Information Systems Auditor Salary in New York, NY

Center 1 (19052), United States of America, McLean, VirginiaManager, Cyber Risk & Analysis- Technology Audit (Hybrid)Capital One's Audit function is a dedicated group of professionals focused on delivering top-quality assurance services to the organization's Audit Committee. Audit professionals are experienced, well-trained and credentialed, and operate within a collaborative, agile environment to deliver value-added opinions and recommendations. Audit's vision to provide high value, independent, proactive insights, to innovate with technology, and to be a top-notch talent destination, creates a dynamic and challenging atmosphere for both personal growth and professional opportunity.Capital One is seeking an energetic, self-motivated Technology Manager with experience evaluating and analyzing technology and cybersecurity risks interested in becoming part of our Audit team. As a member of the Tech Audit team, the candidate will focus on audits of critical technology functions including cloud-based technology implementations, application controls, and cybersecurity risks.Responsibilities: Execute major components of audits, including critical technology functions, cloud-based infrastructure, emerging technology, cybersecurity, risk management, application, and third-party management, as well as lead small to medium size audits. Perform risk assessments of business units and technology operations, design and execute audit procedures to verify the effectiveness of existing controls, identify and define issues, review and analyze evidence, and document auditee processes and procedures. Understand the broader context and implications (e.g., financial, legal, reputational, etc.) of the various types of risk affecting the business and critical technology functions . Establish and maintain good auditee relations during engagements. Communicate or assist in communicating the results of some audit projects to management via written reports and oral presentations. Review and provide feedback on audit workpapers to achieve clear, organized and complete documentation to support work performed.Self prioritize and effectively plan own work activities managing multiple priorities and tasks across the team to deliver quality results. Coordinate with others and proactively take on additional work. Deliver appropriate, succinct and organized information, tailoring communication style to audience. Effectively communicate information, issues and audit progress to teammates and audit leaders.Perform various aspects of engagement administration, including hours and budget tracking.Provide periodic on-the-job coaching and direct supervision over less experienced associates.Ideal Teammate:You are a critical thinker who seeks to understand the business and its control environment.You believe insight and objectivity are core elements to providing assurance on the effectiveness and efficiency of Capital One's governance, risk management, and internal control processes.You possess a relentless focus on quality and timeliness.You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking.You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact and elevate Audit's value proposition.You're a firm believer that a rich understanding of data, innovation, and technology will only make you a better auditor. This will require leveraging the power of data analytics and furthering your technical expertise.You're a teacher. You do the right thing and lead by example. You have a passion for coaching and investing in the betterment of your team. You lead through change with candor and optimism.You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent.Basic Qualifications:Bachelor's Degree or military experienceAt least 5 years of experience auditing information technology (operations, software delivery, access management, information security, cloud computing)At least 3 years of experience in auditing information security (application security, network security, cyber security, data protection), or cloud computing controls (design, operation, risk management, auditing) or a combinationAt least 3 years of experience leading a team to deliver initiatives, collection of work or a combinationAt least 1 year of experience in cloud computing and controls (design, operation, risk management, or auditing)At least 2 years of experience in managing audit engagements, project management or a combinationAt least 3 years of experience in analyzing data extracts to identify trends, patterns, and anomalies, including 1 year of experience in test scripting or testing coding (writing, reviewing, or assessing)Preferred Qualifications:Certifications related to or pursuing certification related to Cloud, Cyber or Technology Operations, such as Cloud provider certifications, Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM), Certifications related to or pursuing certification related to Auditing, such as Certified Internal Auditor (CIA), or Certified Information Systems Auditor (CISA)6+ years of experience with IT control frameworks1+ years of experience auditing emerging technologies3+ years experience in cloud computing (notably AWS, GCP, Azure) and controls, or 1+ years of conducting audits of controls in cloud-based environments2+ years of experience in risk and data management2+ years of experience performing data analysis in support of internal auditingAt this time, Capital One will not sponsor a new applicant for employment authorization for this position.This role is hybrid meaning associates typically spend about half their time (2-3 days per week) in-person at one of our offices listed on this job posting. Monday and Fridays are enterprise- wide virtual work days. Tuesday, Wednesday and Thursday are in-person days for associates to spend time together working in our beautifully-designed team areas. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked.New York City (Hybrid On-Site): $163,300 - $186,400 for Manager, Cyber Risk & AnalysisCandidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter.This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan.Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex (including pregnancy, childbirth or related medical conditions), race, color, age, national origin, religion, disability, genetic information, marital status, sexual orientation, gender identity, gender reassignment, citizenship, immigration status, protected veteran status, or any other basis prohibited under applicable federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at [email protected]. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.For technical support or questions about Capital One's recruiting process, please send an email to [email protected] One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).

