Technical Risk Assurance Analyst, Specialist

This role provides broad exposure to both IT and ES&F.  The team is transitioning to a proactive strategy for controls assurance.   This transition includes moving from a manual testing approach to an automated approach.   The Technical Risk Assurance Analyst, Specialist will have the responsibility to support the automation of controls testing and working with developers to refine the automation criteria used to identify control exceptions.   Vanguard’s Enterprise Technology Strategy (ETS) is a driver for the development and redesign of many controls.  This Specialist will support this strategy by applying their control expertise to identify and design controls that mitigate risk. 

Core Responsibilities

• Provides assistance for IT and ES&F and control-related matters. Collaborates with internal team and technology partners to create, sustain, and strengthen the internal control framework through control identification, design, implementation, and testing. 

• Assists the team with design, implementation, testing and ongoing monitoring of controls across the IT and ES&F divisions. 

• Identifies and implements opportunities to improve the effectiveness and efficiency of control testing. 

• Provides consultation, facilitation and analytical support to confirm internal controls are properly aligned and implemented for flawless execution, overall compliance and fulfilling business partner expectations. 

• Provides guidance and support to management and control owners on responsibilities. 

• Provides consulting on internal and external audit activities and results as well as risk mitigation initiatives in response to audit findings. 

• Educates and influences partners on control design and effectiveness and recommends actions to increase effectiveness of those controls based on testing assessments. 

• Develops effective working relationships throughout the subdivisions and divisions.  Collaborates with the department and management sharing best practices regarding controls to influence and effectively communicate control solutions to all appropriate parties.  Provides guidance, training and motivation necessary to create control awareness, ownership and accountability to crew. 

• Consults with risk teams, Information Security, Internal Audit and external auditors, corporate compliance, legal, Vanguard Workplace Solutions (aka IIG) and other appropriate parties sharing expertise and knowledge to strengthen the control environment. 

• Participates in special projects and performs other related activities as assigned. 

 

Examples of software and platforms: 

ACF2 

Netbackup 

Active Directory 

Oracle 

AWS 

QualysPC 

Azure 

SailPoint 

BitLocker 

Service Now 

Control-M 

Windows 11 

DB2 

Wiz 

Elastic 

 

Qualifications

• Minimum four years related work experience. Experience in IT security or application development preferred.

• Undergraduate degree in related field or equivalent combination of training and experience.

• Preferred security certification such as ISC2 CISSP, GIAC Security, Essentials Certification (GSEC), GIAC Penetration Tester Certification (GPEN), GIAC Web App Pen Tester (GWPN), or Certified Ethical Hacker (CEH)

Special Factors

Sponsorship

Vanguard is not offering visa sponsorship for this position.

About Vanguard

At Vanguard, we don't just have a mission—we're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.