Vulnerability Remediation Manager, Security Testing Service
Company: Capital One
Location: Mc Lean
Posted on: April 2, 2026
|
|
|
Job Description:
Vulnerability Remediation Manager, Security Testing Service
Security is essential to what we do at Capital One, from protecting
customer data to the associate experience. As a Cyber Remediation
Manager within the Security Testing Service, you see security as an
enabler and differentiator to empower the business through
innovation. You partner with the business, understanding their
goals and objectives while helping teams incorporate cybersecurity
best practices. You will consult on initiatives, programs, and
projects to prioritize security risk reduction activities. You are
pragmatic and practical in your understanding of software
development and IT operations, and familiar with Capital One’s
cybersecurity objectives. Using this knowledge, you collaborate and
innovate with customers and colleagues to enhance the technology
risk posture. Responsibilities : Serve as an Cyber Security
Remediation subject matter expert Collaborate with a team of
Information Security professionals to provide subject matter
expertise to business project & engineering teams Evaluate the
status of Cyber control programs through analysis of information
security metrics Articulate operations, compliance, and
cybersecurity objectives for business leadership to inform
prioritized risk reduction Effectively communicate the impact of
operations, compliance, and cybersecurity gaps to multiple
audiences, encouraging remediation activities to enhance their
cybersecurity posture Lead activities in response to large-scale
enterprise remediation efforts About You: You have strong written
and verbal communication skills You are driven to provide excellent
customer and stakeholder service and support You have strong
organizational skills and the ability to drive tasks to completion
You possess the ability to negotiate and influence results without
direct authority You are team-oriented and can interface
effectively with a broad range of people and roles, including upper
management and technology leaders You maintain calmness and clarity
of thought under pressure and can maintain confidentiality You can
work well under minimal supervision Basic Qualifications: High
School Diploma, GED, or equivalent certification At least 4 years
of experience with vulnerability identification and management At
least 4 years of experience with IT operations At least 4 years of
experience with technology or cyber security risk management
frameworks Preferred Qualifications: CISSP, CEH, AWS Cloud
Practitioner or AWS Certified Solutions Architect Associate
certification Experience with monitoring, gathering, and assessing
artifacts as part of continuous security monitoring (C&A,
PO&AM, NIST 800-37) Experience in operational compliance or IT
audit Experience as a Systems Administrator or Network
Administrator Experience with Static and Dynamic Application
Security Testing, scanning tools and processes Experience utilizing
Agile methodologies At this time, Capital One will not sponsor a
new applicant for employment authorization, or offer any
immigration related support for this position (i.e. H1B, F-1 OPT,
F-1 STEM OPT, F-1 CPT, J-1, TN, or another type of work
authorization). The minimum and maximum full-time annual salaries
for this role are listed below, by location. Please note that this
salary information is solely for candidates hired to perform work
within one of these locations, and refers to the amount Capital One
is willing to pay at the time of this posting. Salaries for
part-time roles will be prorated based upon the agreed upon number
of hours to be regularly worked. McLean, VA: $161,800 - $184,600
for Prin Assoc, Cyber Technical New York, NY: $176,500 - $201,400
for Prin Assoc, Cyber Technical Plano, TX: $147,100 - $167,900 for
Prin Assoc, Cyber Technical Richmond, VA: $147,100 - $167,900 for
Prin Assoc, Cyber Technical Candidates hired to work in other
locations will be subject to the pay range associated with that
location, and the actual annualized salary amount offered to any
candidate at the time of hire will be reflected solely in the
candidate’s offer letter. This role is also eligible to earn
performance based incentive compensation, which may include cash
bonus(es) and/or long term incentives (LTI). Incentives could be
discretionary or non discretionary depending on the plan. Capital
One offers a comprehensive, competitive, and inclusive set of
health, financial and other benefits that support your total
well-being. Learn more at the Capital One Careers website .
Eligibility varies based on full or part-time status, exempt or
non-exempt status, and management level. This role is expected to
accept applications for a minimum of 5 business days. No agencies
please. Capital One is an equal opportunity employer (EOE,
including disability/vet) committed to non-discrimination in
compliance with applicable federal, state, and local laws. Capital
One promotes a drug-free workplace. Capital One will consider for
employment qualified applicants with a criminal history in a manner
consistent with the requirements of applicable laws regarding
criminal background inquiries, including, to the extent applicable,
Article 23-A of the New York Correction Law; San Francisco,
California Police Code Article 49, Sections 4901-4920; New York
City’s Fair Chance Act; Philadelphia’s Fair Criminal Records
Screening Act; and other applicable federal, state, and local laws
and regulations regarding criminal background inquiries. If you
have visited our website in search of information on employment
opportunities or to apply for a position, and you require an
accommodation, please contact Capital One Recruiting at
1-800-304-9102 or via email at
RecruitingAccommodation@capitalone.com . All information you
provide will be kept confidential and will be used only to the
extent required to provide needed reasonable accommodations. For
technical support or questions about Capital One's recruiting
process, please send an email to Careers@capitalone.com Capital One
does not provide, endorse nor guarantee and is not liable for
third-party products, services, educational tools or other
information available through this site. Capital One Financial is
made up of several different entities. Please note that any
position posted in Canada is for Capital One Canada, any position
posted in the United Kingdom is for Capital One Europe and any
position posted in the Philippines is for Capital One Philippines
Service Corp. (COPSSC).
Keywords: Capital One, North Bethesda , Vulnerability Remediation Manager, Security Testing Service, IT / Software / Systems , Mc Lean, Maryland