OverviewBaker Tilly US, LLP (Baker Tilly) is a leading advisory CPA firm, providing clients with a genuine coast-to-coast and global advantage in major regions of the U.S. and in many of the world's leading financial centers - New York, London, San Francisco, Los Angeles and Chicago. Baker Tilly is an independent member of Baker Tilly International, a worldwide network of independent accounting and business advisory firms in 145 territories, with 41,000 professionals and a combined worldwide revenue of $4.7 billion. Please discuss the work location status with your Baker Tilly talent acquisition professional to understand the requirements for an opportunity you are exploring. Baker Tilly is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability or protected veteran status, gender identity, sexual orientation, or any other legally protected basis, in accordance with applicable federal, state or local law. Any unsolicited resumes submitted through our website or to Baker Tilly US, LLP, employee e-mail accounts are considered property of Baker Tilly US, LLP, and are not subject to payment of agency fees. In order to be an authorized recruitment agency ("search firm") for Baker Tilly US, LLP, there must be a formal written agreement in place and the agency must be invited, by Baker Tilly's Talent Attraction team, to submit candidates for review via our applicant tracking system. ResponsibilitiesAre you interested in joining one of the fastest growing consulting and accounting firms in the country?Would you like the ability to join a highly dynamic team focused on providing exceptional client service in the area of informational technology risk advisory?If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Senior Consultant! Our Risk Advisory practice provides a full spectrum of services to help our clients assess their risks, develop strategies to compete in an ever-changing business environment, and achieve their goals and objectives. All of this is accomplished through deep industry knowledge of risk, governance, internal audit, compliance, IT, and cybersecurity best practices.As one of the fastest growing firms in the nation, BT has the ability to offer you upward career trajectory, flexibility in how and where you get your work done and meaningful relationships with clients, teammates and leadership who truly care about you and your development.You will enjoy this role if: You want to continue to expand your work experiences and hone your skills as an IT risk professional in the areas of compliance, cybersecurity, and internal controlsYou crave the opportunity to be part of a fast growing, entrepreneurial risk consulting practice where your hard work and creativity will be rewardedYou do your best work when you are part of a talented, down-to-earth team that thrives in collaboration and truly enjoys working togetherYou feel valued when you are provided the resources and support to continually sharpen your technical skills and build your career now, for tomorrow What you will do:Work closely with client executives and management teams to understand their businesses and assist in identifying and managing financial and operational risks within their business systems to ensure technology risks are managed:Develop in-depth knowledge of clients' businesses and industries by having direct client interaction while working on multiple aspects of an engagementThink independently and strategically about your clients' business, systems and risks providing recommendations for business and process improvements based upon knowledge gained relative to the client's operations, processes and business objectivesProvide strategic business assurance to clients by assisting in the implementation of new processes and controls that address key risks Assess, manage and optimize information technology risk across a wide range of areas, including cybersecurity, IT strategy and governance, IT regulatory and compliance requirements, and business continuityReview clients' processes and controls against industry frameworks, identifying gaps in design and execution, and communicating issues and recommendations to clientsAssist in the development of audit programs and the execution of internal audits and IT control assessments in the areas of:IT strategy and governanceIT operations, business continuity and disaster recoveryCybersecurityThird party riskITGC and application controlsSOC reporting Regulatory and compliance requirementsAssist in drafting comprehensive executive summaries and final reports for delivery to the client, documenting and reviewing engagement work papers in accordance with industry-accepted internal audit methodologiesAct as a valued business advisor, build relationships and communicate effectively with the client to provide superior client serviceFacilitate professional and effective presentations to internal and external audiencesContinue to develop your knowledge and experience working with a variety of technology environments, platforms, applications and tools/utilitiesDemonstrate the desire to continually grow, learn and develop skills and knowledge through external and internal education, training and cross-training opportunities to maximize personal contribution to the organizational goals and ongoing career developmentUtilize your entrepreneurial skills to network and build strong relationships internally and externally with clientsSupport the growth and development of team members through the Baker Tilly