As the Cloud Security Engineering Manager, you will lead a high-performing team responsible for cloud security controls and managing misconfigurations across Vanguard’s multi-cloud infrastructure.
You’ll operate at the intersection of security risk, automation, and emerging AI-driven capabilities—driving outcomes that protect Vanguard and its clients while minimizing friction for technology teams.
This is a great opportunity to lead a growing function and to shape the future of cloud security.
Core Responsibilities
- Lead & develop a high-performing Cloud Security Posture Management team. Provide mentorship, coaching, and professional development to team members. Assess performance and make informed compensation decisions in accordance with HR policies and procedures
- Lead the team that leverages cloud security assessment tools (CNAPP/CSPM) to protect Vanguard cloud assets from security configuration weaknesses – defending against human & AI-driven threats
- Infuse AI into team operations, preventative capabilities, and enhanced detective capabilities
- Partner with Platform Engineering, DevSecOps, Architecture, SOC, and other stakeholders to implement shift-left security practices, to enhance cloud security posture controls, to refine prioritization, to advise owners on mitigation strategies, to ensure timely reporting that informs remediation progress, and to enable auto-remediation
- Coordinate implementation of cloud security controls – both oobox and custom – ensuring compliance with industry security standards
- Oversee timely resolution of false-positives investigations, requests for risk-acceptance or risk-rating adjustment of cloud security findings
- Shape remediation SLAs, build-breaking policies, and other enforcement controls & guardrails
- Develops metrics, KPIs, and OKRs to measure the effectiveness the program and team’s operations
- Coordinate with Engineering platform team to tune scanning tools to improve visibility and to meet additional security objectives
- Lead continuous process improvement activities
- Provide latest industry expertise in emerging security practices and standards.
What it Takes (Qualifications)
- Minimum of 5 years related work experience required, including experience in cloud security engineering or general cloud engineering
- Undergraduate degree in a related field or the equivalent combination of training and experience
- Excellent leadership and team management skills, with a track record of building and leading high-performing teams.
- Experience with AWS, Azure, or GCP – with a strong understanding of cloud security principles
- Superb analytical and problem-solving skills, with the ability to assess and mitigate complex security risks
- Understanding of CI/CD pipelines
- Excellent communication and collaboration skills, with the ability to influence stakeholders multiple levels up
Ways to stand out:
- Experience with Claude Code/Codex or Threat Modeling
- Demonstrated passion for continuous learning
- Experience leading structured process improvement
- Experience with Aqua, Palo Alto Prisma, Wiz, CrowdStrike, Tenable Nessus, or Qualys
- Knowledge of Kubernetes preferred
- Experience with aggregators such as Brinqa, Kenna, Vulcan, Dazz, or Avalor
- Experience with risk controls and interacting with internal/external audit preferred
- Familiarity with emerging security technologies and trends, particularly in cloud security
Special Factors
Sponsorship
Vanguard is not offering visa sponsorship for this position.