Capital One · 23 hours ago
Cyber Third Party Risk Reduction (CTPRR) Senior Manager, Program Oversight
McLean, VA
Full-time
Onsite
Senior Level, Lead/Staff, Director/Executive
$193K/yr - $220K/yr
6+ years expCapital One is a financial services company that is seeking a Cyber Third Party Risk Reduction (CTPRR) Senior Manager for Program Oversight. The role involves managing information security risks associated with third-party engagements, partnering with various stakeholders, and leading efforts to improve the CTPRR program based on industry trends and regulatory requirements.
BankingCredit CardsFinanceFinancial Services
No H1B
Responsibilities
Partner with all functions within CTPRR and stakeholders to gain a deep understanding of the third party ecosystem at Capital One
Work closely with the Cyber Audit and Exam function to develop and maintain a productive and seamless interaction model
Gather documentation from request for regulatory requests
Partner with broader Cyber functions and other Capital One stakeholders for input on recommendations for changes to the CTPRR program or the TPRM lifecycle
Draft responses for external requests that clearly describe details on the items being provided
Provide recommendations for enhancements to existing processes and program content
Keep current with industry trends and best practices through participation in external organizations
Lead efforts to address any issues identified through external reviews of the program
Participating in on site assessments of third parties during more focused reviews
Participate or lead ad hoc requests of the program
Participate with broader program enhancements and ongoing development activity
Willing to jump in to support any of the program functions when needs arise
Be well organized and able to manage multiple requests with aggressive timelines
Demonstrate strong ability to analyze information and data and leverage to support recommendations
Work in collaboration with multiple teams across Capital One, while maintaining business relationships
Develop and communicate quality recommendations to the program
Demonstrate strong subject matter expertise and sound judgement to align appropriate risk level
Communicate technical issues to non-technical people
Demonstrate strong problem-solving and conceptual thinking abilities
Demonstrate capacity to think broadly but go deep into subject matter when needed
Qualification
Required
High School Diploma, GED, or equivalent certification
At least 6 years of experience in Information Security conducting Risk Assessments
At least 5 years of experience in Information Security managing third party vendors
At least 5 years of experience communicating and presenting to senior level management
Preferred
CISSP, CISA, or CRISC certification
2+ years of audit experience
2+ years of experience in PCI DSS, NIST, ISO, or IT Operations Management
3+ years of experience at a Financial Institution
Benefits
Performance based incentive compensation
Cash bonus(es)
Long term incentives (LTI)
Comprehensive, competitive, and inclusive set of health, financial and other benefits
Company
Capital One
Capital One is a financial services company that provides banking, credit card, auto loan, savings, and commercial banking services.
10001+ employees
Funding
Current Stage
Public CompanyTotal Funding
$5.45BKey Investors
Berkshire Hathaway
2025-09-11Post Ipo Debt· $2.75B
2025-01-30Post Ipo Debt· $1.75B
2023-05-15Post Ipo Equity· $954M
Leadership Team
Lo Li
CTO, Managing Vice President Retail Bank
Daniel Arellano
Senior Vice President, Business Cards and Payments
Recent News
2025-12-29
2025-12-26
The Harvard Law School Forum on Corporate Governance
2025-12-20
Company data provided by crunchbase