
At Capital One, we’re building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking. We measure our efforts by the success our customers enjoy and the advocacy they exhibit. We are succeeding because they are succeeding.
Guided by our shared values, we thrive in an environment where collaboration and openness are valued. We believe that innovation is powered by perspective and that teamwork and respect for each other lead to superior results. We elevate each other and obsess about doing the right thing. Our associates serve with humility and a deep respect for their responsibility in helping our customers achieve their goals and realize their dreams. Together, we are on a quest to change banking for good.
Associate, Cyber Threat Strategy
The Cyber Threat Strategy (CTS) team is tasked with developing Cyber Threat Use Cases that resonate with the various lines of business to ensure adequate coverage of insider and external threats across attack paths associated with people, applications, infrastructure, and systems.
The team is responsible for operationalizing use cases to support proper alignment of security controls. Successful candidates in this role will have basic to strong aptitude in strategies, processes, and technologies associated with external and insider threats.
The primary stakeholders are: 24x7 security monitoring team, Incident Response, Red Team, Threat Intelligence, Hunt, Architecture, Information Security Officers.
Roles and Responsibilities:
Manage various tasks, processes and technologies for the Threat Strategy program
Ensure use cases are aligned to business risks by partnering with key stakeholders
Outline and document opportunities for teams to strategize tactical cyber efforts
Partner with teams to develop actionable alerting to detect insider and external threats
Undertake special projects that requires access to very sensitive data, requiring enhanced monitoring and access validation
Model attack paths to understand critical process flows and attack vectors
Prioritize and validate use cases by testing tactics, techniques, and procedures (TTPs)
Ensure detective and preventative controls are applied along the attack path correctly
Manage and measure the lifecycle of Cyber Threat use cases
Develop and deliver presentations to senior leaders
Experience in conveying Cyber Security threat to business stakeholders to influence key decisions
Excellent oral and written communication skills
Bachelor's Degree or military experience
At least 1 year of technical experience in Cyber Security Operations, Insider Threat or Threat Intelligence program support
At least 1 year of experience with Cyber threat analysis and mitigations
At least 1 year of experience working with Cyber security solutions in the Public Cloud environments like AWS
At least 3 years of experience working with complex Cyber security data sets from SIEM, UBA, DLP, DRM or Endpoint Protection
Cyber Security industry certification: CISSP,CISM, CEH, SEC+, CERT-ITPM
At least 3 + years of experience working with Cyber security solutions in Public Cloud environments (AWS)
At least 3 + years of experience working with complex Cyber security data sets from SIEMs, UBA, DLP, DRM or Endpoint Protection
At this time, Capital One will not sponsor a new applicant for employment authorization for this position.