Security Analyst II – Vulnerability Management and Python Automation

Pay at Intact is about much more than just salary.

Flexible work arrangements and a hybrid work model

Possibility to purchase up to 5 extra days off per year

Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more

Share plan & other savings : up to 12% of salary or even more (ask how you could earn guaranteed income for life)

Salary range (but not limited to) :

80,700 - 98,700

Annual bonus target, based on the base salary, with a potential payout of up to double the target (subject to personal and company performance) :

10%

As part of our commitment to Win As A Team , we share our success with employees through our annual bonus plan and Employee Share Purchase Plan (ESPP) – with Intact matching 50% of your net shares.

Our pension offerings provide flexibility and long-term security for our employees beyond their careers. We are one of the few companies offering the opportunity to receive guaranteed income for life via our defined benefit pension plan.

Salary for the candidate will be determined taking into consideration a number of factors including : experience, skills, qualifications, anticipated contribution to role, internal equity, etc. The salary range presented above is based on a 35-hour workweek and would represent a majority of different candidate profiles. However, we encourage candidates who may fall outside of this range to apply as well.

About the role

Join our vulnerability management team as an experienced security analyst with a strong background in Python development. You will be an expert in assessing and tracking infrastructure vulnerabilities, technology obsolescence, and security configurations, leveraging Python automations to accelerate analysis, prioritization, and remediation. Your primary mission is to analyze risks, orchestrate remediation, and industrialize the process through Python scenarios and tools.

What you’ll do here :

Serve as the principal expert in infrastructure vulnerabilities, software obsolescence management, and configuration standards (CIS Benchmarks), with a focus on Python-based automation.

Analyze, prioritize, and triage threats (CVE / CVSS, obsolescence, configuration drift) and develop Python workflows to correlate findings, enrich data (platform APIs), and generate reports.

Collaborate closely with system administrators and application teams to interpret analysis results and validate remediation plans, enabling these steps through automation.

Coordinate remediation with systems / network / cloud and application teams; remove technical blockers; manage exceptions and risk compensations, measuring progress via Python-generated dashboards.

Ensure adherence to security timelines by setting up automated alerts, metrics, and tracking.

Advise technical teams on remediation best practices and explain the impact of identified risks, relying on evidence and indicators from Python-developed tools.

Continuously improve the process (lightweight automations and data pipelines), aligned with CIS Benchmarks, NIST CSF, ISO 27001, and internal governance.

What you bring to the table :

Studies in computer science, IT management, or equivalent experience.

3 to 5 years of relevant experience in information security as a security analyst (vulnerability management, remediation coordination, risk prioritization).

Mastery of CVE, CVSS, technology obsolescence, and configuration standards (CIS Benchmarks).

Strong experience in Python development applied to security : scripting, platform APIs (Tenable, Qualys, Rapid7, CrowdStrike, Prisma Cloud), data transformation (CSV / JSON), automated reporting and dashboards.

Proven experience in project coordination, priority management, and tracking complex cases involving multiple teams.

Good understanding of operating systems and networks.

No Canadian work experience required however must be eligible to work in Canada.

Bilingualism. Need to interact on a regular basis with colleagues across the country.

#LI-Hybrid

Il s'agit d'un nouveau rôle au sein de notre équipe en plein croissance | This role is a new member of our growing team.