Senior Manager, Business Information Security Officer at Vanguard

Malvern, Pennsylvania, United States

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level

Full TimeJob Type

UnknownVisa

Financial Services, SecurityIndustries

Requirements

Minimum of eight years related work experience, with three years in Security and Compliance required
Undergraduate degree or equivalent combination of training and experience; graduate degree preferred
CISSP and/or CISM required within one year
Proven experience developing and scaling a BISO program or similar business-aligned security initiative
Ability to design, implement, and evolve a BISO program that aligns with business goals and drives security maturity
Deep understanding of risk management frameworks, regulatory requirements (e.g., SOX, HIPAA, GDPR), and control environments
Strong grasp of business operations and the ability to translate security needs into business-relevant strategies
Familiarity with NIST CSF, ISO 27001, CIS Controls, and enterprise security tools (SIEM, DLP, IAM, etc.); familiarity with Artificial Intelligence security concepts and controls preferred
Experience establishing governance structures, maturity models, and performance indicators to measure program effectiveness
Exceptional ability to engage and influence senior leadership, communicate complex security concepts, and drive cultural change
Skilled in managing projects and resources

Responsibilities

Manages a team in providing consulting services to the business, to engage with and deliver security services
Builds and maintains strategic relationships within the business and security teams to ensure strategic initiatives are met
Ensures security risk management practices are embedded into key business processes
Enables security risk reduction by working collaboratively with business partners and security programs to identify, prioritize, and mitigate security risks
Advises, coordinates, and reports on the security risk posture, security culture, controls, and assessments of the business
Communicates and presents relevant security metrics, dashboards, and executive reports to senior management
Defines and develops security goals, scenarios, and selects use cases to develop acceptable parameters of security risks or guardrails
Recommends changes to processes, software, systems, and platforms based upon security risk
Coordinates enterprise security policies and communications; gathers business participants' input, implements changes to policies, and advises the business on policy changes
Discusses security trends with security specialists from other institutions and peer organizations
Provides thought leadership for the evolution of the business information security program
Oversees the BISO program and drives key program initiatives; evolves BISO program maturity and enhances program operational efficiency
Serves as a cross-functional advisor for business, risk, and security
Manages and provides subject matter expertise to address security issues within multiple or complex assigned business units; manages key assets and processes, identifies and evaluates risks and controls, and suggests and implements risk mitigation strategies
Participates in special projects and performs other duties as assigned

Skills

Cybersecurity

Risk Management

Security Controls

Risk Mitigation

Security Metrics

Dashboards

Executive Reporting

Team Management

Strategic Relationships

Business Consulting

Security Assessments

Fraud Prevention

Vanguard

Client-owned investment management firm offering low-cost funds

About Vanguard

Vanguard provides financial services with a focus on investment management. The company offers a variety of products, including mutual funds, exchange-traded funds (ETFs), individual retirement accounts (IRAs), and 401k rollovers, aimed at individual investors, financial advisors, and institutions. Vanguard's unique ownership structure means it is owned by its funds, which are in turn owned by the clients, allowing it to prioritize the needs of its investors over external shareholders. This model enables Vanguard to offer low-cost investment options, as it primarily earns revenue through management fees that are generally lower than industry standards. Additionally, Vanguard provides personalized investment advisory services, charging fees based on the assets managed. The company's goal is to help clients grow their wealth and achieve their financial objectives through effective investment strategies, while maintaining a competitive performance track record.

Kline Township, PennsylvaniaHeadquarters

1975Year Founded

SECONDARYCompany Stage

Fintech, Financial ServicesIndustries

10,001+Employees

Benefits

Best-in-class medical, dental & vision coverage

Onsite health clinic & fitness center

Health Smart Rewards program

Vanguard Retirement Savings Plan

Education Benefits

PTO

Family Planning Benefist

Parental leave

Personal development opportunities

Volunteer Time Off

Risks

Competition from AI-driven platforms like Writer challenges Vanguard's traditional advisory services.

Vanguard's stake in Steelcase exposes it to the volatile furniture market.

New active bond ETFs may struggle in a low-yield environment with increasing competition.

Differentiation

Vanguard is client-owned, aligning its interests with investors, unlike traditional firms.

The firm offers low-cost investment products, making it attractive to cost-conscious investors.

Vanguard's ownership structure allows it to focus on long-term investor value.

Upsides

Vanguard's new active bond ETFs offer diversified, low-cost fixed income options.

The acquisition of Steelcase shares diversifies Vanguard's portfolio into the furniture industry.

Launching the International Dividend Growth Fund appeals to investors seeking sustainable dividend growth.

Land your dream remote job 3x faster with AI

Try Jobo Free