Global Risk and Security (GR&S) at Vanguard enables business strategy, protects client and Vanguard interests (e.g., assets and data), and stewards a strong risk culture. Our teams leverage enterprise-wide insights, deep expertise, and trusted advice so that across Vanguard leaders and crew drive faster, stronger, risk-informed decisions.

　　Within GR&S, the Enterprise Security and Fraud (ES&F) sub-division is responsible for the global protection of Vanguard crew, property, data, and client assets. We are the trusted advisors that protect the pride of Vanguard with state-of-the-art security and fraud capabilities. We are a world-class destination of highly engaged, passionate, and diverse talent expected to continuously learn and develop in an ever-changing security landscape. Our crew are our greatest resource – by joining our team you will build collaborative long-term relationships and enjoy a suite of benefits that includes comprehensive health and wellness care, work-life balance, and an investment in your future at its core.

　　The CSOC SIEM Analyst will work closely with AWS Security teams to establish and enhance detective controls within a SIEM framework. Provides technical leadership, expertise, and mentorship for the Normalization team. Provides technical level guidance for security platforms. Implements sophisticated detection mechanisms in the SIEM to protect Vanguard from advanced threats., along with having a fundamental understanding of AWS services.

　　CSOC SIEM Analyst

　　Leads and responds to escalated cyber security alerts, cyber incidents, or related security investigations. Identifies real-time complex attack patterns and suggests mitigation strategies.

　　Leads the processes, tools and measures to monitor and detect compromises, risks, vulnerabilities, network security threats, tools and tactics used by modern and emerging threat actors. Facilitates security operations and incident response technologies and methodologies.

　　Develops, manages, maintains and enhances security controls (alerts, rules, policies, and signatures) for the security platforms.

　　Reviews the network environment for new and evolving cyber threats and providing preventive and remedial solutions. Identifies malicious activity by performing analysis on logs, traffic flows, and other investigative detective activities.

　　Implements security detections within the SIEM and tunes and maintains existing rulesets. Is familiar with implementing Machine Learning and RBA detections.

　　Partners with the SOC to implement standard operations procedures (SOP) for new threat detections.

　　Leads with IT and business teams to ensure prompt and effective distribution of findings so incidents are effectively addressed. Provides department support to the business on enterprise wide security initiatives and projects.

　　Mentors junior team members to improve their technical acumen

　　Participates in special projects and performs other duties as assigned.

　　What it takes

　　Minimum of five years related work experience, with three years experience in threat analysis.

　　Undergraduate degree in a related field or the equivalent combination of training and experience.

　　Must be obtain CISSP within one year of hire.

　　Special Factors

　　Sponsorship

　　Vanguard is not offering visa sponsorship for this position.

　　About Vanguard

　　We are Vanguard. Together, we’re changing the way the world invests.

　　For us, investing doesn’t just end in value. It starts with values. Because when you invest with courage, when you invest with clarity, and when you invest with care, you can get so much more in return. We invest with purpose – and that’s how we’ve become a global market leader. Here, we grow by doing the right thing for the people we serve. And so can you.

　　We want to make success accessible to everyone. This is our opportunity. Let’s make it count.

　　Inclusion Statement

　　Vanguard’s continued commitment to diversity and inclusion is firmly rooted in our culture. Every decision we make to best serve our clients, crew (internally employees are referred to as crew), and communities is guided by one simple statement: “Do the right thing.”

　　We believe that a critical aspect of doing the right thing requires building diverse, inclusive, and highly effective teams of individuals who are as unique as the clients they serve. We empower our crew to contribute their distinct strengths to achieving Vanguard’s core purpose through our values.

　　When all crew members feel valued and included, our ability to collaborate and innovate is amplified, and we are united in delivering on Vanguard's core purpose.

　　Our core purpose: To take a stand for all investors, to treat them fairly, and to give them the best chance for investment success.

　　How We Work

　　Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

　　Vanguard, one of the world's largest investment management companies, serves individual investors, institutions, employer-sponsored retirement plans, and financial professionals. We have a diverse and talented crew with a culture that promotes teamwork, along with an unwavering focus on serving our clients' best interests.

　　This website uses "cookies" to distinguish you from other users. A cookie is a small file of letters and numbers placed on your computer or device. This helps us to provide you with a good experience when you browse our website and also allows us to improve our site and services. The cookies are stored locally on your computer or mobile device. To accept cookies you can continue browsing as normal. Or you can go to our Privacy Policy (https://www.vanguardjobs.com/site-privacy-policy/) to read more information and learn how to change your preferences.