Head of Digital and Third-Party Resilience

Overview
In today’s rapidly evolving landscape of governance, risk management, and compliance, digital resilience is no longer optional—it’s mission-critical. As Vanguard deepens its reliance on advanced technologies and third-party partnerships, the traditional boundaries of information security and continuity management are expanding. This role leads that evolution.
 

The Head of Digital and Third-Party Resilience is a pivotal senior leadership role within Vanguard’s Global Risk and Security (GR&S) division. This leader will oversee Vanguard’s highly complex and integrated global Cyber, Technology, and Third-Party Resilience efforts. The role directs teams that provide expertise and consultation on the development and support of activities, processes, and tools used to assess, validate, and ensure compliance with digital and third-party business resilience standards. Additionally, the person in this role oversees resilience assessments, risk analyses, and the effectiveness of contingency plans for Vanguard’s critical business processes, applications, systems, networks, and websites.

Responsibilities
 

• Coach, guide, develop and inspire a team of highly engaged crew, fostering a culture of collaboration, innovation, high performance, and continuous improvement. Set performance standards, review performance, and make informed compensation decisions in accordance with all applicable Human Resources policies and procedures.
• Oversee and manage the development and delivery of global cyber, technology, and third-party resilience standards and best practices for the enterprise. Demonstrate thought leadership and subject matter expertise by understanding divisional key concerns and providing direction through consultation, governance, and team support. Work closely with Enterprise Security & Fraud (ES&F) teams and IT in identifying the impact of these matters on business unit operations.
• Lead efforts to influence the application and integration of cyber, technology, and third-party resilience best practices into key business processes. Demonstrate thought leadership and subject matter expertise by understanding divisional key concerns and providing direction through working collaboratively with business partners and resilience programs to identify, prioritize, and mitigate risks.
• Consult with business partners, maintaining independence and objectivity, and simplifies technical complexity to communicate key messages to executive audiences.
• Create and maintain a multi-year cyber, technology, and third-party resilience roadmap that clearly identifies specific actions and tasks needed to achieve future state goals.
• Identify and prioritize existing and emerging resilience exposures and develop solutions to improve oversight capabilities. Recommend changes to processes, software, systems, and platforms based upon risk.
• Build and maintain strategic relationships across boundaries (e.g., divisions, sites, regions, internal and external partners) to ensure focused and efficient support of key initiatives. Act as a subject matter expert and thought leader, providing guidance, direction and critical decision making to inform strategic risk solutions.
• Provide thought leadership and strategic direction to cross-divisional forums. Own and oversee ongoing knowledge sharing and training across the division and other teams on methodology, tools and techniques that promote the practice and advancement of cyber, technology, and third-party resilience.
• Participates in special projects and performs other duties as assigned.

Qualifications
 

• Undergraduate degree or equivalent combination of training and experience. Graduate degree preferred.
• Minimum of ten years related work experience. Five years of business continuity, risk management, cybersecurity, or information systems preferred. Supervisory experience preferred.
• Certified Business Continuity Professional (CBCP) (CBCP), Master Business Continuity Professional (MBCP), Certified Information Systems Auditor (CISA) (CISA), or Certified Information Systems Security Professional (CISSP) preferred.

Special Factors

Sponsorship

About Vanguard

At Vanguard, we don't just have a mission—we're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.