Cloud Engineering Manager

Are you passionate about cloud security and leadership? Then join Vanguard’s Cloud Security Assurance team and help to protect our rapidly expanding multi-cloud operations. As the Cloud Security Assurance Manager, you will implement a strategy to provide security guardrails and to continuously reduce Vanguard’s cloud attack surface – while minimizing friction for thousands of developers. Your team will be responsible for identifying, prioritizing, and managing vulnerabilities across Vanguard’s multi-cloud infrastructure. This is a great opportunity to join a growing team – working in a fast-paced cross-functional environment to protect Vanguard and its clients from cyber security threats

Global Risk and Security (GR&S) at Vanguard enables business strategy, protects client and Vanguard interests (e.g., assets and data), and stewards a strong risk culture. Our teams leverage enterprise-wide insights, deep expertise, and trusted advice so that across Vanguard leaders and crew drive faster, stronger, risk-informed decisions.

Within GR&S, the Enterprise Security and Fraud (ES&F) sub-division is responsible for the global protection of Vanguard crew, property, data, and client assets. We are the trusted advisors that protect the pride of Vanguard with state-of-the-art security and fraud capabilities. We are a world-class destination of highly engaged, passionate, and diverse talent expected to continuously learn and develop in an ever-changing security landscape. Our crew are our greatest resource – by joining our team you will build collaborative long-term relationships and enjoy a suite of benefits that includes comprehensive health and wellness care, work-life balance, and an investment in your future at its core.

In this role you will:

Build & maintain a high-performing Cloud Security Assurance team. Provide mentorship, coaching, and professional development to team members. Assess performance and make informed compensation decisions in accordance with HR policies and procedures

Lead the team that leverages cloud security assessment tools (CNAPP/CSPM) to monitor Vanguard cloud assets for vulnerabilities and security configuration weaknesses

Partner with the SOC, Cyber Threat Intel, Offensive Security Team, and other stakeholders to refine prioritization, to validate impact of suspected vulnerabilities, to advise owners on mitigation strategies or compensating controls, and to provide accurate & timely reporting that informs remediation progress

Ensure timely resolution of false-positives investigations, requests for risk-acceptance or risk-rating adjustment of cloud security findings

Coordinate implementation of cloud security controls – both oobox and custom – ensuring compliance with industry security standards

Shape remediation SLAs, build-breaking policies, and other enforcement controls & guardrails

Develops metrics, KPIs, and OKRs to measure the effectiveness the program and team’s operations

Coordinate with Engineering platform team to tune scanning tools to improve visibility and to meet additional security objectives

Lead continuous process improvement and ensure the team is identifying opportunities for automation, fusion of disparate sources of security findings, and consistency of remediation owner experience.

Provide latest industry expertise in emerging security practices and standards.

What it Takes:

Minimum of 5 years related work experience required, including experience in cloud security engineering, cloud vulnerability management, or general cloud cyber domains

Undergraduate degree in a related field or the equivalent combination of training and experience

Excellent leadership and team management skills, with a track record of building and leading high-performing teams.

Experience with AWS, Azure, or GCP – with a strong understanding of cloud security principles

Superb analytical and problem-solving skills, with the ability to assess and mitigate complex security risks

Understanding of CI/CD pipelines

Excellent communication and collaboration skills, with the ability to influence stakeholders multiple levels up

Ways to stand out:

Demonstrated passion for continuous learning

Experience leading structured process improvement

Experience with Aqua, Palo Alto Prisma, Wiz, CrowdStrike, Tenable Nessus, or Qualys

Knowledge of Kubernetes preferred

Experience with aggregators such as Brinqa, Kenna, Vulcan, Dazz, or Avalor

Experience with risk controls and interacting with internal/external audit preferred

Familiarity with emerging security technologies and trends, particularly in cloud security

Special Factors

This is a hybrid role with Tues, Wed, Thurs in the office and Mon, Fri is remote.

Special Factors

SponsorshipVanguard is not offering visa sponsorship for this position.

About Vanguard

At Vanguard, we don't just have a mission—we're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.