Talent.com
Intact Financial Corporation
Security Advisor Specialist, Offensive Security (Global Red Team)Intact Financial Corporation • Toronto, Ontario, CAN
Security Advisor Specialist, Offensive Security (Global Red Team)

Security Advisor Specialist, Offensive Security (Global Red Team)

Intact Financial Corporation • Toronto, Ontario, CAN
17 hours ago
Salary
CA$118,700.00 yearly
Job type
  • Full-time
Job description

Pay at Intact is about much more than just salary.

  • Flexible work arrangements and a hybrid work model

  • Possibility to purchase up to 5 extra days off per year

  • Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more

  • Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)

Salary range (but not limited to):

118,700 - 145,100

Annual bonus target, based on the base salary, with a potential payout of up to double the target (subject to personal and company performance):

15%

As part of our commitment to Win As A Team, we share our success with employees through our annual bonus plan and Employee Share Purchase Plan (ESPP) – with Intact matching 50% of your net shares.

Our pension offerings provide flexibility and long-term security for our employees beyond their careers. We are one of the few companies offering the opportunity to receive guaranteed income for life via our defined benefit pension plan.

Salary for the candidate will be determined taking into consideration a number of factors including: experience, skills, qualifications, anticipated contribution to role, internal equity, etc. The salary range presented above is based on a 35-hour workweek and would represent a majority of different candidate profiles. However, we encourage candidates who may fall outside of this range to apply as well.


About the role

The Security Specialist, Offensive Security is responsible for testing the security controls, the network, and threat response for Intact Financial globally (All regions and all affiliate companies). He/she works as a specialist employing techniques, tactics and protocols to test security controls, working as part of a global offensive security team.

The Specialist, Offensive Security reports to the Director, Offensive Security and works with a team of technical advisors across multiple locations and time zones.

If you can think outside of the Kali box, and love to think like an attacker (with a track record to prove your capabilities) we want to talk to you about joining our team!


What you'll do here:

  • Conduct reconnaissance on network environment to build external landscape using industry standard tools, threat intelligence feeds, OSINT and other readily available information sources

  • Conduct offensive security testing to ensure security controls and response actions are effective. If you are detected, shifting from a red team focus to a purple team approach – your purpose isn’t to create a “Gotcha!” moment – our mission is to strengthen our controls throughout the entire attack chain across the enterprise.

  • Employ attack strategies to simulate real-world attacks by threat actors and benchmark response capabilities across the enterprise.

  • Ability to identify and exploiting vulnerabilities in computer systems, networks and applications to simulate attacks by threat actors – you have a proven track record of evading modern EDR (eg. Crowdstrike, MDE, SentinelOne) while elevating privileges/hitting your target.

  • Analyze and report on the results of security assessments and make recommendations to improve the security posture of the enterprise.

  • You understand the TCP/IP stack in depth and know how to exploit it to create covert beacons, C2 channels, exfiltrate data across DNS. Understanding how routing tables work (eg. BGP) and how they can be exploited is an asset.

  • Work with regional cyber governance and risk teams to ensure that findings are properly tracked for remediation

  • Generate the required metrics and reports to support the CISO IFC Affiliates in reporting on enterprise security control effectiveness

  • Leverage industry standard and emerging tools to evaluate emerging threats to the financial services space and benchmark regions and affiliate companies to peers.

  • Able to consume threat intelligence and apply the attack surface to crown jewel assets for target and tactic development, proposing clear rules of engagement for testing activities (either one time or perpetual) and ensuring compliance to the ROE through all phases of testing.

  • Maintain and update all offensive security tools, technologies and processes in line with company rules of engagement

  • Provide timely and effective communications to key internal stakeholders in alignment with policy and rules of engagement.


What you bring to the table:

  • Advanced knowledge in the following areas: computer networks, operational security platforms, information security principles, TCP/IP, DNS, UDP, BGP, SOC, IAM, SIEM, DLP, EDR, Threat intelligence, Incident Response, technical writing, information risk.

  • Bachelor's degree in Computer Technology, Information Security, an asset.

  • A minimum of five (5) years of relevant professional experience in information technology.

  • A minimum of three (3) years of experience in information security.