Care and Teach philosophy, helping associates meet their professional goalsEnjoy friendships, social activities and team outings that encourage a work-life balanceQualificationsSuccessful candidates will have: Bachelor's degree in management/computer information systems, computer science, accounting information systems, computer engineering, industrial engineering, or related programCISA, CISSP, CISM, CIA, or CPA certifications preferred2+ year(s) experience with IT audit or cybersecurityExperience as a client serving professional for a consulting firm desiredExcellent analytical, technical and problem solving skills, with strong attention to detailExceptional verbal and written communication, collaboration, and time management skillsAdditional InformationFor California, Colorado, New York and Washington: The compensation range for this role is $78,840 to $167,130. Actual compensation is influenced by a variety of factors including but not limited to skills, experience, qualifications, and geographic location.

RESPONSIBILITIES:Kforce has a client that is seeking to hire a Senior Audit Manager - Lending Operations in New York City, New York (NY).Summary:This client offers a comprehensive benefits package that includes generous paid time off and the ability to participate in medical coverage and 401(k) plan on your very first day. They are committed to diversity and inclusion, and to providing all our team members with an equal opportunity to succeed and make meaningful contributions within a work environment that is respectful, welcoming, and inclusive.Responsibilities Include: Identify risks, assess mitigating controls, determine root causes, and make recommendations to improve the control environment Prepare audit report summarizing background of audit performed, audit scope, recommendations, and audit conclusion The Senior Audit Manager will prepare work papers documenting and supporting audit procedures, findings, and results; Participate in department-wide initiatives and perform other duties as assigned Performing audits that provide an independent and objective evaluation of credit risk within the commercial and consumer lending portfolios Provide an assessment of the accuracy and timeliness of credit risk management processes and the effectiveness of credit administration activities including risk analysis, portfolio monitoring, portfolio metrics, credit and portfolio quality, policy compliance, underwriting guideline adherence, problem loan management, management information system data completeness and accuracy, and other credit risk servicing areas The Senior Audit Manager will prepare a well-developed audit approach and document high quality work papers for credit and operational auditsREQUIREMENTS: Bachelor's degree in Finance, Accounting, Economics, or a related field; Master's degree preferred CPA certification is preferred 10-15+ years of professional auditing, credit risk, or comparable experience Significant experience required in review of, or auditing of credit risk management, credit review, underwriting, and/or lending in a variety of industry types Microsoft Office (Word and Excel) knowledge Strong knowledge/understanding of banking products and practices, operations, regulatory, industry, banking competition, and potential risk areas is preferred The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future. We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave. Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law. This job is not eligible for bonuses, incentives or commissions. Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

Assist in planning engagements based on technology and business risks.Conduct interviews, process walk-throughs, and document results.Execute technology audits and advisory projects by analyzing, testing and evaluating the entity's control environment by using a blend of traditional sampling and automation.Identify control weaknesses, and/or business productivity/efficiency opportunities.Assess the risks associated with various business objectives and evaluate the controls in place to mitigate those risks.Work with management to identify corrective actions for improvement given existing business and control risks and other cost-benefit considerations.Draft audit report findings and process improvements for review at closing meetingsCommunicate audit findings to management.MPI does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, veteran status, marital status, or based on an individual's status in any group or class protected by applicable federal, state or local law. MPI encourages applications from minorities, women, the disabled, protected veterans and all other qualified applicants.Must have a Bachelor's Degree in Computer Science, Information Systems, Business Administration or Finance.Must have at least 1 year of IT Internal Audit experience, preferably a public accounting environment.Professional Certification (CISA, CRISC, CISSP, CIA, CPA, Microsoft certification) is preferred, or the incumbent should be actively working to achieve a professional designation.Must have the ability to communicate with Associates at all levels including senior management.Must have proven IT Internal Audit skills and a technical knowledge in basic concepts of IT Auditing, as well as a good understanding of industry standard practices.Must possess excellent oral and written communication skills, as well as excellent listening ability and presentation skills.

