Title: Corporate Travel Security Specialist Location: Malvern, PA Job Description: time type Full time job requisition id 176385 Global Risk and Security (GR&S) at Vanguard enables business strategy, protects client and Vanguard interests (e.g., assets and data), and stewards a strong risk culture. Our teams leverage enterprise-wide insights, deep expertise, and trusted advice so that across Vanguard leaders and crew drive faster, stronger, risk-informed decisions. Within GR&S, the Enterprise Security and Fraud (ES&F) sub-division is responsible for the global protection of Vanguard crew, property, data, and client assets. We are the trusted advisors that protect the pride of Vanguard with state-of-the-art security and fraud capabilities. We are a world-class destination of highly engaged, passionate, and diverse talent expected to continuously learn and develop in an ever-changing security landscape. Our crew are our greatest resource – by joining our team you will build collaborative long-term relationships and enjoy a suite of benefits that includes comprehensive health and wellness care, work-life balance, and an investment in your future at its core. Core Responsibilities - Monitor global security, geopolitical, health, and environmental developments that may impact business travel - Conduct travel risk assessments and provide destination‑specific guidance and briefings for employees traveling to medium and high risk destinations - Support travelers during incidents, emergencies, or disruptions, including coordination with internal teams and external partners - Assist with travel security incident management, escalation, and documentation - Contribute to the development and continuous improvement of travel security policies, procedures, and tools - Lead travel tracker onboarding and education efforts, supporting awareness of the Travel Security Program through presentations and mobile app adoption - Coordinate secure transportation and hotel security assessments when required - Partner with internal stakeholders to manage ad hoc travel security projects that enhance the effectiveness of the Travel Security Program. - Collaborate with corporate security, travel management, HR, CSOC, and regional stakeholders - Produce travel security advisories and operational updates for travelers and leadership; as warranted - Maintain travel security dashboards, tracking reports, and traveler risk updates Qualifications - Minimum of five years’ experience in corporate security, travel risk management, intelligence analysis, executive protection, military, law enforcement, or a related field - Bachelor’s degree in Security Management, Criminal Justice, Homeland Security, Risk Management, Emergency Management, or a related discipline - Strong analytical, decision-making, and situational awareness skills - Excellent written and verbal communication skills - Ability to manage multiple priorities in a fast-paced environment - Comfortable working across time zones and responding to time-sensitive situations - International experience or global risk exposure preferred Special Factors Sponsorship Vanguard is not offering visa sponsorship for this position. About Vanguard At Vanguard, we don't just have a mission—we're on a mission. To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best. How We Work Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

cFocus Software seeks a Sr. Security Control Assessor to join our program supporting the Internal Revenue Service (IRS). This position is remote. This position requires a Public Trust clearance. Qualifications: - Bachelor’s degree in Cybersecurity, IT, or related field. - 7+ years of experience in information security or security control assessment - Strong knowledge of NIST RMF, FISMA, and NIST SP 800-53 controls - Experience conducting security assessments and developing SARs and POA&Ms - Familiarity with federal security authorization processes (ATO, SA&A) - Strong analytical, documentation, and communication skills Duties: - Conduct security control assessments in accordance with NIST SP 800-53 and RMF guidelines - Perform system discovery, documentation review, and evidence collection activities - Develop and execute Security Assessment Plans (SAPs) - Conduct interviews and technical testing to evaluate control effectiveness - Document findings and develop Security Assessment Reports (SARs) - Identify vulnerabilities and document risks in Plans of Action and Milestones (POA&Ms) - Support Authorization to Operate (ATO) processes and continuous monitoring activities - Validate remediation efforts and closure of POA&Ms - Coordinate with system owners, ISSOs, and stakeholders throughout the assessment lifecycle - Provide on-demand security assessment support across multiple systems - Support rapid assessment efforts and evolving federal initiatives - Deliver level-of-effort estimates for assessment activities - Assist with backlog reduction and surge staffing needs - Participate in special projects and cross-functional security initiatives

cFocus Software seeks a Tier 1 SOC Analyst to join our program supporting Housing and Urban Development (HUD). This position is remote. This position requires a Public Trust clearance. Qualifications: - Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience). - 1–2 years of experience in a SOC, cybersecurity operations, or IT security role. - Experience with SIEM platforms (e.g., Splunk), EDR tools, and log analysis. - Understanding of networking, operating systems, and cybersecurity fundamentals. - Familiarity with incident response lifecycle and security monitoring processes. Duties: - Perform continuous security monitoring of network, endpoint, and cloud environments in a 24/7/365 SOC. - Analyze and triage security alerts generated from SIEM, SOAR, EDR, and other security tools. - Identify potential security incidents including malware, phishing, unauthorized access, and anomalous behavior. - Execute initial incident response procedures and escalate incidents to Tier 2/3 analysts as required. - Monitor and analyze security logs, events, and alerts for suspicious activity. - Support threat detection and response activities using threat intelligence and analytics. - Assist with vulnerability monitoring, including tracking Known Exploited Vulnerabilities (KEVs) and vulnerability disclosures. - Document all incidents, findings, and actions taken in ticketing systems (e.g., ServiceNow). - Support log aggregation, correlation, and analysis activities. - Assist with dark web monitoring and indicator tracking as directed. - Participate in shift handoffs and maintain situational awareness across SOC operations. - Follow established SOPs, playbooks, and incident response procedures. - Support compliance with federal cybersecurity requirements and policies.

cFocus Software seeks a Tier 2 SOC Analyst to join our program supporting Housing and Urban Development (HUD). This position is remote. This position requires a Public Trust clearance. Qualifications: - Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience). - 2+ years of experience in a SOC, cybersecurity operations, or IT security role. - Experience with SIEM platforms (e.g., Splunk), EDR tools, and log analysis. - Understanding of networking, operating systems, and cybersecurity fundamentals. - Familiarity with incident response lifecycle and security monitoring processes. Duties: - Perform continuous security monitoring of network, endpoint, and cloud environments in a 24/7/365 SOC. - Analyze and triage security alerts generated from SIEM, SOAR, EDR, and other security tools. - Identify potential security incidents including malware, phishing, unauthorized access, and anomalous behavior. - Execute initial incident response procedures and escalate incidents to Tier 2/3 analysts as required. - Monitor and analyze security logs, events, and alerts for suspicious activity. - Support threat detection and response activities using threat intelligence and analytics. - Assist with vulnerability monitoring, including tracking Known Exploited Vulnerabilities (KEVs) and vulnerability disclosures. - Document all incidents, findings, and actions taken in ticketing systems (e.g., ServiceNow). - Support log aggregation, correlation, and analysis activities. - Assist with dark web monitoring and indicator tracking as directed. - Participate in shift handoffs and maintain situational awareness across SOC operations. - Follow established SOPs, playbooks, and incident response procedures. - Support compliance with federal cybersecurity requirements and policies.