Information Security Analyst

Center 1 (19052), United States of America, McLean, Virginia Cyber Security Log Management Analyst Capital One is looking for an associate to join our Cyber Security Log Management program. This team is responsible for enabling comprehensive cyber monitoring. We achieve our mission by designing processes and collaborating with teams across the company, in order to deliver an enterprise impact. We are looking for a team player who is able to operate at the tactical level, identify and document the threat landscape of our most sensitive systems, enhance our approach to managing the costs of maintaining cyber-relevant logs, and support strategic program enhancements. Our associates are empowered to drive projects which increase the effectiveness and capability of our end to end alerting and monitoring process, and have opportunities to brief the impact of their work to senior leadership. A successful candidate will work effectively both individually and within a team, apply critical thinking to create solutions in areas of high ambiguity, and to deliver those solutions by creating consensus, driving priorities, and building relationships. Responsibilities: Develop and maintain the Enterprise cyber security logging and alerting strategy Develop and maintain logging and alerting processes, procedures, and controls Drive prioritization and management of log ingestion into Capital One s SIEM Facilitate discussions which support alert use case development, log ingestion prioritization, and timely risk-based response to investigations and incidents Perform cyber security monitoring gap analysis and drive solutioning to improve maturity Identify monitoring risks, challenges, and opportunities, and escalate to leadership in a timely manner, as necessary Maintain awareness of, and design processes in accordance with, relevant regulatory and governance requirements Drive enterprise alignment with logging and alerting requirements under official enterprise policies Basic Qualifications: High School Diploma, GED, or equivalent certification At least 3 years experience in Cyber Operations At least 2 years of experience working with Linux or Windows operating systems At least 2 years of experience analyzing cyber security log data CompTIA Security certification Preferred Qualifications: Bachelor s Degree 2 years experience in threat modeling/use case development, information security standards, and data flow within a medium to large information environment 2 years experience working with SIEM alerts 3 years experience creating complex presentations using the Google Workspace suite Ability managing responsibilities and tasks across multiple projects Ability to develop and communicate technical content to non-technical audiences Associate-level AWS certification – AWS Certified Cloud Practitioner, Solutions Architect, SysOps Administrator or Developer Certification At this time, Capital One will not sponsor a new applicant for employment authorization for this position. No agencies please. Capital One is an Equal Opportunity Employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex, race, color, age, national origin, religion, physical and mental disability, genetic information, marital status, sexual orientation, gender identity/assignment, citizenship, pregnancy or maternity, protected veteran status, or any other status prohibited by applicable national, federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City s Fair Chance Act; Philadelphia s Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-###-#### or via email at RecruitingAccommodationcapitalone.com . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One’s recruiting process, please send an email to Careerscapitalone.com Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Associated topics: chief program officer, cpo, manage, manager, management, monitor, product manager, project manager, relationship manager, task