Ensure timely completion of engagement tasks, adhering to Corporate Audit methodology and international standards.Manage personal delivery of assigned activities and test procedures, including control testing, documentation, and process observation.Conduct audit testing collaboratively with colleagues across all organizational levels.Complete all audit areas promptly and produce high-quality supporting work papers.Support observations with relevant evidence and documented information.Contribute to accurate and concise reporting, including drafting initial audit observations and corrective actions.Follow up on recommendation's implementation and conduct periodic testing of their effectiveness.Maintain membership with ISACA and commit to IT internal audit standards.Handle administrative tasks promptly, including audit repository maintenance, time sheets, travel arrangements, and performance evaluations.MPI does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, veteran status, marital status, or based on an individual's status in any group or class protected by applicable federal, state or local law. MPI encourages applications from minorities, women, the disabled, protected veterans and all other qualified applicants.Bachelor's degree in a relevant field such as Information Systems, Computer Science, or Information Security & Assurance.Minimum of 2 years of relevant experience in IT audit.Basic understanding of audit methodologies, risk-based auditing techniques, COSO Internal Control - Integrated Framework, Sarbanes-Oxley Act of 2002, and other applicable regulations.Familiarity with IT General Controls and IT SOX requirements.Demonstrated ability to conduct technical testing of ITGC and IT SOX controls for validation.Currently qualified, working towards, or willing to commit to achieving CISA, CRISC, or equivalent certification.Understanding of IT governance processes, business applications, and associated technical infrastructure.

DESCRIPTIONThe AWS Security Assurance Engineering team is in the business of building customer trust. We are responsible for scaling AWS's ability to exceed the security and compliance expectations of our regulators, auditors, and customers globally. We design and build services that stand up to the scrutiny of external regulators and inspection by AWS's most security-sensitive customers. We are a multidisciplinary team comprising software engineers, security engineers, technical product/program managers, data engineers, and compliance specialists. If you are looking for an opportunity to think big, invent, experiment, build, and have a material impact on cloud security and compliance, this is it.As a Senior Software Engineer on our team, you will influence projects or initiatives that span across multiple products and/or teams, you will build and own internal services that identify and monitor security/compliance-relevant attributes of key infrastructure, streamline and scale execution of security and compliance audits/examinations of AWS services, and expand our ability to continuously monitor key security functions. You will demonstrate a high bar for engineer excellence, lead the technical strategy, and technical advisory for adjacent teams. You will write code that works at Amazon scale, mentor SDEs, contribute to solving complex engineering problems as well as business problems and understand and improve our agile processes to help us evolve a vision of compliance and security at AWS.Key job responsibilitiesIn this role you will:Write high-quality code with thorough test coverage as you mentor other developers so they can learn from your CRs.Find out what it takes to engineer systems for "Amazon Scale".Realize that making software work is just the start and you value talking about cattle-vs-pets, continuous resiliency and capacity testing.Truly care about designing highly available, secure, distributed systems of microservices, then you will make them even better by consulting with peers and technical leaders.Work on Agile projects that have high visibility while making continuous improvements to planning, design, implementation, testing, and operations processes.Have full ownership and operate the systems that you build based on real-time customer data and demanding service-level agreements.About the teamAbout Amazon SecurityDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon Security?At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Inclusive Team CultureIn Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training & Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.We are open to hiring candidates to work out of one of the following locations:New York, NY, USABASIC QUALIFICATIONS- 5+ years of non-internship professional software development experience- 5+ years of programming with at least one software programming language experience- 5+ years of leading design or architecture (design patterns, reliability and scaling) of new and existing systems experience- Experience as a mentor, tech lead or leading an engineering teamPREFERRED QUALIFICATIONS- 5+ years of full software development life cycle, including coding standards, code reviews, source control management, build processes, testing, and operations experience- Bachelor's degree in computer science or equivalent- Experience leading and influencing your team or organizationAmazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $134,500/year in our lowest geographic market up to $261,500/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.

