Recommends, develops, implements, and monitors enterprise-wide information security policies, procedures, and operational guidelines. Researches and develops solutions for information security issues and promotes information security awareness.
Global Risk and Security (GR&S) at Vanguard enables business strategy, protects client and Vanguard interests (e.g., assets and data), and stewards a strong risk culture. Our teams leverage enterprise-wide insights, deep expertise, and trusted advice so that across Vanguard leaders and crew drive faster, stronger, risk-informed decisions.
Within GR&S, the Enterprise Security and Fraud (ES&F) sub-division is responsible for the global protection of Vanguard crew, property, data, and client assets. We are the trusted advisors that protect the pride of Vanguard with state-of-the-art security and fraud capabilities. We are a world-class destination of highly engaged, passionate, and diverse talent expected to continuously learn and develop in an ever-changing security landscape.
Our crew are our greatest resource – by joining our team you will build collaborative long-term relationships and enjoy a suite of benefits that includes comprehensive health and wellness care, work-life balance, and an investment in your future at its core.
The Controls Management, Specialist will recommend, develop, implement, and monitor enterprise-wide information security policies, procedures, and operational guidelines. Researches and develops solutions for information security issues and promotes information security awareness.
This position is a senior cybersecurity continuous controls monitoring and assurance specialist on Vanguard’s Global Enterprise Security’s Governance, Risk, Compliance and Strategic Operations team. This position will drive proactive risk-based continuous monitoring to cost effectively scale operations to meet expanding security, regulatory, client and business requirements.

POSITION SUMMARY INCLUDES:

• Delivers the cybersecurity continuous controls monitoring and assurance roadmap and capabilities to enable cybersecurity and fraud risk objectives and priorities.
• Builds and implements solutions to reduce time to risk discovery and testing cycle time.
• Develops automations and data driven insights from automations, measurement, and appropriate scoring algorithms.
• Modernizes the internal control framework and leads complex control identification, design, implementation, testing, and reporting.
• Leads the identification and resolution of complex control gaps and ensures effective design, implementation, and operation of controls across divisions and regions.
• Identifies and implements actions to increase effectiveness and reduce friction

Please refer the Job description for details