Controls Assurance, Specialist
About The Position
Global Risk and Security (GR&S) at Vanguard enables business strategy, protects client and Vanguard interests (e.g., assets and data), and stewards a strong risk culture. Our teams leverage enterprise-wide insights, deep expertise, and trusted advice so that across Vanguard leaders and crew drive faster, stronger, risk-informed decisions. Within GR&S, the Enterprise Security and Fraud (ES&F) sub-division is responsible for the global protection of Vanguard crew, property, data, and client assets. We are the trusted advisors that protect the pride of Vanguard with state-of-the-art security and fraud capabilities. We are a world-class destination of highly engaged, passionate, and diverse talent expected to continuously learn and develop in an ever-changing security landscape. Our crew are our greatest resource – by joining our team you will build collaborative long-term relationships and enjoy a suite of benefits that includes comprehensive health and wellness care, work-life balance, and an investment in your future at its core. We are looking for an experienced Control Assurance Specialist to join our team. In this role, you will lead the assessment and testing of our Enterprise security and fraud controls, ensuring they are well‑designed, implemented effectively, and operating as intended. You will play a key role in delivering Design Effectiveness Testing (DET) and Operating Effectiveness Testing (OET) across our Enterprise security and Fraud control environment and help us strengthen our resilience against cyber threats.
Requirements
- 8+ years of experience in Cyber Security, IT Risk, Internal Audit, Technology Assurance, or related fields.
- Experience of control assurance activities within financial services preferred .
- Strong understanding of cyber security controls, frameworks, and control testing methodologies (DET/OET).
- Ability to translate complex technical findings into clear business insights.
- Excellent communication, stakeholder management, and reporting skills.
- Bachelor’s degree or equivalent experience required; advanced degree preferred
Responsibilities
- Lead the planning, execution, and documentation of DET and OET for Enterprise Security and Fraud controls.
- Evaluate the design, implementation, and performance of cyber security controls across domains such as Identity & Access Management, Network Security, Cloud Security, Vulnerability Management, Logging & Monitoring, and more.
- Identify control weaknesses and partner with control owner to define and track remediation actions.
- Support audit readiness and interact with 2nd and 3rd line on control topics.
- Produce clear, actionable assurance reports, dashboards, and insights for senior stakeholders.
- Provide guidance, training, and subject‑matter expertise on cyber control testing and assurance practices.
- Stay current on cyber security trends, frameworks, and regulatory expectations to enhance our testing approach and methodologies.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