Partake in all facets of IT Audit and emerging areas. MPI does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, veteran status, marital status, or based on an individual's status in any group or class protected by applicable federal, state or local law. MPI encourages applications from minorities, women, the disabled, protected veterans and all other qualified applicants.5+ years of IT Audit experience within Financial Services or Public AccountingProfessional Certification related to Audit such as CISA, CRISC, CISSP, & etc)Bachelor's degree in Information Technology, Business, Accounting, Finance or related field is required.Strong project management and time management skills, ability to effectively balance competing priorities, and demonstrated success in delivering on-time and on-budget work product.Knowledge, understanding and experience in one or more information technology risk and control areas including logical and physical security, system development lifecycle (e.g. Agile and Waterfall), change management, IT operations, business continuity management and infrastructure (network, operating systems, databases, data center, etc.).

NYC 299 Park Avenue (22957), United States of America, New York, New YorkAudit Director, Payments Network (Hybrid)Capital One's Audit function is a dedicated group of professionals focused on delivering top-quality assurance services to the organization's Audit Committee. Audit professionals are experienced, well-trained and credentialed, and operate within a collaborative, agile environment to deliver value-added opinions and recommendations. Audit's vision to provide high value, independent, proactive insights, to innovate with technology, and to be a top-notch talent destination, creates a dynamic and challenging atmosphere for both personal growth and professional opportunity. Inspired by our colleagues, we are risk identifiers, challengers, influencers, and transformational leaders who drive impactful work for the enterprise.Capital One is seeking an energetic, self-motivated Audit Director interested in becoming part of our Audit team to serve as a leader for our assurance over a global payments network, platforms, technologies, and related operations (e.g., credit/debit processing, digital payments, acquiring, servicing domestic/abroad, settlement operations). We are seeking an experienced candidate that has strong knowledge of payments network operations and ecosystem related risks, as well as risk management and regulatory expectations for a large financial institution. The candidate will develop the strategy for auditing a payments network, as well as lead and execute related audits associated with controls and governance processes for Capital One. Responsibilities:Develop the strategic coverage approach for the relevant audit universe, including proactive monitoring for changing risks and necessary coverage approach changes. Lead continuous monitoring activities and updates to risk assessments, audit universe, and audit plan for relevant entities.Establish and maintain good relationships with key business leaders and audit partners. Leverage specialized knowledge and skills, providing management with insight into their area of subject-matter focus, building trust and mutual respect. Effectively represent internal audit at management meetings, internal forums, regulatory update meetings as well as to external organizations.Identify emerging risks and trends in areas of focus related to global payments networks and take opportunities to present them to internal and stakeholder management.Direct audits and project audits across the portfolio, including supervising audit teams and engagement managers, and coordinating with support Audit specialist teams.Review engagement planning documentation and audit programs to ensure adequate coverage of risk and sufficient rationale for audit scope. Maintains close control over budget, schedule and quality.Effectively review and compile relevant, material findings and recommendations into readable and concise audit reports. Communicate complex results and implications, incorporating different perspectives into deliverables.Assess relevance of audit findings, potential exposures, materiality, improving or deteriorating trends, and demonstrate awareness of big picture issues. Interpret business priorities, anticipate issues and obstacles, and apply to scope of role.Provide timely feedback, on-the-job training and coaching to audit staff and direct reports. Help team members grow their careers. Maintain an open, inclusive and trusting team environment.Participate in due diligence projects on behalf of Audit as well as lead Initial Control Reviews resulting from signed due diligence deals for the business.Deliver appropriate, succinct and organized information, tailoring communication style to audience.Manage timely and quality delivery of multiple tasks, including audits, projects, issue and regulatory commitment follow up, special assignments, and administrative activities. Self-prioritize and independently complete multiple tasks across the team and department. Demonstrate the ability to successfully meet deadlines.Here's what we're looking for in an ideal leader:You are a critical thinker who seeks to understand the business and its control environment.Solid people leadership experience: Ability to build and leverage the capabilities of a high-performing team, as well as business partners across the enterprise.You believe insight and objectivity are core elements to providing assurance on the effectiveness and efficiency of Capital One's governance, risk management, and internal control processes.You possess a relentless focus