Technical Lead of SaaS Security Posture Management (SSPM)

Global Risk and Security (GR&S) at Vanguard enables business strategy, protects client and Vanguard interests (e.g., assets and data), and stewards a strong risk culture. Our teams leverage enterprise-wide insights, deep expertise, and trusted advice so that across Vanguard leaders and crew drive faster, stronger, risk-informed decisions.

Why Vanguard? At Vanguard, we are committed to fostering a culture of security and innovation. As the Technical Lead of External Attack Surface Management (EASM), you will play a crucial role in protecting our organization and contributing to our mission of providing world-class investment services.

Position Overview: Vanguard is seeking a highly skilled and experienced individual contributor to join our Global Enterprise Security organization in the role of Technical Lead of SaaS Security Posture Management (SSPM). This role is crucial in managing and securing our SaaS attack surface. The ideal candidate will possess a blend of strong technical skills, SaaS application management expertise, and the ability to foster relationships across the organization.

Key Responsibilities:

· Technology Implementation & Management: Implement and manage SSPM technologies, ensuring they are effectively integrated and utilized.

· Process Development: Develop and implement critical SSPM processes to enhance our security posture.

· Policy & Controls Creation: Develop, communicate, and implement policies and controls that will help drive SSPM adoption and adherence across the organization.

· Reporting Capabilities: Build and maintain key SSPM reporting capabilities to provide insights into our security posture.

· Collaboration: Work closely with cross-functional teams to integrate SSPM tools and address identified vulnerabilities.

· Reporting: Prepare and present comprehensive reports on the organization's SaaS security posture.

· Technical Guidance: Provide technical leadership and guidance to both crew and contractors within the team.

Required Skills & Qualifications:

· Strong knowledge of SaaS Security Posture Management.

· Proven record of successful policy and controls creation and implementation.

· Robust technical capabilities and a security-focused mindset.

· Proven experience in SaaS application management and process development.

· Strong relationship-building skills and the ability to communicate effectively, both written and verbally.

· Strong analytical and problem-solving skills.

· Relevant certifications such as CISSP.

· Experience in scripting (ex: Python) and API usage.

· Familiarity with SSPM tools (AppOmni, Adaptive Shield, Obsidian).

Preferred Qualifications:

· Demonstrated ability to manage complex projects on tight timelines.

· Familiarity with scrum, kanban, and agile methodologies.

· Experience creating actionable dashboards within data visualization tools such as Tableu or PowerBI.

Special Factors

Sponsorship

Vanguard is not offering visa sponsorship for this position.

About Vanguard

At Vanguard, we don't just have a mission—we're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.