Security Advisor Specialist, Cyber Threat Intelligence

Intact


Date: 1 day ago
City: Toronto, ON
Contract type: Full time

Our employees are at the heart of everything we do. Together, we help people, businesses, and society prosper in good times and be resilient in bad times.


Our employee promise represents Intact’s commitment to you in exchange for living our Values, striving to do your best work, being open to change and investing in your career. In return, we promise to provide support, opportunities and performance-led financial rewards at a workplace where you can shape the future, win as a team and grow with us.

About the role

What you'll do here:

  • Maintain Intact’s cybersecurity plan and assist in internal investigations of moderate to high levels of complexity.

  • Review and analyze available information on suspected cases of internal employee fraud and determine the type and scope of investigation required.

  • Uncover anomalies, investigate advanced cyber events.

  • Support legal and human resources teams.

  • Establish work processes and methods to maintain the traceability chain.

  • Create professional, detailed and factual reports on all investigations and provide timely updates to stakeholders.

  • Participate in the Cybersecurity incidents lifecycle, from preparation to post-mortem.

  • Identify, assess and report on security risks in accordance with internal and external policies and regulations.

  • Identify and classify the risks then propose risk mitigation or remediation.

  • Maintain and implement risk mitigation measures. Analyze the risks associated with the different possible solutions and propose a security solution to the operational problem that offers the right balance between potential losses and the cost of the solution.

  • Continuously improve and maintain the Threat Intelligence program for Intact Financial Corporation.

  • Develop and monitor threat intelligence sources to ensure Intact has relevant information on threats and threat trends.

  • Develop and deliver high-quality intelligence analysis, brief bulletins, assessments, profiles and other findings across strategic, operational and tactical teams within the organization and external partners.

  • Support incident response investigations and threat hunting activities from a threat intelligence perspective.

  • Conduct trending and correlation research from various cyber threat intelligence sources for the purposes of indicator collection, shifts in TTPs, attribution, and establishing countermeasures to increase cyber resiliency.

  • Monitor and research new potential cyber threats that could have a direct or indirect impact on the company, business operations, technology infrastructure and client trust. Using public and private information, open-source intelligence, and other research techniques.

  • Manage threat intelligence analytical platforms, integrate intelligence into security stacks via TAXII, STIX and OpenIOCs and monitor feed sources for efficacy.

  • Own and manage relationships with external threat intelligence partners to include regular meetings with threat intelligence and Information Sharing and Analysis Center (ISACs) partners.

  • Develop and Mentor staff in intelligence analysis, cyber operations, reverse engineering and operational security.

What you bring to the table:

  • Bachelor’s degree in computer science, or any combination of equivalent education and experience

  • Minimum 10 years of experience in information technology, including at least 5 years in the field of information security, or any combination of equivalent education and experience

  • Strong knowledge of information security management principles and practices

  • Strong ethical principles and understanding of business and information security ethics

  • Good knowledge of common security vulnerabilities of web and cloud applications and operating techniques from sources such as SANS, OWASP Top 10 and Cloud Security Alliance (CSA)

  • One of these certifications would be a considerable asset: CISSP, CISA, CISM, CGEIT, CRISC, GSEC, GISP

  • Security-related certification (CEH, GCIH, GCTI, GCFE or the equivalent), an asset

  • Certified Fraud Examiner (CFE) or equivalent training in this field, an asset

  • Positive attitude, team spirit and eagerness to learn

  • Critical mind

  • Experience working in a Security Operations Centre

  • Master the digital investigation concepts such as the chain of custody and the digital evidence

  • Demonstrated commitment to training, self-learning and maintaining proficiency in the technical cybersecurity domain

  • No Canadian work experience required however must be eligible to work in Canada.

  • For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country

#LI-Hybrid

What we offer


Our hybrid work model provides the balance between working from home and enjoying meaningful in-person interactions.

Working here means you'll be empowered to be and do your best every day. Here is some of what you can expect as a permanent member of our team:

  • A financial rewards program that recognizes your success

  • An industry leading Employee Share Purchase Plan; we match 50% of net shares purchased

  • An extensive flex pension and benefits package, with access to virtual healthcare

  • Flexible work arrangements

  • Possibility to purchase up to 5 extra days off per year

  • An annual wellness account that promotes an active and healthy lifestyle

  • Access to tools and resources to support physical and mental health, embracing change and connecting with colleagues

  • A dynamic workplace learning ecosystem complete with learning journeys, interactive online content, and inspiring programs

  • Inclusive employee-led networks to educate, inspire, amplify voices, build relationships and provide development opportunities

  • Inspiring leaders and colleagues who will lift you up and help you grow

  • A Community Impact program, because what you care about is a part of what makes you different. And how you contribute to your community should be just as unique.

We are an equal opportunity employer


At Intact, our Value of respect is founded on seeing diversity as a strength. We strive to create an accessible workplace where employees feel valued, included and encouraged to share their unique perspectives.


We encourage applications from individuals who are members of equity-deserving groups, including but not limited to women, Indigenous peoples, persons with disabilities, Black people, and members of the 2SLGBTQI+ community.


As part of Intact’s commitment to reconciliation, we acknowledge that we work, meet and travel across the land currently called Canada, originally inhabited by First Nations, Metis and Inuit people. This history extends through many centuries and continues to evolve today.


We have policies to ensure equal access and participation for people with disabilities, including providing workplace adjustments (accommodations). A copy of applicable policies is available on request.


If we can provide a specific adjustment to make the recruitment process more accessible for you, please let us know when we reach out about a job opportunity. We’ll work with you to meet your needs.

Learn more about our recruitment process and your candidate journey here.


If you are an employee of Intact or belairdirect, please apply for this role on Internal Career Site.

How to apply

To apply for this job you need to authorize on our website. If you don't have an account yet, please register.

Post a resume