on quality and timeliness.You prioritize achievement of the team's collective goals.You adapt to change, embrace bold ideas, and are intellectually curious. You like to ask questions, test assumptions, and challenge conventional thinking.You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact and elevate Audit's value proposition.You're a firm believer that a rich understanding of data, innovation, and technology will only make you a better auditor. This will require leveraging the power of data analytics and furthering your technical expertise.You're a teacher. You do the right thing and lead by example. You have a passion for coaching and investing in the betterment of your team. You lead through change with candor and optimism.You create energy and an environment that fosters trust, collaboration, and belonging, making it easy to attract, hire, and retain top talent.Basic Qualifications:Bachelor's degree or military experienceAt least 10 years of experience primarily in global payment network operations, risk management and assurance experienceAt least 4 years of experience in risk management or auditAt least 3 years of experience in people managementAt least 3 years of project management experience or at least 3 years of experience managing audit engagementsPreferred Qualifications:Master's Degree in information systems, Accounting, Finance, Economics, or Business AdministrationProfessional certification such as Certified Information Systems Auditor (CISA), Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Chartered Financial Analyst (CFA), or Certified Risk Manager (CRM)12+ years of experience in auditing, in risk management or a combination7+ years of experience in auditing or risk management of payments network operations7+ years of experience in banking or financial services7+ years of experience in leadership or supervisory roles1+ years of experience performing data analysis in support of internal auditingAt this time, Capital One will not sponsor a new applicant for employment authorization for this position.This role is hybrid meaning associates typically spend about half their time (2-3 days per week) in-person at one of our offices listed on this job posting. Monday and Fridays are enterprise- wide virtual work days. Tuesday, Wednesday and Thursday are in-person days for associates to spend time together working in our beautifully-designed team areas.The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked.New York City (Hybrid On-Site): $274,800 - $313,600 for Director, Cyber TechnicalCandidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter.This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan.Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex (including pregnancy, childbirth or related medical conditions), race, color, age, national origin, religion, disability, genetic information, marital status, sexual orientation, gender identity, gender reassignment, citizenship, immigration status, protected veteran status, or any other basis prohibited under applicable federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at [email protected]. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.For technical support or questions about Capital One's recruiting process, please send an email to [email protected] One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).

Analyze tech processes and workflows to pinpoint areas for better design and smoother operations.Lead and participate in risk-based financial audits, compliance reviews, and special projects, leveraging your residence expertise. This includes a focus on SOX adherence for IT and application controls.Develop detailed and replicable work papers that clearly support your audit conclusions and can be used by external auditors and other compliance entities.Present audit findings and recommendations to stakeholders in a way that's easy to understand, concise, and measurable.Collaborate with business partners to provide valuable and insightful feedback that helps management make informed decisions.Act as a liaison with external auditors regarding SOX compliance efforts.MPI does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, veteran status, marital status, or based on an individual's status in any group or class protected by applicable federal, state or local law. MPI encourages applications from minorities, women, the disabled, protected veterans and all other qualified applicants.Bachelor's degree in a relevant field such as Management Information Systems, Computer Science, Finance, Accounting, or Business Administration.3+ years of experience in internal audit, SOX compliance, or public accounting.Strong knowledge of IT General Controls, including logical security, change management, physical security, application controls, and operations.1+ years of experience with audit methodologies, using various tools for sampling, testing, and documentation.Experience analyzing data to extract insights and inform decisions.Proactive and analytical thinker who thrives in an independent environment with minimal supervision.Ability to execute all phases of SOX compliance process, including mapping workflows, testing control design and implementation, and evaluating operational effectiveness.Adaptable learner who can quickly grasp complex audit areas like on-premise systems, cloud technology, and system/report testing.Strong interest in staying current with emerging technologies and tools.Experience with audit management software (e.g., LogicGate) and general ledger systems (e.g., Oracle Fusion).Familiarity with data analytics tools (e.g., SQL, Tableau, Power BI) and automation tools (e.g., Alteryx, Python, Blue Prism) is a plus.

