Senior Associate, Technology Controls Testing – Enterprise Services Risk at Capital One | Hybrid Hired

About the role

Senior Associate testing automated controls within the Enterprise Services Risk organization at Capital One. Collaborating across teams to enhance risk management through automation and innovative solutions.

Responsibilities

Perform independent control testing activities and document results.
Design and execute automated "Tests of Effectiveness" (ToE) for controls across AWS, Azure, and GCP.
Use code to perform analysis and repeatable tasks.
Leverage Google Apps Script and other automation tools to streamline internal audit workflows, documentation, and reporting processes.
Leverage tools (e.g., Python/SQL) to extract and analyze data from cloud APIs.
Visualize and create dashboards to support continuous control monitoring.
Maintain a broad understanding of major cloud service providers (AWS, GCP, Azure) and their respective vulnerabilities to identify and escalate critical risks.
Demonstrate sound program management by documenting and communicating action plans, impediments, and risks to stakeholders.
Research industry practices and regulatory changes; make recommendations to change policies and control programs to mitigate evolving risks in the cloud.
Effectively self-challenge control programs and escalate risks where appropriate to ensure alignment with Information Security Standards.

Requirements

High School Diploma, GED or Equivalent Certification
At least 2 years of experience in Risk Management, Process Management, or Project Management
At least 2 years of experience in technology, audit, or cyber security risk management frameworks
At least 1 year of experience working with scripting languages (e.g., Python, SQL, or JavaScript/Apps Script)
At least 1 year of experience evaluating or implementing controls testing or risk assessment activities
Bachelor's Degree or Military Experience (Preferred)
Risk Certifications (CRISC, CISM, CRCM, CIPP, CISA, CISSP, ABA Risk Mgmt Certification) (Preferred)
3+ years of experience in Risk Management, Internal Audit, or Information Security (Preferred)
Hands-on experience with cloud risk, governance, and control validation across AWS, GCP, or Azure (Preferred)
Experience building automated workflows or custom tools within Google Workspace using Apps Script (Preferred)
Professional certifications such as CISA, CISSP, or Cloud-specific certifications (Preferred)
Experience testing internal controls within a "Continuous Auditing" or "Continuous Monitoring" framework (Preferred)
Skilled at communicating technical risks to non-technical auditors and cross-functional partners at all organizational levels (Preferred).

Benefits

Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being.

Similar roles

Browse all Risk jobs

3 hours ago

WB

Risk & Control RCSA Manager

Western Alliance Bank

Risk professional managing risk programs and BU risk activities at Western Alliance Bank. Engaging with business units to manage risks and ensuring adherence to risk policies and corporate strategy.

Onsite Role

Phoenix United States Risk

6 hours ago

SF

Technology Risk Analyst

skillventory - A Leading Talent Research Firm

Technology Risk Analyst supporting risk management functions and audits in Fidelity's Brokerage and Wealth Technology Risk team. Involves assessments of technology risk, compliance tasks, and control evaluations.

Hybrid Role

United States Risk

7 hours ago

CO

Senior Manager, Risk – Platform Modernization

Capital One

Senior Risk Manager at Capital One, driving strategy and execution of platform modernization projects. Leading complex projects in risk management while collaborating with key stakeholders.

Hybrid Role

McLean United States Risk

$177,700 - $202,800 per year

8 hours ago

BO

Senior Manager – Emerging Risk and Strategy

Boeing

Senior Manager leading Emerging Risk and Strategy at Boeing, developing risk mitigation strategies and collaborating across business units. Ensuring compliance with new legal requirements and regulations.

Hybrid Role

Arlington United States Risk

$197,200 - $285,200 per year

9 hours ago

BB

Senior Manager – Risk Transformation

BBVA

Senior Manager role in Risk Transformation at BBVA, leading initiatives to enhance capital management and provisions. Collaborating in a multidisciplinary team to innovate within financial services.

Hybrid Role

Madrid Spain Risk

15 hours ago

IN

Head of Risk

Inlogik

Head of Risk managing and enhancing enterprise risk frameworks in corporate environments. Collaborating with leadership to ensure comprehensive governance and compliance across the organisation.

Hybrid Role

Hawthorn Australia Risk

A$200,000 - A$220,000 per year

21 hours ago

MU

Information Risk Manager – Vice President

MUFG

Vice President of Risk and Controls Operations supporting risk management across the enterprise at MUFG. Responsible for coordinating technology risk assessments and operationalizing controls.

Hybrid Role

Tampa United States Risk

$125,000 - $164,000 per year

23 hours ago

PW

Senior Associate, Transformation Risk and Advisory

PwC

Advisory role focusing on risk management and transformation projects at PwC. Collaborating with teams to implement governance, management strategies and lead complex programmes.

Onsite Role

Toronto Canada Risk

CA$65,600 - CA$109,300 per year

yesterday

EE

Lead Data Governance Engineer

EEOC

Data Governance Engineer shaping mission data governance by leading modernization efforts for national security clients. Collaborating with stakeholders to implement data management strategies.

Hybrid Role

Columbia United States Risk

$99,000 - $225,000 per year

yesterday

EE

Senior Data Governance Engineer

EEOC

Senior Data Governance Engineer at Booz Allen leading modernization efforts for mission data governance. Collaborating with stakeholders to implement data strategies supporting national security efforts.

Hybrid Role

Columbia United States Risk

$86,900 - $198,000 per year