Director, Cybersecurity Product Management (endpoint Security)

Director, Cybersecurity Product Management (Endpoint Security)

Capital One is seeking a technical security product leader to deliver game-changing cybersecurity solutions based on threat, data, and design thinking. We are a technology-oriented company delivering financial products to market through modern technology and constant innovation at a massive scale. That innovation includes leveraging technology to deliver the best cybersecurity solutions for our internal and external customers.

As a candidate for this role, you're able to seamlessly switch from executive-level risk conversations to diving deep into controls and technology to driving high level, strategic discussions around roadmaps and security solutions. You are naturally curious and stay on top of emerging trends and threats. You are not afraid to question any existing processes and solutions, yet you display a keen sense of business value proposition and focus on the right priorities. You are a clear thinker, thrive in working across teams, and an expert in dealing with ambiguity. You believe that a core component of security's role is to enable the business, not just to secure it, and the solutions you bring to life are aligned to the needs of our engineering community and business partners. You thrive in working in a fast paced, technologically forward leaning environment and are not afraid to push the boundaries of security capabilities.

What you'll do...

• Own and operate an actionable endpoint security strategy, for protecting corporate endpoints across Windows, and macOS, in partnership with Architecture, Engineering, Operations, and Risk Partners
• Own and manage product roadmaps for endpoint security, prioritizing work to maximize outcomes and achieve strategic imperatives.
• Leverage your profound technical expertise to define and articulate best practices for various capabilities, spearheading initiatives to achieve these standards.
• For our key challenges, analyze and select strategic and tactical remediation alternatives based on threat, risk, desirability, feasibility, and viability
• Advise executive decision makers based on business and technology risk grounded in threat
• Keep abreast of advances in industry to address the threat landscape
• Facilitate build vs. buy decisions to identify optimal strategies for addressing business and technology risks
• Develop and lead RFI/RFPs to assess the market and/or procure effective cyber solutions
• Maintain close ties to various stakeholders, and customers ensuring the services we create meet their needs as products evolve
• Lead a team of cybersecurity professionals, fostering a culture of curiosity and psychological safety to attract and retain top talent.

About You...

• You have extensive experience in securing and managing endpoint infrastructure, including Windows PCs and macOS ecosystems, within large enterprises.
• You have strong experience in managing, operating, and securing mobile infrastructure (iPhone and Android) in large enterprise environments.
• You have hands-on expertise with EDR/XDR platforms, endpoint agents, log pipelines, and telemetry modernization at an enterprise scale.
• You are proficient in device management platforms such as Intune and JAMF.
• You have strong experience and expertise in managing secure browsers, governing extensions in both browsers, and IDE/CDEs, as well as implementing Zero Trust device posture.
• You have extensive experience and expertise in certificate lifecycle management, PKI, and device authentication.
• You have the ability to foster collaborative, open, working relationships with technology groups and other stakeholders, including vendor relationships
• You have demonstrated clear communication skills and ability to interact effectively at all levels of an organization, and to influence senior management and executives (Including translating technical information based on specific audiences)
• You have experience managing multiple high-visibility and high-impact enterprise cybersecurity projects with cross-functional teams while maintaining superior results including planning, development and management of technical requirements, design, testing and deployment of security solutions
• You have superior ability to develop, and communicate strategy, roadmaps, and approach papers at high velocity
• You believe that a core component of security's role is to enable the business, not just to secure it, and the solutions you bring to life are aligned to the needs of our developer community, customers, and business partners.
• You thrive in working in a fast paced, technologically forward leaning environment and are not afraid to push the boundaries of security capabilities.
• You seek to create enduring value by delivering reusable, extensible and resilient cybersecurity capabilities to address the evolving threat landscape
• You actively solve cyber technical challenges in collaboration with engineering.
• You have a passion for cybersecurity.

Basic Qualifications:

• Bachelor's degree
• At least 7 years of experience in cybersecurity or Information Technology
• At least 5 years of people leadership experience
• At least 5 years of experience translating cybersecurity strategy and analysis into product and service requirements

Preferred Qualifications:

• 7+ years of experience solving cyber technical challenges, including translating business strategy and analysis into products
• Master's Degree in Computer Science, Information Systems, or Engineering
• 5+ years experience with cloud security strategy, architecture and engineering
• 5+ years of experience in Endpoint Security
• 3+ years of Cyber product owner or Cyber Product management experience
• 2+ years of financial services industry experience
• Professional certifications such as CISSP, GIAC, CISM, CCSP, CISA, CRISC, SAFe Product Management, AWS Security, AWS Advanced Networking Specialty or AWS Solutions Architect

The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked.

McLean, VA: $263,900 - $301,200 for Director, Cyber Technical

New York, NY: $287,800 - $328,500 for Director, Cyber Technical

Plano, TX: $239,900 - $273,800 for Director, Cyber Technical

Richmond, VA: $239,900 - $273,800 for Director, Cyber Technical

San Jose, CA: $287,800 - $328,500 for Director, Cyber Technical

Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan.

Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.

Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries.