Summary

If you are motivated and believe in the credit union philosophy of "People Helping People," join our team!

The Identity and Access Management (IAM) Manager is responsible for leading a team of engineers to build, enhance, and deliver IAM products and services focused on access provisioning, deprovisioning, access reviews, authentication, identity management, privileged access and service account management, monitoring, and reporting. This person must be a strategic, thought leader, overseeing, and implementing industry standard best practices applicable to the SECU environment. This manager must oversee the development of security solutions that adhere to applicable policies and comply with information security requirements while supporting the SECU IT transformation that is underway. IAM Manager must recruit, lead, mentor, and develop a best-in-class technology team, providing opportunities for growth to ensure continuity of IAM’s leadership. Responsibilities also include working with IT teams to consult and partner on solutions with appropriate access controls, along with managing control design patterns that enable IT asset owners’ adoption of IAM enterprise control solutions. The candidate will also work with key stakeholders to extend the IAM control solutions to technology assets while working with other subject matter experts and engineers. This position is a direct report to the Head of IAM.

• Provide technical expertise automating processes related to IAM and developing control solution integrations.
• Drive strong functional and privileged account as well as service account access management processes.
• Build comprehensive, modern, automated IAM products and services while collaborating with vendors and internal teams.
• Develop working relationship with IT engineering resources to drive solution features and architectures.
• Identify inadequacies within the environment and construct solutions to address IAM shortfalls.
• Develop and generate reporting metrics which drive continuous improvements in IAM controls.
• Partner with Information Security (IS) and line of business (LOB) leadership to understand requirements, enterprise IT standards and other considerations that influence how IAM solutions and services should perform and operate.
• Generate and maintain documentation for IAM control solutions configurations, operational support processes, business continuity plans and control procedures.
• Review existing IAM services to ensure those solutions are optimized for the highest level of service and establish an ongoing practice to perform periodic reviews.
• Interpret policies and standards with InfoSec, Risk and Compliance teams, ensuring policies and standards are properly followed by IAM control solutions.
• Promote security policies, standards, and best practices across the organization.
• Track, monitor and report IAM financial industry related environment threats, control solutions, regulatory changes, and technology updates.
• Formulate and manage a business and resource plan for the team to ensure appropriate resources are aligned to support IAM strategic plans, goals and objectives.
• Establish, review and document performance feedback and coaching for direct reports while utilizing HR processes for underperforming and overachieving resources.

Required Qualifications

• Minimum 10 years’ experience with developing and implementing identity and access management tools and solutions.
• Minimum 8 years’ experience managing and developing strong information security and/or technology teams.
• Understanding of IAM relevant technical solutions (such as SailPoint, MFA, Privileged Access Management: CyberArk).
• Demonstrated experience with infrastructure technologies including Cloud, Lightweight Directory Access Protocol (LDAP), Security Assertion Markup Language (SAML), and MFA/SSO.
• Ability to think strategically and communicate effectively at the most senior levels of the company to communicate the value and benefit of IAM solutions.
• Possess strong knowledge of industry best practices, technology, and evolving threats to enhance defenses for SECU’s information systems and resources. Advises management on security protocols and incidents. Mentors and trains to ensure team knowledge and effectiveness.
• 3-5+ years of troubleshooting and investigating complex issues within a highly regulated and secure environment.
• Strong organizational, time management, negotiation, and resource management skills.
• Customer service driven, quality focused, and team oriented with effective and persuasive written and oral communication skills.
• Strong knowledge and experience with incident/problem management processes
• Possess critical thinking and business risk analysis skills.
• Strong functional knowledge of MS Office Suite software products, Jira, and Confluence.
• Strong communications skills, oral and written.
• Ability to collaborate and interact productively with team members and key stakeholders.
• Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood and actionable manner.
• Ability to effectively influence and convince others to make appropriate changes in their priorities and behaviors for the benefit of the organization.
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business.

Preferred Qualifications

• Bachelor’s degree in Computer Science, Information Technology or related field.
• Specific experience with NIST, PCI, ISO 27001, COBIT or other information security related framework.
• Strong analytical skills with high attention to detail.
• Ability to convey technical information to all groups and individuals concisely and clearly both verbally and in writing to individuals with limited technical experience.
• CISSP, CISM, SANS GSEC, Cloud Security (CCSP, CCSK), or other information security related certification(s).

NA

Summary Information about the Role

Global Risk and Security (GR&S) at Vanguard enables business strategy, protects client and Vanguard interests (e.g., assets and data), and stewards a strong risk culture. Our teams leverage enterprise-wide insights, deep expertise, and trusted advice so that across Vanguard leaders and crew drive faster, stronger, risk-informed decisions.

Within GR&S, the Enterprise Security and Fraud (ES&F) sub-division is responsible for the global protection of Vanguard crew, property, data, and client assets. We are the trusted advisors that protect the pride of Vanguard with state-of-the-art security and fraud capabilities.

The Technical Manager - Cloud Security Engineering will manage and lead a team of technical security engineering experts as part of the DevSecOps program within Enterprise Security and Fraud. This role will manage the life cycle of various inhouse and vendor DevSecOps security tools to perform SAST, Open-Source Vulnerability Scanning, Cloud application scanning, Runtime Scanning, etc. Works closely with Sr. leaders, ES&F teams, Chief Technology Officer, and third-party vendors to define scope and requirements, and strategically plan, and execute the DevSecOps Engineering roadmap.

