Manager, Cyber Security Operations

Center 3 (19075), United States of America, McLean, Virginia

Not sure what skills you will need for this opportunity Simply read the full description below to get a complete picture of candidate requirements.

Manager, Cyber Security Operations

Capital One is looking for a Manager of Cyber Security Operations to join our team in McLean, VA. This position is not traditional management, and will require front line leadership and collaboration across multiple teams.

You will operate at the operational and tactical level, engaging with stakeholders across the corporation to drive results.

This includes :

• Develop, maintain, and enforce a centralized strategy for enterprise monitoring (logging & alerting), socialized and signed off across Cyber.
• Drive alignment with requirements under official enterprise policies, such as our Information Security Standard.
• Use data to measure enterprise monitoring posture, coverage, maturity level, and performance, providing a unified narrative to the enterprise.
• Identify monitoring risks and impediments, identifying solutions, and escalating to leadership in a timely manner.
• Maintain alignment with security monitoring regulatory requirements as well as internal and external assessments.
• Deliver high level briefings to a variety of stakeholders with an aim to drive priorities.
• Technically lead our most complex investigations by developing comprehensive investigative strategies as well as executing or coaching other analysts on its execution.

Basic Qualifications :

• High School Diploma, GED, or equivalent certification.
• At least 4 years of experience in a Cybersecurity operations role.
• At least 4 years of experience leveraging security and infrastructure technologies during investigations using firewall logs, network security tools, malware detonation devices, proxies, IPS, or IDS.
• At least 4 years of experience working with Linux, Unix, or Windows Operating Systems.
• At least 4 years of experience analyzing and identifying malicious or suspicious network traffic.
• At least 3 years of experience coordinating and supporting cyber incident handling and remediation.
• At least 3 years of experience doing file analysis investigating gzipped content, base64 obfuscations, and file-specific forensics.
• At least 3 years of experience analyzing application and network based attacks.
• At least 2 years of experience with packet capture analysis.
• At least 1 year of experience managing, monitoring, or configuring public cloud environments (AWS, Azure, or GCP).

Preferred Qualifications :

• Bachelor’s Degree.
• 1+ years of experience with dynamic malware analysis.
• 2+ years of experience with configuring security appliances.
• 2+ years of experience developing SIEM alerts and IPS and IDS signatures.
• 6+ years of experience in a Cybersecurity operations role.
• 6+ years of experience with public cloud technologies.
• CISSP, CISM, CCSP, Security+, CEH SANS GIAC 503 or 504, or AWS Security Certification.

J-18808-Ljbffr