Director, Security Architect (Distinguished Engineer)

Center 2 (19050), United States of America, McLean, VirginiaDirector, Security Architect (Distinguished Engineer)

Distinguished Engineers are individual contributors who strive to be diverse in thought so we visualize the problem space. At Capital One, we believe diversity of thought strengthens our ability to influence, collaborate and provide the most innovative solutions across organizational boundaries. Distinguished Engineers will significantly impact our trajectory and devise clear roadmaps to deliver next generation technology solutions.

• Deep technical experts and thought leaders that help accelerate adoption of the very best engineering practices, while maintaining knowledge on industry innovations, trends and practices

• Visionaries, collaborating on Capital One’s toughest issues, to deliver on business needs that directly impact the lives of our customers and associates

• Role models and mentors, helping to coach and strengthen the technical expertise and know-how of our engineering and product community

• Evangelists, both internally and externally, helping to elevate the Distinguished Engineering community and establish themselves as a go-to resource on given technologies and technology-enabled capabilities

 

The Director, Enterprise Security Architect is responsible for delivering architecture outcomes for the Information Security organization and the Enterprise. This role works with stakeholders across the organization to securely meet the requirements of business initiatives and is a technical authority on cloud security architecture across the Enterprise.

Job responsibilities
• Establish strategic security architecture direction for cloud service adoption, including standards and frameworks that are aligned with overall business strategy

• Demonstrate technical leadership in security in interactions with all stakeholders

• Work closely with Security Engineering, the Divisional Information Security Officers, enterprise architecture, and infrastructure and operations teams to gather use cases, needs and develop architectures
• Foster shared understanding of current and emerging security threats & risks. Identify security architecture capabilities and create security architectures & solution patterns to mitigate those threats & risks
• Identity and develop new architecture standards for secure cloud adoption. Work with key stakeholders to gain approval and influence adoption.
• Develop architecture roadmaps for delivering new capabilities when multiple dependencies need to be managed
• Assess emerging technologies against security architecture to determine where they fill gaps, overlap with existing solutions or extend capabilities
• Contribute to the evolution of the architecture practice aligned with security and information technology organization strategy and objectives
• Implement technical proof of concepts that demonstrate how an architecture or design would be realized and prove out key technical concepts
• Participate in architecture governance processes for both information security and the Enterprise
• Serve as information security subject matter expert; provide advisory and consulting services as needed
• Review existing and proposed architectures, identify security design gaps, and recommend changes or enhancements
• Participate in solution architecture design; lead security efforts assisting with the integration and initial implementation of solutions
• Achieve security architecture compliance on requirements, including: Sarbanes-Oxley, PCI-DSS, HIPAA, data privacy requirements, as well as state and federal regulations
• Stay abreast of new security technologies and integrate into security architecture design when appropriate
 

Basic Qualifications:

• Bachelor’s Degree 

• At least 7 years experience software development or software engineering

• At least 3 years experience in Information Security 

Preferred Qualifications:

• 5+ years of experience in Cloud Native Security (Container Security, Infrastructure as Code, Serverless Security)

• 3+ years of experience in securing a public cloud environments (AWS, GCP, Azure)

• 3+ years of experience designing and implementing security solutions

• 3+ years experience utilizing Agile methodologies

• Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), AWS Certification

Capital One will consider sponsoring a new qualified applicant for employment authorization for this position.

No agencies please. Capital One is an Equal Opportunity Employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex, race, color, age, national origin, religion, physical and mental disability, genetic information, marital status, sexual orientation, gender identity/assignment, citizenship, pregnancy or maternity, protected veteran status, or any other status prohibited by applicable national, federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City’s Fair Chance Act; Philadelphia’s Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.

For technical support or questions about Capital One's recruiting process, please send an email to

Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.

Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).