Principal Associate - Technical Investigations & Insider Threat

West Creek 5 (12075), United States of America, Richmond, Virginia

At Capital One, we're building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking. We measure our efforts by the success our customers enjoy and the advocacy they exhibit. We are succeeding because they are succeeding.

Guided by our shared values, we thrive in an environment where collaboration and openness are valued. We believe that innovation is powered by perspective and that teamwork and respect for each other lead to superior results. We elevate each other and obsess about doing the right thing. Our associates serve with humility and a deep respect for their responsibility in helping our customers achieve their goals and realize their dreams. Together, we are on a quest to change banking for good.

Principal Associate - Technical Investigations & Insider Threat

Capital One is looking for a Digital Forensic Investigator (DFI) to join the Technical Investigations & Insider Threat team. This team is responsible for utilizing a wide variety of security tools across multiple environments. The DFI role will work closely with other LOBs to support internal investigations utilizing electronic devices such as laptops, workstations, servers, cell phones and multi-cloud environments. These tasks include but are not limited to: creating and maintaining investigation and incident tracking information; planning, coordinating and performing internal investigations; drafting and presenting detailed investigative reports and summaries; investigation analysis tasks including examining all available information, and supporting evidence or artifacts collection related to incident or event.

Basic Qualifications:

  • Bachelor's degree
  • At least 3 years of information security experience
  • At least 2 years of experience with conducting forensic investigations
  • At least 2 years of experience with collecting, analyzing and preserving data in cloud environments
  • At least 2 years of experience with Splunk


Preferred Qualifications:
  • Certification: CFCE, CCE, GCIA, GCIH, Security+, CFCE, EnCE, CISSP.
  • Certification: AWS Cloud Practitioner, AWS Solutions Architect, AWS Certified Security
  • Cloud forensic experience
  • Endpoint forensic experience
  • Mobile forensic experience
  • Contributor to the information security or digital forensic community
  • 2+ years of experience in digital forensics, insider threat, security operations or supporting an incident response team


At this time, Capital One will not sponsor a new applicant for employment authorization for this position


Back to top