Insider Threat Management Technical Lead
Dallas, TX
Applications have closed
Global Risk and Security (GR&S) at Vanguard enables business strategy, protects client and Vanguard interests (e.g., assets and data), and stewards a strong risk culture. Our teams leverage enterprise-wide insights, deep expertise, and trusted advice so that across Vanguard leaders and crew drive faster, stronger, risk-informed decisions.
Within GR&S, the Enterprise Security and Fraud (ES&F) sub-division is responsible for the global protection of Vanguard crew, property, data, and client assets. We are the trusted advisors that protect the pride of Vanguard with state-of-the-art security and fraud capabilities. We are a world-class destination of highly-engaged, passionate, and diverse talent expected to continuously learn and develop in an ever-changing security landscape.
In this role, you will:
- Investigate and respond to incidents involving insider threats, by collecting and analyzing relevant user and system data to determine scope and impact of incidents.
- Utilize specialized security tools and technologies to detect and analyze anomalous behavior to ensure the integrity and protection of enterprise assets through technical enforcement of organizational security policies.
- Conduct comprehensive risk assessments to identify potential insider threats within the enterprise and develop strategies for risk mitigation.
- In-depth analysis of information received from various data sources: assemble, correlate, evaluate and assess information concerning internal risk to enterprise information and resources, crew, and networked systems.
- Proactively identify activity data trends indicative of internal threat and support internal threat hunting activities.
- Provide forensic analysis and investigative support to internal and external business partners (HR, Legal, Fraud, Global Security and Compliance).
- Contribute to the development of policies, procedures, and standards to maintain optimal security controls across the enterprise.
- Assist in review and development of reports, policies, plans, and other documentation as required to meet objectives of the program.
- Collaborate with a variety of stakeholders to drive appropriate outcomes and mitigate internal risk and threats to Vanguard crew, information, and resources.
- Mentor junior team members to improve their technical acumen
- Performs other duties as assigned.
What it takes:
- Minimum of eight years related work experience.
- Undergraduate degree or equivalent combination of training and experience required.
- Obtain CISSP within one year of hire.
Specializations that will make an impact:
- Excellent analytical and problem-solving skills with the ability to draw inferences and conclusions from large data sets used to determine incident root cause.
- Ability to communicate technical concepts to a wide variety of business areas and technical backgrounds.
- Experience with following technologies; DLP, SIEM, EDR, UEBA.
- Awareness of information security principles, theories, techniques, practices, and procedures
- Maintain the highest level of integrity due to constant exposure to sensitive information.
- Able to work independently and as part of a team.
- CISSP, GCIH highly preferred.
- Strong written and oral communication skills.
Additional Details:
Rotational On-call Responsibilities required. This is based in our Dallas location.
Special Factors
Sponsorship
Vanguard is not offering visa sponsorship for this position.About Vanguard
We are Vanguard. Together, we’re changing the way the world invests.
For us, investing doesn’t just end in value. It starts with values. Because when you invest with courage, when you invest with clarity, and when you invest with care, you can get so much more in return. We invest with purpose – and that’s how we’ve become a global market leader. Here, we grow by doing the right thing for the people we serve. And so can you.
We want to make success accessible to everyone. This is our opportunity. Let’s make it count.
Inclusion Statement
Vanguard’s continued commitment to diversity and inclusion is firmly rooted in our culture. Every decision we make to best serve our clients, crew (internally employees are referred to as crew), and communities is guided by one simple statement: “Do the right thing.”
We believe that a critical aspect of doing the right thing requires building diverse, inclusive, and highly effective teams of individuals who are as unique as the clients they serve. We empower our crew to contribute their distinct strengths to achieving Vanguard’s core purpose through our values.
When all crew members feel valued and included, our ability to collaborate and innovate is amplified, and we are united in delivering on Vanguard's core purpose.
Our core purpose: To take a stand for all investors, to treat them fairly, and to give them the best chance for investment success.
How We Work
Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISSP Compliance EDR GCIH Risk assessment SIEM Strategy
Perks/benefits: Career development Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open PowerShell-related jobs
- Open SQL-related jobs