  • Knowledge of offensive security operations, tools and techniques.

  • Knowledge of information security standards, regulations and legislation (NIST, COBIT5, ISO 27001), an asset.

  • Python scripting comes naturally, and have a history of using it in blue/red/purple team engagements

  • Proficiency in manual testing techniques beyond automated scanning.

  • Strong knowledge of OWASP Top 10, MITRE ATT&CK, and CVSS scoring.

  • You can take many vectors of technical vulnerability information (Pentest reports, vulnerability scanning data, SAST/DAST reports) and build an attack plan on critical assets.

  • You must have the ability to take highly technical data and results and translate them to business-friendly language to help non-technical stakeholders understand the approach, impact and outcome from offensive security operations.

  • If you’ve joined capture the flag competitions (even better if you won) we want to hear about it!

  • Recognized certification in information security (CEH, CISM or other), an asset.

  • Analytical mind, pragmatic approach to IT security issues and problems.

  • Strong partner in all areas, internally and externally, to provide a secure solution.

  • Ability to reduce stress in situations that are stressful to you and others.

  • Positive attitude, initiative with strong analytical and interpersonal skills to lead work groups, negotiate and build consensus.

  • Ability to write and present material to communicate difficult concepts and gain consensus.

  • Ability to work in a dynamic environment with multiple objectives.

  • Highly motivated and self-directed, with attention to detail.

  • Ability to prioritize and execute tasks in a high-pressure environment.

  • Ability to deal diplomatically and effectively at all levels of the organization.

  • Ability to challenge the status quo.

  • Customer focused approach.

  • For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.

  • No Canadian work experience required however must be eligible to work in Canada.

#LI-Hybrid

Ce poste jouera un rôle essentiel au sein de notre équipe. | This position will fill an essential role in our team.
Create a job alert for this search

Security Advisor Specialist, Offensive Security (Global Red Team) • Toronto, Ontario, CAN

Similar jobs

OT Cyber Security Advisor

Hitachi Vantara CorporationToronto, ON, CA
Full-time

A career at Hitachi Rail will help create a legacy.With operations in every corner of the world, our work goes to the cutting‑edge of digital transformation and technology.From the multi‑cultural s... Show more

 • Promoted

Staff Red Team Engineer — Offensive Security Lead

RobinhoodToronto, ON, CA
Full-time

A leading fintech company in Toronto is seeking a Staff Offensive Security Engineer to enhance its security posture through red teaming and hands-on testing.The ideal candidate will have over 8 yea... Show more

 • Promoted

OT Cyber Security Advisor

Hitachi RailToronto
Full-time

A career at Hitachi Rail will help create a legacy.With operations in every corner of the world, our work goes to the cutting‑edge of digital transformation and technology.From the multi‑cultural s... Show more

 • Promoted

RQ00650 - Sr. Security Specialist

Source CodeToronto, Ontario, Canada
Full-time

ONSITE 5 days -200 Front St West.Provide after‑hours support as required for security events or high‑priority operational needs.Experience designing, implementing, and securing cloud environments (... Show more

 • Promoted

Specialist Offensive Security - $113,683 - $155,216 A Year

ipss inc.Toronto, Canada
Full-time

Conducts penetration testing, identifies security weaknesses, and assists with remediation.Develops ethical hacking capabilities, supports the CISO's mandate, and provides security reports. Show more

 • Promoted

Ot Cyber Security Advisor

Hitachi RailToronto, Canada
Full-time

About Us A career at Hitachi Rail will help create a legacy.With operations in every corner of the world, our work goes to the cutting‑edge of digital transformation and technology.From the multi‑c... Show more

 • Promoted

Technical Team Lead Specializing in Azure and Security Operations

AMTRA SolutionsToronto, Ontario, Canada
Full-time

Advance your career as a Technical Team Lead specializing in Azure and security operations.Champion incident resolutions and enhance managed service delivery through hands-on leadership and strateg... Show more

 • Promoted

Digital Security Specialist- EN

IAMGOLD CorporationToronto, ON, CA
Full-time

Innovative, Accountable Mining.IAMGOLD is a Canadian-based gold mining company with operations and development projects across North America and West Africa.With flagship operations like the Côté G... Show more

 • