Lead IT Controls Analyst

The Senior IT Controls Assurance Analyst will support complex internal control testing, interface with Vanguards external auditors, collect data needed for external reporting, analyze control issues, design new or enhance existing controls, as well as support the automation of testing.

In this role you will:

• Participate in the design and roll-out of control testing automation
• Support the development of other team members as needed.
• Analyze and resolve control issues. Financial services experience a plus, nut not required.
• Conduct security assessments to measure the adequacy of existing information security controls. Identify potential and actual system vulnerabilities and emerging strategic security needs, and recommend corrective measures.
• Consult with IT sub-division, third party partners, and business units in defining standard consistent reporting formats and providing standard data reports.
• Participate and document evaluation and assessment of security requirements for data systems, networks, or websites.
• Lead technical support for assessments of assets, risks, and the implementation of appropriate data security procedures and products.
• Assist in the review, development, testing, and implementation processes for security plans, risk assessments, products, and control techniques.
• Administer asset inventory and assessment schedules, and provide metrics on security consulting resources, assist with managing vendor relationships.

What it takes:

Undergraduate degree in related field or equivalent combination of training and experience.

Minimum 3-5+ years of IT Controls Risk or Audit experience.

Experience in IT security or application development preferred.

Experience testing IT Controls and general IT Controls knowledge

AWS experience preferred.

Strong relationship building experience within IT, IT Security, and various departments.

Preferred security certification such as ISC2 CISSP, GIAC Security, Essentials Certification (GSEC), GIAC Penetration Tester Certification (GPEN), GIAC Web App Pen Tester (GWPN), or Certified Ethical Hacker (CEH)

Special Factors:

Vanguard is not offering sponsorship for this role.

Special Factors

Sponsorship

Vanguard is not offering visa sponsorship for this position.

About Vanguard

We are Vanguard. Together, were changing the way the world invests.

For us, investing doesnt just end in value. It starts with values. Because when you invest with courage, when you invest with clarity, and when you invest with care, you can get so much more in return. We invest with purpose and thats how weve become a global market leader. Here, we grow by doing the right thing for the people we serve. And so can you.

We want to make success accessible to everyone. This is our opportunity. Lets make it count.

Inclusion Statement

Vanguards continued commitment to diversity and inclusion is firmly rooted in our culture. Every decision we make to best serve our clients, crew (internally employees are referred to as crew), and communities is guided by one simple statement: Do the right thing.

We believe that a critical aspect of doing the right thing requires building diverse, inclusive, and highly effective teams of individuals who are as unique as the clients they serve. We empower our crew to contribute their distinct strengths to achieving Vanguards core purpose through our values.

When all crew members feel valued and included, our ability to collaborate and innovate is amplified, and we are united in delivering on Vanguard's core purpose.

Our core purpose: To take a stand for all investors, to treat them fairly, and to give them the best chance for investment success.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.