• Leverage deep, hands-on expertise in threat hunting, incident response, and security operations to proactively hunt, detect, defend, and advise for managed threat hunting customers • Serve as a trusted security advisor to customers by writing and delivering tailored threat hunt findings, executive presentations, and strategic recommendations to a range of stakeholders from SOC analysts to CISOs • Analyze customer web proxy telemetry against modern adversary Tactics, Techniques, and Procedures (TTPs) by utilizing SIEM-like tools (e.g. Splunk, Microsoft Sentinel, ElasticSearch) and by writing code (e.g. Python and SQL) to implement high-fidelity detection logic and actionable hunt hypotheses • Review the output of detection engineering systems and the work of other analysts to continually improve our customer facing deliverables

Role Description In this role, the Threat Intelligence Specialist leads the design, implementation, and continuous optimization of the organization’s Intelligence Infrastructure, specifically overseeing Threat Intelligence Platforms (TIP) and the integration layers required to aggregate diverse internal and external telemetry. You will drive the mapping of global adversary behaviors to the MITRE ATT&CK® framework and work to determine the relevance and impact of real world threats to CHS, contextualizing TTPs into actionable intelligence for key stakeholders at all levels of the organization. By spearheading Automation and Orchestration initiatives, you will develop sophisticated SOAR playbooks that ingest Indicators of Compromise (IOCs) and Indicators of Behavior (IOBs) to trigger proactive blocking or rapid threat hunting workflows. Beyond technical execution, you will serve as the primary Subject Matter Expert for Threat Modeling, evaluating emerging technologies and business initiatives to identify high-value targets attractive to threat actors and recommending defenses and detections. A critical component of this position involves Intelligence Dissemination, where you will lead the creation of technical, tactical, and strategic intelligence products tailored for audiences ranging from front-line SOC analysts to executive leadership. Finally, you will bridge the gap between intelligence and action through Advanced Detection Engineering, providing actionable intelligence to Security Operations and Incident Response teams for Threat Hunting or to convert into high-fidelity detections. Qualifications - H.S. Diploma or GED required - Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or related field preferred - 8-10 years of progressive experience in Cybersecurity engineering or architecture - Proven experience leading enterprise-scale initiatives with measurable outcomes - CISSP, GIAC, OSCP, or other relevant advanced certification preferred Requirements - Lead the design, development, configuration, and implementation of solutions to resolve complex technical and business issues related to Cybersecurity across multiple functions. - Lead efforts in assessing and mitigating Cybersecurity risks, reviewing and consulting on the security of technology solutions to address intricate challenges, and ensuring compliance with organizational standards. - Leading the design, development, and implementation of new solutions, integrating them into both existing and newly defined architecture. - Lead the design and integration of new security solutions into existing and newly defined architecture. - Work across multiple, high-complexity cybersecurity functions, driving strategic initiatives and improvements. - Serve as a subject matter expert (SME) for multiple high-complexity technical and process solutions, providing strategic guidance and leadership across the organization. Benefits

Title: Cyber Threat Management Analyst, Specialist Location: Dallas/Ft. Worth, TX Job Description: Job Description Core Responsibilities 1. Assists and responds independently to cyber security alerts, cyber incidents, or related security investigations. Identifies real-time complex attack patterns and suggests mitigation strategies. 2. Supports the processes, tools and measures to monitor and detect compromises, risks, vulnerabilities, network security threats, tools, and tactics used by modern and emerging threat actors. Facilitates security operations and incident response technologies and methodologies. 3. Develops, manages, maintains and enhances security controls (alerts, rules, policies, and signatures) for the security platforms. 4. Monitors the network environment for new and evolving cyber threats and provides preventive and remedial solutions. Identifies malicious activity by performing analysis on logs, traffic flows, and other investigative detective activities. 5. Conducts penetration testing, vulnerability assessments and threat modeling. Evaluates risks and makes recommendations. 6. Performs analysis and provides written assessments focused on threats, vulnerabilities, and technologies relevant to Vanguard infrastructure. 7. Collaborates with IT and business teams to ensure prompt and effective distribution of findings to address incidents in the most effective and efficient manner possible. Provides department support to the business on enterprise-wide security initiatives and projects. 8. Participates in special projects and performs other duties as assigned. Qualifications - Minimum of three years related work experience, with two years experience in threat analysis. - Undergraduate degree in a related field or the equivalent combination of training and experience. - Must be obtain CISSP within one year of hire. Special Factors Sponsorship Vanguard is not offering visa sponsorship for this position. About Vanguard At Vanguard, we don't just have a mission—we're on a mission. To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best. How We Work Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

• Utilize the Ontic Platform to support clients in achieving defined business objectives, with a strong focus on hands-on platform use and execution • Plan, conduct, and complete open source intelligence (OSINT) and investigative research using publicly available information and OSINT tools • Identify, collect, and analyze open web, social media, and dark web content to support client investigations and monitoring activities • Collect data and synthesize key findings into clear actionable intelligence to support client’s objectives • Demonstrate a fundamental understanding of investigative and intelligence processes, including the intelligence cycle • Support client onboarding and adoption by participating in training sessions, demos, and presentations • Deliver research findings and intelligence outputs to internal and external stakeholders • Provide guidance to clients on basic platform configuration, workflows, and best practices to support effective usage • Develop and maintain expertise in OSINT tradecraft, investigative research, monitoring, intelligence gathering, and reporting • Demonstrate a high level of confidentiality, professionalism, and attention to detail when handling sensitive information • Participate in occasional travel for client engagement, training, and internal collaboration