DESCRIPTIONDo you have a passion for applying cutting edge technologies and automation in traditionally manual processes? Do you have experience in finding innovative solutions to scale security controls across diverse teams and technologies? Do you have ideas about influencing the future of how AWS delivers assurance for its customers? At Amazon Web Services (AWS), Security is our highest priority. Come, join a creative team at Security Assurance dedicated to engaging with our most regulatory and security conscious customers. We solve customers’ most challenging regulatory compliance, audit, and risk management requirements to provide customers with the confidence to operate their most sensitive workloads securely on AWS. We are looking for an independent, passionate, and deeply experienced leader with experience and expertise in developing and implementing compliance and assurance programs in global environments. You will join our team in helping customers understand how our infrastructure is designed, operated, maintained, and protected in accordance with global regulated industry standards. You will engage AWS customers to rationalize and satisfy their audit, compliance, and risk requirements specific to AWS. A successful candidate will have deep knowledge of regulatory compliance, audit, and risk management principles. We are looking for an experienced industry professional who understands complex IT and compliance processes, and evaluates opportunities for improvement.The successful candidate is one who loves working across many stakeholders, including internal and external customers, to design solutions for compliance challenges. You are passionate about the security of the cloud and you want to solve real business problems. You are a technically experienced and innovative security, compliance, and audit professional who has the ability to understand IT processes, communicate clearly and transparently with customers, and to be able to drive innovative process changes through multiple organizations and teams. You will be a positive influencer across diverse teams, be able to effectively rally support for your initiatives and be able to collaborate with others to drive simple, scalable solutions to meet customer and regulator expectations. You will have an opportunity to work directly with senior leadership within AWS to improve AWS’ ability to demonstrate assurance for regulated customers.Key job responsibilitiesIn this role, you will be responsible for the following activities:- Dive deep into the AWS control environment to develop broad domain and technical understanding of AWS security activities and control implementations to articulate compliance implications to both customers and internal/external audit functions.- Develop understanding of regulated industry compliance requirements and communicate how AWS control activities meet customer obligations.- Simplify and decompose security compliance requirements into clear technical control specifications and policies.- Field and address requests for team support in collaboration with internal and external stakeholders.- Liaise with customers, regulators and auditors, articulate control implementation, and describe considerations for applying security and compliance concepts to a technical cloud environment.- Apply a working knowledge of global information security regulation and policy to articulate customer and control impact and drive alignment to AWS controls.- Implement mechanisms to address recurring escalation patterns and persistent challenges.- Identify deep, actionable insights of our global assurance capabilities to enhance the program, with an emphasis on efficiency and scale.About the teamDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon Security?At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Inclusive Team CultureIn Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training & Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.We are open to hiring candidates to work out of one of the following locations:Arlington, VA, USA | Herndon, VA, USA | New York, NY, USA | Seattle, WA, USABASIC QUALIFICATIONS- 4+ years of experience in program or project management in technical environments.- 4+ years of experience in either risk management, audit, or compliance in regulated industries or a provider of services to regulated industries.- 1 or more industry-recognized security, cloud, or audit professional certifications (e.g., CISA, CISM, CISSP, CCSP, AWS Cloud Security Practitioner)PREFERRED QUALIFICATIONS- Bachelors, Masters or Diploma in Computer Science, Information Systems Management, Auditing, Cybersecurity or other related fields.- Experience in technical security design, compliance consulting, or advisory work in support of a highly technical environment.- Experience working with technical compliance frameworks / programs, such as NIST, ISO, PCI, GDPR.- Experience working with third and fourth party risk management programs.- Experience managing, performing, and/or overseeing IT self-assessments or audits, and the respective gap remediation.- Experience responding to, and driving action from, regulatory findings.Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $91,800/year in our lowest geographic market up to $196,300/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.