Threat Intelligence, Lead

Threat Intelligence, Lead

At Interac, we design and deliver products and solutions that give Canadians control over their money so they can get more out of life. But that’s not all. Whether we’re leading real-time money movement, driving innovative commerce solutions like open payments for transit systems, or making advancements in new areas like verification and open banking, we are playing a key role in shaping the future of the digital economy in Canada.

Want to make a lasting impact amongst a community of creative thinkers, problem solvers, technical virtuosos, and high-performance application developers? We want to hear from you.

We are currently recruiting for a full-time Threat Intelligence, Lead to be part of our Threat & Vulnerability Management Team within Cybersecurity. This role will lead the Threat Intelligence and Threat Hunting practices and work with cross functional teams to proactively identify and mitigate threats to Interac.

You'll be responsible for:

• Leading threat intelligence and threat hunting practices at Interac in alignment with product and business objectives

• Building and maintaining a threat intelligence strategy to proactively identify and mitigate threats to Interac

• Building and maintaining a threat hunting strategy to hunt for threat actor behaviors and TTPs

• Leading threat-informed defenses via collaboration with other cybersecurity functions

• Identifying, prioritizing, documenting, and communicating potential threats across the organization

• Hunting for threat actor behaviors and TTPs prioritized by threat intelligence

• Modeling threats that will impact the confidentiality, integrity, and availability of Interac’s products; implement improvements to close gaps in the security stack

• Developing actionable intelligence to disseminate and drive actions to improve security posture

• Preparing briefing materials, including ad-hoc executive briefings and specific issue briefings

• Developing and report on actionable KPIs and KRIs on organizational posture against threat landscape

• Managing internal threat intel platforms including integration with various security controls

• Actively participating in various communities within the industry to stay informed of emerging threats and share intelligence where beneficial to the community

• Providing expert-level support for large scale or complex security incidents

You bring:

• 5+ years of experience in Threat Intelligence or Threat Management fields

• Excellent writing and presentation skills to facilitate communication of threats, vulnerabilities, and other escalation points to various stakeholders 

• Outcomes driven, the ability to figure-it-out to reach the desired outcome 

• Strong sense of personal responsibility and accountability for delivering high quality work, both personally and at a team level

• Ability to communicate effectively to both technical and non-technical stakeholders

• Ability to work autonomously with attention to detail

• An understanding of technical concepts and are an avid learner of new technology

• Eligibility to work for Interac Corp. in Canada in a Full Time Capacity

Technical skills:

• Expertise in Threat Intelligence analysis, strong understanding of security risks, threats, and vulnerabilities

• Working experience with Threat Intelligence Platforms, including integration into other security controls

• Strong understanding of strategic, tactical, operational, and technical threat intelligence

• Experience with threat modelling concepts such as STRIDE, PASTA, etc., and applying into real world scenarios

• Experience using Cyber Kill Chain and Mitre ATT&CK frameworks

• Experience conducting threat hunts against threat actor behaviors and TTPs using hypothesis-led approach

• Experience in conducting or supporting Incident Response investigations

• Experience with Cyber Security testing methodologies (Red, Blue, Purple teams)

• Experience with security devices such as SIEM, IDS/IPS, HIDS/HIPS, anomaly detection, Firewall, Antivirus, EDR and their data outputs

• Knowledge of security industry standards and best practices such as OWASP, ISO 27001/2, NIST

• Cybersecurity certificates such as CISSP, CEH, OSCP

Interac requires employees to complete a background check that is completed by one of our service providers.  We use this service to complete the following checks:

• Canadian criminal record check;
• Public safety verification;
• Canadian ID cross-check;
• 5-year employment verification;
• Education verification; and
• If applicable, Credit Inquiry and Social Media Check

How we work
We know that exceptional people have great ideas and are passionate about their work.  Our culture encourages excellence and actively rewards contributions with:

Connection: You’re surrounded by talented people every day who are driven by their passion of a common goal.

Core Values:  They define us. Living them helps us be the best at what we do.

Compensation & Benefits: Pay is driven by individual and corporate performance and we provide a multitude of benefits and perks.

Education: To ensure you are the best at what you do we invest in you