Rodeo
ResourcesPartnersSign in

Vanguard

Governance, Risk & Compliance Assurance Analyst

London
Posted 2 days ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

Governance, Risk & Compliance Assurance Analyst

The Role

The EU Enterprise Security & Fraud (ES&F) GRC Specialist will provide specialist governance, risk, and compliance (GRC) expertise to support the effective operation of ES&F control and oversight activities across cyber, fraud, IAM and security architecture risk domains within the European business.

The role is accountable for:

  • Supporting the implementation, embedding, and continuous enhancement of GRC frameworks, policies, standards, and controls, ensuring alignment with:
    • Applicable regulatory obligations
    • Enterprise risk appetite
    • Internal governance requirements

The position will support first-line risk identification, assessment, control execution, evidence management, and remediation activities, contributing to:

  • Risk-informed decision-making
  • Operational resilience
  • Demonstrable compliance with relevant regulatory and internal control expectations

Key Responsibilities

Support the design, implementation, and ongoing operation of EU ES&F Governance, Risk, and Compliance (GRC) processes across:

  • Cyber
  • Fraud
  • Technology risk domains

Ensuring alignment with:

  • Enterprise standards
  • Evolving European regulatory requirements

Enable and promote first-line ownership of:

  • Risks
  • Issues
  • Controls
  • Remediation activities

Ensuring they are effectively:

  • Identified
  • Documented
  • Managed
  • Escalated
  • Reported

Through established governance frameworks

Contribute to:

  • Development and maintenance of robust governance structures
  • Clearly defined accountabilities
  • Effective decision-making processes within the first line of defence

Monitor and report on:

  • Key risk indicators (KRIs)
  • Control effectiveness
  • Risk exposure
  • Remediation progress

Providing meaningful:

  • Insights
  • Recommendations

To:

  • Governance forums
  • Stakeholders

Translate regulatory, policy, and risk management requirements into:

  • Practical guidance
  • Procedures
  • Operational actions

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.

Supporting business objectives while maintaining compliance

Support the full control lifecycle, including:

  • Control design, implementation, operation, evidence collection
  • Performance monitoring
  • Continuous improvement initiatives

Lead Risk and Control Self-Assessments (RCSAs), evidence-gathering activities, and assurance readiness efforts across:

  • EU ES&F domains

Helping to strengthen the overall control environment

Proactively identify:

  • Control gaps
  • Operational vulnerabilities
  • Opportunities for enhancement

While driving remediation activities through to successful closure

Act as a key coordinator for:

  • Internal audits
  • External audits
  • Regulatory reviews
  • Independent assurance engagements

Managing:

  • Evidence collection
  • Stakeholder responses
  • Remediation tracking

Contribute to ongoing development and enhancement of:

  • Resilience
  • Contingency
  • Incident response arrangements from a first-line GRC perspective

Support strategic initiatives, transformation programmes, and special projects, undertaking additional responsibilities as required


What it Takes

  • Proven experience working within Governance, Risk and Compliance (GRC) frameworks, governance structures, and risk management disciplines
  • A professional certification such as:
    • CISM
    • CRISC
    • CISSP
    • CISA
  • Proven experience within financial services or another highly regulated environment
  • Strong understanding of:
    • Cyber security
    • Fraud risk
    • Technology risk management principles and practices
  • Working knowledge of key regulatory and industry frameworks, including:
    • DORA
    • FCA requirements
    • NIST
    • ISO standards
  • Experience supporting:
    • Regulatory engagements
    • Internal and external audits
    • Assurance reviews
  • Ability to provide:
    • Effective challenge
    • Oversight
    • Independent thinking within a complex organisational and intra-group environment
  • Excellent analytical, problem-solving, and risk assessment skills, with the ability to:
    • Interpret complex information
    • Drive informed decision-making

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

Special Factors

  • Vanguard is not offering visa sponsorship for this position
  • This is a hybrid position and would require:
    • Working in the office 3 days a week: Tuesdays, Wednesdays, and Thursdays

Why Vanguard?

Vanguard is a different kind of investment company. It was founded in the United States in 1975 on a simple yet revolutionary idea: that an investment company should manage its funds solely in the interests of its clients.

This philosophy has helped millions of people around the world achieve their goals with low-cost, uncomplicated investments, setting an enduring standard for value to investors.

Vanguard’s inclusion statement:

Our continued commitment to diversity and inclusion is at the heart of our culture. Every decision we make involves a simple question: “Do the right thing?” We believe building diverse, inclusive, and highly effective teams of unique individuals is essential to delivering on our core purpose. Our values empower every crew member to contribute their distinct strengths, leading to:

  • Greater collaboration
  • Enhanced innovation
  • A unified team united in providing fair outcomes to all investors.

Our hybrid working model balances flexibility with the benefits of in-person engagement, supporting long-term client success and enriching the employee experience.

Vanguard, one of the world’s leading investment management companies, serves:

  • Individual investors
  • Institutions
  • Employer-sponsored retirement plans
  • Financial professionals

We foster a diverse, talented crew driven by teamwork and an unwavering commitment to our clients’ best interests.

Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Governance Risk and Compliance
Cyber Security
Fraud Risk Management
Identity and Access Management
Risk Assessment
Control Design
Regulatory Compliance
Audit Coordination
RCSA
Analytical Skills
Problem Solving
Stakeholder Management
Operational Resilience
Evidence Management
Technology Risk Management
Policy Implementation

Location

London, England, United Kingdom

Sign up to applySee more jobs like this