Our employees are at the heart of everything we do. Together, we help people, businesses, and society prosper in good times and be resilient in bad times.
Our employee promise represents Intact’s commitment to you in exchange for living our Values, striving to do your best work, being open to change and investing in your career. In return, we promise to provide support, opportunities and performance-led financial rewards at a workplace where you can shape the future, win as a team and grow with us.
Pay at Intact is about much more than just salary.
Flexible work arrangements and a hybrid work model
Possibility to purchase up to 5 extra days off per year
Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
Salary range (but not limited to):
118,700 - 145,100Annual bonus target, based on the base salary, with a potential payout of up to double the target (subject to personal and company performance):
15%As part of our commitment to Win As A Team, we share our success with employees through our annual bonus plan and Employee Share Purchase Plan (ESPP) – with Intact matching 50% of your net shares.
Our pension offerings provide flexibility and long-term security for our employees beyond their careers. We are one of the few companies offering the opportunity to receive guaranteed income for life via our defined benefit pension plan.
Salary for the candidate will be determined taking into consideration a number of factors including: experience, skills, qualifications, anticipated contribution to role, internal equity, etc. The salary range presented above is based on a 35-hour workweek and would represent a majority of different candidate profiles. However, we encourage candidates who may fall outside of this range to apply as well.
About the role
We’re looking for a Cyber Threat Intelligence Specialist to join our growing team!
Are you passionate about the threat landscape and artificial intelligence? Do you want to join a dynamic and innovative team that leverages cutting-edge technologies to protect one of the largest insurance companies in Canada? If so, you might be the perfect candidate for the Cyber Threat Intelligence Specialist at Intact Financial.
We are looking for a visionary CTI specialist ((AI & Machine Learning Focus) to bridge the gap between world-class threat tradecraft and state-of-the-art machine learning. In this role, you will not only analyze the threat landscape but also lead the architectural design and implementation of AI models that automate CTI workflows - specifically focused on alert triage, adversary behavior modeling and predictive intelligence.
Experience in Data Science or Machine Learning is not mandatory but is considered a strong asset.
What you'll do here:
AI-Driven CTI Lifecycle:
Design and deploy machine learning models (supervised/unsupervised) to automate the collection, normalization, and analysis of threat intelligence from OSINT, dark web, sharing forums and internal telemetry.
Adversary Behavior:
Build predictive models to identify potential lateral movement and credential harvesting patterns, utilizing Large Language Models (LLMs) to map adversary infrastructure.
Strategic Intelligence:
Translate complex technical findings into executive-level briefings that align with Priority Intelligence Requirements (PIRs)
Develop and maintain tools and APIs to integrate AI insights directly into our SOAR, SIEM and EDR platforms.
Continuously improve and maintain the Threat Intelligence program for Intact Financial Corporation.
Develop and monitor threat intelligence sources to ensure Intact has relevant information on threats and threat trends.
Develop and deliver high-quality intelligence analysis, brief bulletins, assessments, profiles and other findings across strategic, operational and tactical teams within the organization and external partners.
Support incident response investigations and threat hunting activities from a threat intelligence perspective.
Conduct trending and correlation research from various cyber threat intelligence sources for the purposes of indicator collection, shifts in TTPs, attribution, and establishing countermeasures to increase cyber resiliency.
Monitor and research new potential cyber threats that could have a direct or indirect impact on the company, business operations, technology infrastructure and client trust. Using public and private information, open-source intelligence, and other research techniques.
Manage threat intelligence analytical platforms, integrate intelligence into security stacks via TAXII, STIX and OpenIOCs and monitor feed sources for efficacy.
Own and manage relationships with external threat intelligence partners to include regular meetings with threat intelligence and Information Sharing and Analysis Center (ISACs) partners.
Develop and Mentor staff in intelligence analysis, cyber operations, reverse engineering and operational security.
What you bring to the table:
Bachelor’s degree in computer science, or any combination of equivalent education and experience.
Minimum 10 years of experience in information technology, including at least 5 years in the field of information security, or any combination of equivalent education and experience.
Strong knowledge of information security management principles and practices.
Strong ethical principles and understanding of business and information security ethics.
Good knowledge of common security vulnerabilities of web and cloud applications and operating techniques from sources such as SANS, OWASP Top 10 and Cloud Security Alliance (CSA).
One of these certifications would be a considerable asset: CISSP, CISA, CISM, CGEIT, CRISC, GSEC, GISP, CEH, GCIH, GCTI, GCFE or the equivalent.
Certified GMLE: GIAC Machine Learning Engineer or equivalent training in this field, is an asset.
Positive attitude, team spirit and eagerness to learn.
Critical mind.
Experience working in a Security Operations Centre.
Master the digital investigation concepts such as the chain of custody and the digital evidence.
Demonstrated commitment to training, self-learning and maintaining proficiency in the technical cybersecurity domain.
No Canadian work experience required however must be eligible to work in Canada.
For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
#LI-Hybrid
Il s'agit d'un nouveau rôle au sein de notre équipe en plein croissance | This role is a new member of our growing team.
We are an equal opportunity employer
At Intact, our Value of respect is founded on seeing diversity as a strength. We strive to create an accessible workplace where employees feel valued, included and encouraged to share their unique perspectives.
We encourage applications from individuals who are members of equity-deserving groups, including but not limited to women, Indigenous peoples, persons with disabilities, Black people, and members of the 2SLGBTQI+ community.
As part of Intact’s commitment to reconciliation, we acknowledge that we work, meet and travel across the land currently called Canada, originally inhabited by First Nations, Metis and Inuit people. This history extends through many centuries and continues to evolve today.
We have policies to ensure equal access and participation for people with disabilities, including providing workplace adjustments (accommodations). A copy of applicable policies is available on request.
If we can provide a specific adjustment to make the recruitment process more accessible for you, please let us know when we reach out about a job opportunity. We’ll work with you to meet your needs.
Learn more about our recruitment process and your candidate journey here.
Please note that Intact does not provide sponsorship or other support for immigration-related matters including but not limited to employer-specific closed work permits. Candidates must be eligible to work in Canada from the anticipated start date and throughout their employment and are solely responsible for maintaining their work eligibility.
If you are an employee of Intact or belairdirect, please apply for this role on Internal Career Site.