Company Overview

About Vanguard

We are Vanguard. Together, we’re changing the way the world invests.

For us, investing doesn’t just end in value. It starts with values. Because when you invest with courage, when you invest with clarity, and when you invest with care, you can get so much more in return. We invest with purpose – and that’s how we’ve become a global market leader. Here, we grow by doing the right thing for the people we serve. And so can you.

We want to make success accessible to everyone. This is our opportunity. Let’s make it count.

Inclusion Statement

Vanguard’s continued commitment to diversity and inclusion is firmly rooted in our culture. Every decision we make to best serve our clients, crew (internally employees are referred to as crew), and communities is guided by one simple statement: “Do the right thing.”

We believe that a critical aspect of doing the right thing requires building diverse, inclusive, and highly effective teams of individuals who are as unique as the clients they serve. We empower our crew to contribute their distinct strengths to achieving Vanguard’s core purpose through our values.

When all crew members feel valued and included, our ability to collaborate and innovate is amplified, and we are united in delivering on Vanguard's core purpose.

Our core purpose: To take a stand for all investors, to treat them fairly, and to give them the best chance for investment success.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

• Hires, evaluates, and supervises crew. Provides guidance and training as necessary to develop crew. Sets performance standards, reviews performance, and makes informed compensation decisions in accordance with all applicable Human Resources policies and procedures.
• Works closely with management to develop and implement staffing and operational plans. Participates in the development of short- and long-term department goals. Monitors and reports on service delivery metrics and overall performance.
• Develops and implements changes to department policies and procedures to meet changing business needs and to achieve department objectives. Identifies opportunities for continuous improvement.
• Leads quality initiatives to improve the delivery of service levels. Works with senior management in the planning, development, and execution of short- and long-range goals.
• Presents status, metrics, and department initiatives at meetings with management and project peers. Maintains relationships with technical teams, IT, security, and business partners.
• Ensures team complies with departmental and information security policies and procedures and verifies that deliverables meet requirements.
• Ensures the availability of DevSecOps Engineering tools and meets or exceeds ES&F objectives and goals.
• Builds proactive monitoring and alerting into the DSO Engineering tools and processes to minimize the downtime to developer community. Works closely with other DevSecOps teams and CTO office to integrate existing and new DevSecOps tools into CICD pipelines.
• Works closely with other DevSecOps teams and leadership to bring application security scanning close to developers to enhance developer experience and increase productivity.
• Continuously evaluates the Vanguard’s application security scanning requirements, propose ideas/solutions, and work with leadership to bridge those gaps to protect Vanguard applications.
• Acts as an industry expert in application security practices and standards such as SAST, SCA, IAST, DAST, software-supply-chain, etc. and guide the team to mature the DevSecOps program.
• Helps and guides the DevSecOps Engineering team towards the technology initiatives such as AI/ML scanning, software-supply-chain, Unified Vulnerability Management platform, etc.
• Identify the opportunities to automate the DevSecOps processes and guide the team to improve efficiency and achieve scalability.
• Have experience in one or more cloud providers (preferably AWS) and provides direction and guidance to team on cloud security engineering.
• Participates in special projects and performs other duties as assigned.

Required Qualifications

• NA

Preferred Qualifications

• NA

• Special Factors
• This is a hybrid role with Tues, Wed, Thurs in the office and Mon, Fri is remote.
• Sponsorship
• Vanguard is not offering visa sponsorship for this position.

Summary

Pending Award

Titan Technologies, LLC (Titan) is seeking an experienced, self-directed, Cybersecurity Operations Manager to support the United States Air Force Central Command (USAFCENT) Network Operations and Security Center (NOSC) Information Technology (IT) Support Services contract. As a member of our team, you will report directly to the program manager and assist USAFCENT and deployed forces in the delivery of a full spectrum of Information Technology (IT) services to operate and maintain information flow, communications, and connectivity throughout the USCENTCOM Area of Responsibility.

The Cybersecurity Operations Manager will oversee technically proficient personnel and ensure enterprise services are delivered in accordance with the contract.

Company Overview

Titan Technologies, LLC and our wholly owned subsidiaries, TelaForce, LLC and Titan Facilities, Inc., design, build, integrate, and manage innovative solutions and software applications. Our remarkable people, working collaboratively under a shared vision, have earned a reputation with our customers for delivering results with maximum impact. Sound intriguing? Consider Titan Technologies for the next step in your career journey and be part of an impactful team!

Titan is proud to be a Service-Disabled Veteran Owned Business.

• Provide management oversight for cybersecurity operations and intelligence functions
• Analyze cyber intelligence reports to determine correlation and applicability to network operations
• Analyze network intrusion detection reports and vulnerability assessments to evaluate security posture
• Recommend security posture changes based on security analysis

Requirements:

• 5+ years experience in Cybersecurity or relevant IT experience
• Must have Network + Certification or CCNA Certification
• Unix/Linux and Firewall Experience
• ITIL Foundations a must
• Bachelor's in related field and 5 or more years of relevant experience
• This position may require short term deployments to the CENTCOM AOR
• Must be able to be on-call

Preferred Requirements:

• Air Force Information Technology Operational Experience

Clearance:

• Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.
• Must have Top Secret with SCI Eligibility.

NA