Cloud Security Engineer, Specialist

The Vanguard Group•Dallas, TX

4d•Hybrid

About The Position

This role focuses on managing and securing LDAP directories, integrating them with identity and access management systems, and applying DevOps principles for automation and compliance. The Cloud Security Engineer will be a subject matter expert, collaborating with various teams and potentially leading initiatives. The position requires a minimum of five years of related work experience and an undergraduate degree in a related field or equivalent training and experience. Vanguard offers visa sponsorship for this position and operates on a hybrid working model.

Requirements

Minimum of five years related work experience.
Undergraduate degree in a related field or the equivalent combination of training and experience.

Nice To Haves

Experience with LDAP directory management.
Experience with identity and access management (IAM) systems.
Experience with SSO and MFA.
Experience with DevOps tools and CI/CD pipelines.
Experience with configuration management tools (Ansible, Puppet, Chef).
Knowledge of DevSecOps principles.
Experience with monitoring and alerting systems (Prometheus, Grafana).

Responsibilities

Design, deploy, configure, and maintain LDAP directories, ensuring high availability, performance, and security.
Develop and enforce LDAP directory schemas, access controls, and data integrity standards.
Troubleshoot and resolve LDAP-related issues, minimizing downtime and optimizing response times.
Maintain and document all LDAP directory configurations, processes, and dependencies.
Integrate LDAP solutions with identity and access management systems to enforce authentication and authorization policies.
Ensure seamless connectivity between LDAP and enterprise applications, including SSO (Single Sign-On) and MFA (Multi-Factor Authentication).
Monitor directory health, usage, and trends to anticipate capacity and scaling requirements.
Develop and maintain automation scripts and CI/CD pipelines to streamline LDAP directory deployments, updates, and patches.
Implement monitoring and alerting systems using DevOps tools (e.g., Prometheus, Grafana) to ensure the health and performance of directory services.
Utilize configuration management tools like Ansible, Puppet, or Chef to maintain consistent LDAP system configurations.
Collaborate with development, IT, and security teams to ensure the smooth integration of directory services within DevOps workflows.
Apply DevSecOps principles to ensure LDAP directories adhere to organizational security policies and compliance requirements.
Proactively identify vulnerabilities and implement patches, updates, and fixes to mitigate risks.
Perform regular audits to validate LDAP configurations align with best practices.
Act as the subject matter expert (SME) for LDAP and directory services across the organization.
Lead a team or collaborate with cross-functional teams to execute directory services initiatives.
Provide mentorship, training, and technical guidance to team members and stakeholders.