Intact

Security Advisor Specialist - Threat Profiling

Intact

full-time

Posted on:

Origin:  • 🇨🇦 Canada

Visit company website
AI Apply
Manual Apply

Job Level

SeniorLead

Tech Stack

Cyber Security

About the role

  • You master threat profiling/modeling, and have experience in red team and/or purple team? Our team models and evaluates threats in the Intact environment to prioritize likely exploitation vectors based on consequences for Intact, to identify the best detection measures for our threat detection engineering activities within the cyber defense teams.
  • You will collaborate with several experts in security, insider threat, and others.
  • Perform comprehensive threat modeling exercises using established methodologies and frameworks.
  • Facilitate workshops to produce threat profiles and scenarios to support risk and detection teams.
  • Analyze and outline realistic and actionable threats to guide detections.
  • Contribute as an expert to enhance action plans and detection use cases.
  • Explain findings and prepare reporting to different stakeholders (executives and SMEs).
  • Lead/Oversee map threats to detection coverage activities (Purple team activites/Post-mortem Red team exercises)
  • Manage the development of a living threat scenario library

Requirements

  • 8 to 10 years in IT or cybersecurity
  • At least 3 years of experience in red team or purple team, or detection engineering
  • Experience working with threat modeling methodologies such as MITRE ATT&CK, STRIDE, PASTA
  • Security practices covering authentication, authorization, logging and monitoring, encryption, infrastructure security, and network segmentation.
  • Strong knowledge of security architecture principles, frameworks, and best practices, such as Zero trust
  • Proficiency in identifying vulnerabilities through OWASP/CWE methodology
  • Experience in handling and analyzing data in data lakes or SIEM environments with Microsoft Sentinel, Google SecOps, or in EDRs such as Falcon, or UEBA
  • Experience in source code and configuration analysis to identify vulnerabilities
  • Excellent organizational and time management skills
  • Experience in the "financial industry" is an asset.
  • No Canadian work experience required however must be eligible to work in Canada.
  • For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country