Global Risk and Security (GR&S) at Vanguard enables business strategy, protects client and Vanguard interests (e.g., assets and data), and stewards a strong risk culture. Our teams leverage enterprise-wide insights, deep expertise, and trusted advice so that Vanguard leaders and crew drive faster, stronger, risk-informed decisions. We are seeking a highly skilled and experienced Security Lead to join our Global Enterprise Security organization in the role of Technical Lead of SaaS Security Posture Management (SSPM). This role is crucial in managing and securing our SaaS attack surface. The ideal candidate will possess a blend of strong technical skills, SaaS application management expertise, and the ability to foster relationships across the organization. As the Technical Lead of SSPM, you will play a crucial role in protecting our organization and contributing to our mission of providing world-class investment services. This Hybrid role (in office Tues-Wed-Thurs) can be based in Charlotte, NC, Dallas, TX, or Malvern, PA (HQ)

Responsibilities:

• Technology Implementation & Management : Implement and manage SSPM technologies, ensuring they are effectively integrated and utilized.
• Process Development: Develop and implement critical SSPM processes to enhance our security posture.
• Policy & Controls Creation: Develop, communicate, and implement policies and controls that will help drive SSPM adoption and adherence across the organization.
• Reporting Capabilities: Build and maintain key SSPM reporting capabilities to provide insights into our security posture.
• Collaboration: Work closely with cross-functional teams to integrate SSPM tools and address identified vulnerabilities.
• Reporting: Prepare and present comprehensive reports on the organization's SaaS security posture.
• Technical Guidance: Provide technical leadership and guidance to both crew and contractors within the team.

Qualifications:

• Minimum of 5-6+ years related work experience required, with 2-5+ years experience in vulnerability or threat analysis preferred.
• Undergraduate degree in a related field or the equivalent combination of training and experience.
• Strong knowledge of SaaS Security Posture Management.
• Proven record of successful policy and controls creation and implementation.
• Robust technical capabilities and a security-focused mindset.
• Proven experience in SaaS application management and process development.
• Strong relationship-building skills and the ability to communicate effectively, both written and verbally.
• Strong analytical and problem-solving skills.
• Relevant certifications such as CISSP.
• Experience in scripting (ex: Python) and API usage.
• Familiarity with SSPM tools (AppOmni, Adaptive Shield, Obsidian).

Preferred Qualifications:

• Demonstrated ability to manage complex projects on tight timelines.
• Familiarity with scrum, kanban, and agile methodologies.
• Experience creating actionable dashboards within data visualization tools such as Tableu or PowerBI.

Special Factors

Sponsorship

About Vanguard

At Vanguard, we don't just have a mission-we're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.