Governance, Risk & Compliance Analyst, Specialist

at  Vanguard

OUR TEAM & OPPORTUNITY

Global Risk & Security (GR&S) enables Vanguard’s business strategy, protect Vanguard’s clients, crew and assets, and stewards a risk-smart culture at Vanguard. Our teams leverage enterprise-wide insights, deep expertise, and trusted advice so that leaders and crew across Vanguard can drive faster, stronger, risk-informed decisions.
As the Governance Risk & Compliance Analyst, Specialist, you will take on a number of essential function including controls implementation and oversight, administer reporting and dashboard creation for enterprise security, building on the existing security risk program, engage with vendors to perform a security assessment of their information security capability to ensure adequate controls are maintained and the introduction of new security risk is avoided. Additionally, you will assist with BAU and adhoc work associated with the Governance Risk and Compliance (GRC) function. The role requires the successful candidate to interact with 3rd parties, business units and external auditors.

• Consult with IT sub-divisions, third party partners, and business units in defining standard consistent reporting formats and providing standard data reports.
• Participate and documents evaluation and assessment of security requirements for third parties’ data systems, networks, or websites.
• Participate in the development and assessments of assets, risks, controls and the implementation of appropriate data security procedures and products.
• Assist in the review, development, testing, and implementation processes for security plans, risk assessments, products and control techniques.
• Administer asset inventory and assessment schedules. Develop robust reporting at all levels. Create appropriate GRC dashboards and assist in the management of day-to-day BAU workload.
• Support the development and maintenance of a portfolio of global security policies and standards. Monitors and maintains the lifecycle of the portfolio.
• Work with Compliance and Regional Security teams to understand global regulatory requirements for security, develop global Security policies and standards, and oversee implementation. Interfaces with external regulators for Information and IT Security.
• Recommend, develop, implement and coordinate new security policies, standards, procedures and operating doctrine at all levels across the company. Interprets policy relating to Vanguard information security functions and provides guidance, as required.
• Participate in special projects and performs other duties as assigned.