Apply Now

Senior Manager, Business Information Security Officer

• Posted 14 hours ago • Updated 14 hours ago

Full Time

On-site

Fitment

Dice Job Match Score™

⭐ Evaluating experience...

Job Details

Skills

Embedded Systems
Business Process
Dashboard
Use Cases
Thought Leadership
Information Security
Training
CISSP
CISM
Regulatory Compliance
Risk Management
Sarbanes-Oxley
HIPAA
Business Acumen
Business Operations
ISO/IEC 27001:2005
SIEM
DLP
Artificial Intelligence
Communication
Leadership
Resource Management
Management
Budget
Finance
Collaboration

Summary

Core Responsibilities

Manages a team in providing consulting services to the business, to engage with and deliver security services. Builds and maintains strategic relationships within the business and security teams to ensure strategic initiatives are met.
Ensures security risk management practices are embedded into key business processes. Enables security risk reduction by working collaboratively with business partners and security programs to identify, prioritize, and mitigate security risks.
Advises, coordinates, and reports on the security risk posture, security culture, controls, and assessments of the business. Communicates and presents relevant security metrics, dashboards and executive reports to senior management.
Defines and develops security goals, scenarios, and selects use cases to develop acceptable parameters of security risks or guardrails. Recommends changes to processes, software, systems, and platforms based upon security risk.
Coordinates enterprise security policies and communications. Gathers business participants input, implements changes to policies, and advises the business on policy changes.
Discusses security trends with security specialists from other institutions and peer organizations.
Provides thought leadership for the evolution of the business information security program.
Participates in special projects and performs other duties as assigned.

Qualifications

Experience and Education: Minimum of eight years related work experience, with three years of in Security and Compliance required. Undergraduate degree or equivalent combination of training and experience. Graduate degree preferred.
Security Certifications: CISSP and/or CISM required within one year.
Strategic Program Leadership: Proven experience developing and scaling a BISO program or similar business-aligned security initiative. Ability to design, implement, and evolve a BISO program that aligns with business goals and drives security maturity.
Risk & Compliance Expertise: Deep understanding of risk management frameworks, regulatory requirements (e.g., SOX, HIPAA, GDPR), and control environments.
Business Acumen: Strong grasp of business operations and the ability to translate security needs into business-relevant strategies.
Security Frameworks & Technologies: Familiarity with NIST CSF, ISO 27001, CIS Controls, and enterprise security tools (SIEM, DLP, IAM, etc.). Familiarity with Artificial Intelligence security concepts and controls preferred.
Governance & Metrics: Experience establishing governance structures, maturity models, and performance indicators to measure program effectiveness.
Communication & Influence: Exceptional ability to engage and influence senior leadership, communicate complex security concepts, and drive cultural change.
Project & Resource Management: Skilled in managing budgets, resources, and cross-functional teams to deliver strategic initiatives.

Special Factors

Sponsorship
Vanguard is not offering visa sponsorship for this position.

About Vanguard

At Vanguard, we don't just have a mission-we're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 90922487
Position Id: 24373205
Posted 14 hours ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Malvern, Arkansas

•

6d ago

The Manager of SaaS Security Posture Management (SSPM) is responsible for leading, operating, and scaling the enterprise SSPM capability. This role serves as the first-line people manager for SSPM and owns the day-to-day operations, execution, and continuous maturity of the program. As SaaS adoption accelerates across the enterprise, SSPM provides centralized visibility into SaaS configurations, identities, integrations, and overall security posture to ensure risk is proactively identified and r

Full-time

SaaS Security Posture Management Analyst

Malvern, Arkansas

•

13d ago

The SaaS Security Posture Management (SSPM) Analyst plays a critical operational role in securing the enterprise SaaS ecosystem. This role partners closely with SaaS application owners, identity and access management teams, SOC, and governance partners to onboard SaaS applications into SSPM tooling, establish security baselines, monitor posture, and drive remediation of identified risks. The SSPM Analyst focuses on execution, analysis, and coordination to ensure SaaS risks are continuously ident

Full-time

Governance, Risk & Compliance Analyst, Specialist

Malvern, Arkansas

•

24d ago

About The Job In this role, you will help deliver on our investment in GRC modernization. You will lead risk assessments, design and scale forward-looking governance, risk, and compliance programs, and serve as a trusted advisor who helps teams move faster and smarter while staying audit-ready and compliant. The Governance, Risk & Compliance Analyst, Specialist is a key member of Vanguard's Global Enterprise Security's Governance, Risk, Compliance (GRC) and Strategic Operations team. This positi

Full-time

Cloud Security Engineer

Malvern, Arkansas

•

8d ago

Position Overview Provides senior-level technical support for security testing services across infrastructure, systems, and applications. This role is responsible for strengthening cloud security posture through automation, tooling, and cross-functional collaboration. Core Responsibilities Develop and maintain CSPM tooling, automation pipelines, and integrations to support vulnerability identification, prioritization, and remediation across cloud environments Engineer and operationalize cloud s

Full-time

Search all similar jobs

Senior Manager, Business Information Security Officer

Dice Job Match Score™

Job Details

Skills

Summary

Similar Jobs