Enterprise Security Governance Analyst
Vanguard
full-time
Posted on:
Location Type: Hybrid
Location: Malvern • North Carolina • Pennsylvania • United States
Visit company websiteExplore more
About the role
- Executes assigned components of Global Physical Security governance programs, including documentation development, updates, evidence collection, control support activities, and remediation tracking
- Supports the creation, application, and maintenance of enterprise security policies, standards, controls, procedures, and governance reporting
- Maintains governance artifacts, templates, and process documentation in alignment with ASIS, ISO, regulatory, and other best‑practice guidance
- Maintains document lifecycle hygiene for assigned governance artifacts, including version control, scheduled review tracking, updates, and publication readiness
- Ensures documentation accuracy, consistency, and accessibility to support audits, assurance activities, and leadership reporting
- Supports governance and program assessments through structured reviews of security practices, physical security configurations, access control processes, threat management documentation, and related activities
- Performs data validation, analysis, and tracking to support program transparency, issue identification, and progress monitoring
- Supports execution of assigned security controls, including evidence validation, control testing support, and tracking of control effectiveness over time
- Supports quality assurance activities by identifying inconsistencies, documentation gaps, or execution issues and escalating as appropriate
- Prepares dashboards, metrics, and governance reports that communicate program status, risks, and remediation progress
- Supports recurring governance reporting cycles and standing governance routines
- Drafts and maintains security plans, annexes, procedures, and playbooks under direction of governance leadership or specialists
- Develops exercise products, including situation manuals, exercise plans, after‑action reports, and improvement plans
- Supports exercise execution activities, including coordination, documentation during exercises, and tracking of improvement actions
- Coordinates with domestic and international stakeholders, including security teams, facilities, cyber, operational risk, and regulatory partners, to support governance execution and information gathering
- Tracks remediation activities and follow‑up actions
- Escalates issues, risks, or execution gaps in accordance with established governance processes
- Contributes to maturity assessments, operational improvement initiatives, and modernization efforts as assigned.
Requirements
- 5 years of experience in security management, physical security, emergency management, threat assessment/risk management, business continuity, or related disciplines
- Strong organizational skills with demonstrated experience managing detailed workstreams and recurring activities
- Strong written communication skills, including drafting plans, policies, procedures, playbooks, checklists, project documentation, and exercise materials
- Broad experience developing exercise products, including situation manuals, exercise plans, after‑action reports, and improvement plans, preferred
- Knowledge and experience with incident command systems and effective crisis management response processes
- Undergraduate degree required or equivalent combination of training and experience.
Benefits
- comprehensive health and wellness care
- work-life balance
- investment in your future
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
security managementphysical securityemergency managementthreat assessmentrisk managementbusiness continuityincident command systemscrisis managementdocumentation developmentdata validation
Soft Skills
organizational skillswritten communicationdetail-orientedcoordinationproblem-solvingquality assurancestakeholder engagementanalytical skillsproject managementreporting