Elastic Search Cloud Security Engineer

Global Risk and Security (GR&S) at Vanguard enables business strategy by using enterprise-wide insights, deep expertise, and trusted advice to drive faster, stronger, risk-informed decisions by our clients. As part of our Enterprise Security and Fraud (ES&F) sub-division you'll help us demonstrate our groundbreaking security and fraud capabilities.

Your role will be to craft, implement, and optimize our Elasticsearch infrastructure in support of Vanguard’s SIEM migration. You’ll work with your CSOC and Security Engineering peers to build a highly performant and available Elastic Cloud cluster. You’ll aggregate and normalize logs from many different systems and sources into the Elastic Common Schema (ECS). You’ll establish standard methodologies for deployment and maintenance of the system architecture and deploy within designated security requirements.

We have a hybrid working model crafted to provide flexibility as well as in-person learning, collaboration, and connection.

What You'll Do!

• Design, implement, and deploy security cloud platforms to support and mitigate security threats, risks and technology vulnerabilities. Identifies and recommends opportunities for improvement and performance issue solutions.
• Provide sophisticated level technical support and supervise security technologies efficiency through the use of monitoring tools and applications. Maintains comprehensive technical knowledge of cloud software and infrastructure platforms.
• Develop auditing methodologies and architecture to handle and protect data in cloud computing environments.
• Elevate code into the development, test, and cloud production environments on schedule. Provide follow-up production support. Submit change control requests and documents.
• Learn and understand client area business functions and requirements. Figure out appropriate technical tools to address the client's business needs.
• Coordinate system activities. Write the technical portion of assigned work. Perform systems analysis, including system requirements analysis and definition, and logical design.

What You'll Bring!

• Minimum 2 years with (1) the Logstash, Elasticsearch, Beats/ElasticAgent, Fleet- including installing, configuring, maintaining, upgrading, and solving; (2) log pipelines and interpreting logs including converting raw logs into ECS
• Experience with ElasticAgent/Logstash plugins, filters, regex, grok patterns and painless scripts
• Python (intermediate)
• Bash/Shell scripting (intermediate)
• Vanguard will primarily work in AWS to build resources that support data ingestion. Since CloudFormation is the mechanism that we use to deploy AWS resources, sophisticated knowledge of how to construct complex CloudFormation templates will be needed.
• Combination of training and experience (5+ years) or undergraduate degree in a related field.

Special Factors:

• This is a hybrid role with Tues. Wed, Thurs in the office and Mon, Fri is remote.

Special Factors

Sponsorship

Vanguard is not offering visa sponsorship for this position.

About Vanguard

We are Vanguard. Together, we’re changing the way the world invests.

For us, investing doesn’t just end in value. It starts with values. Because when you invest with courage, when you invest with clarity, and when you invest with care, you can get so much more in return. We invest with purpose – and that’s how we’ve become a global market leader. Here, we grow by doing the right thing for the people we serve. And so can you.

We want to make success accessible to everyone. This is our opportunity. Let’s make it count.

Inclusion Statement

Vanguard’s continued commitment to diversity and inclusion is firmly rooted in our culture. Every decision we make to best serve our clients, crew (internally employees are referred to as crew), and communities is guided by one simple statement: “Do the right thing.”

We believe that a critical aspect of doing the right thing requires building diverse, inclusive, and highly effective teams of individuals who are as unique as the clients they serve. We empower our crew to contribute their distinct strengths to achieving Vanguard’s core purpose through our values.

When all crew members feel valued and included, our ability to collaborate and innovate is amplified, and we are united in delivering on Vanguard's core purpose.

Our core purpose: To take a stand for all investors, to treat them fairly, and to give them the best chance for investment success.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.