Secure Edge and Perimeter Protection Specialist

The Senior Secure Edge SME will assist in the design, implementation, and optimization of advanced Edge and Perimeter protection technologies and services. This role focuses on proactive threat detection, WAF configuration and tuning, network traffic analysis, and bot mitigation strategies. The SME will collaborate with cross-functional teams to ensure robust security posture, compliance alignment, incident response and operational efficiency. Key Responsibilities: Configure and tune secure edge detection platforms across multi-cloud environments and web ingress architecture patterns. Configure and manage Web Application Firewalls (WAFs) to protect against OWASP Top 10 threats and emerging attack vectors. Provide subject matter expertise during incident escalation and ability to triage and lead major incident management calls related to potential availability investigations Conduct deep packet inspection and network traffic analysis using tools like Wireshark, Tcpdump, and cloud-native telemetry. Develop and implement bot detection and mitigation strategies using behavioral analytics and ML-based tools. Hands on ability to design, develop and deploy automated infrastructure using IaC tools (e.g., Terraform, CloudFormation) translating requirements into scalable, version controlled environments integrated with CI/CD pipelines for consistent and secure deployments. Align detection frameworks with MITRE ATT&CK, NIST SP 800-53, CIS Benchmarks, and CSA CCM. Partner with SIEM and SOAR teams for automated alerting, investigation, and response. Provide technical leadership and mentorship to SOC analysts and engineering teams. Required Skills & Abilities: Deep expertise in secure edge technologies such as Akamai, Cloudflare, CloudFront, etc. Hands-on experience with WAFs (e.g., AWS WAF, Azure Front Door, Akamai, Imperva). Proficiency in network traffic analysis and anomaly detection. Strong understanding of bot behavior, detection techniques, and mitigation tools. Familiarity with SIEM platforms (e.g., Splunk, Elastic, Sentinel) and SOAR tools (e.g., Tines, Cortex XSOAR). Knowledge of threat intelligence platforms and integration strategies. Experience with scripting (Python, Bash, PowerShell) for automation and data parsing. Strong analytical and forensic investigation skills. Excellent communication and documentation abilities. Certifications such as GIAC Cloud Threat Detection (GCTD), GIAC Network Forensic Analyst (GNFA), Security specialization for major cloud platforms such as AWS, GCP, Azure, OCI. CISSP preferred but not immediately required. 7+ years experience in a cyber security, cyber investigations, network edge and perimeter operations, or combination of these three roles. Undergraduate degree in Technical discipline, Computer Science or related field preferred CISSP Special Factors Sponsorship Vanguard is not offering visa sponsorship for this position. About Vanguard At Vanguard, we don't just have a mission—we're on a mission. To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best. How We Work Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.