Lead Security Risk And Controls Analyst

Vanguard Malvern , PA 19355

Posted 6 days ago

The Lead Security Risk and Controls Analyst will be responsible for providing risk assessment and control assurance work in the information security space. In addition, this lead analyst will perform project based work as needed to help mature risk management and assurance capabilities.
1.Provides senior level expertise for IT control-related matters. Collaborates with and influences technology leaders and crew to create, sustain, and strengthen IT's internal control framework through control identification, design, implementation, and testing.
2.Assists Control Analyst III with design, implementation, and ongoing monitoring of key controls across the division.
3.Provides consultation, facilitation and analytical support to ensure internal controls are properly aligned and implemented to ensure flawless service and compliance with all business partner expectations. Provides guidance and support to management, process, and control owners on responsibilities.
4.Consults with leadership on complex control-related issues. Provides senior level consulting to IT on internal audit activities and results as well as risk mitigation initiatives in response to audit findings.
5.Educates and influences business partners on control design and effectiveness and recommends actions to increase effectiveness of those controls.
6.Develops effective working relationships throughout the subdivision & division. Collaborates with the department and management sharing best practices regarding key controls to influence and effectively communicate control solutions to all appropriate parties. Provides guidance, training and motivation necessary to create control awareness, ownership and accountability to IT crew.
7.Consults with Enterprise Risk Management, Information Security, Internal Audit and external Audit, Corporate Compliance, Legal and other appropriate parties sharing expertise and knowledge to strengthen the IT control environment.
8.Participates in special projects and performs other related activities as assigned.


  • Undergraduate degree or equivalent experience is required with emphasis in Information Technology and / or Auditing preferred.

  • Minimum of five years industry experience.

  • CIA, CISA,CRISC,CISSP, CISM or CPA designation preferred.

  • Expert-level knowledge of internal control theory and practices, and IT Audit Techniques.

  • Expert-level knowledge in designing /evaluating information technology controls preferred. Experience as an IT Auditor is a plus. Experience working in Vanguard's Internal Audit department is a plus.

  • Excellent oral and written communication skills. Excellent presentation skills to all levels of personnel.

  • Strong consulting skills to include negotiation, influencing, and problem solving coupled with flexibility and sound business judgment.

  • Solid analytical skills and understanding of processes, technology and operational concepts.

  • Ability to work under tight time constraints and adapt quickly to changing priorities.

Additional Comments In this role you will have the opportunity to:

  • Provide lead level expertise for IT and security risk and control related matters with a focus in cybersecurity, physical security, logical access, and in general information security. Collaborate with and influence technology leaders and crew to create, sustain, and strengthen IT's internal control framework through control identification, design, implementation, and testing.

  • Participate in special projects and performs other related activities as assigned. Projects and activities may include:

  • High profile risk assessments, supporting senior risk and control analysts.

  • Special compliance assurance engagements in the areas of SOC1/SOC2 and cybersecurity requirements.

  • Support management in the design and implementation of a controls testing program, including the use of data analytics or quantitative methods.

  • The design and implementation of team level or leadership reports.

Vanguard is not offering visa sponsorship for this position.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
IT Risk & Controls Advisor Lead


Posted 1 week ago

VIEW JOBS 3/11/2019 12:00:00 AM 2019-06-09T00:00 Protect our mission by protecting our clients. Doing what's right for investors everywhere means safeguarding the business. That takes strategy—and it takes you. As a Lead IT Risk and Controls Advisor, your technical expertise will ensure our IT department is two steps ahead of risk. With your deep knowledge in protecting enterprise companies, you'll work alongside leadership and help protect over twenty million investors, worldwide. Because at Vanguard, a first-class client experience starts with a secure business. Make it count. In this role, you will: * Manage and execute risk assessments of all complexity levels to protect business processes and service/project initiatives, continuing our commitment to client success * Cultivate relationships with management and service providers to ensure the high-level overview of risk, quality deliverables and accurate billings that keep us running * Build a dialogue with Enterprise Risk Management (ERM) and IT leadership, stepping up to inform them of progress, concerns and opportunities to improve our operations * Be an expert of risk insight for leadership by creating and maintaining risk exposure reports that advance the division * Collaborate with the Core ERM Team to oversee the risk management framework, identifying opportunities to better protect our clients and Vanguard itself Bring expert insight to the frontlines of risk protection. When it comes to risk, you have us covered. You're a trusted advisor who communicates with clarity to improve our risk management plans and processes. Your passion and integrity allow you to motivate and inspire our risk assessment crew members. In turn, you'll partner closely with senior leaders to keep our company ahead of risk and move ahead in your career. We'll look to you for accurate analytics and recommendations to continue changing investing for the good of our clients around the world. What it takes: * Bachelor's degree is required with emphasis in IT, finance or accounting, related certification or equivalent combination of training and experience * A minimum of seven to ten years' general business experience, with progressively responsible operations management, compliance, risk management or auditing experience from which knowledge of in internal control and risk management was obtained preferred * Technical expertise in assigned business activities for Information Technology * An in depth understanding of complex business activities unique to a specific industry * Excellent relationship management, communication, and analytical skills required * Familiarity with risk management theory and experience in applying risk management concepts * Experience working with internal partners/clients to assess risk to facilitate making risk-aware decisions on strategic initiatives required * Demonstrated project management experience including large scale projects and programs * Risk management certifications and willingness to achieve certifications required Specializations that'll make an impact: * Advanced knowledge of one or more IT platforms: i.e. Client Server, OS/390, CICS, MQ Series, Microsoft Windows NT, LDAP, Netscape Application Server, UNIX, DB2, or Sybase About Vanguard We are Vanguard. Together, we're changing the way the world invests. For us, investing doesn't just end in value. It starts with values. Because when you invest with courage, when you invest with clarity, and when you invest with care, you get so much more in return. We invest with purpose—and that's how we've become a global market leader. Here, we grow by doing the right thing for the people we serve. And so can you. We want to make success accessible to everyone. This is our opportunity. Let's make it count. * Vanguard is not offering visa sponsorship for this position* Vanguard Malvern PA

Lead Security Risk And Controls Analyst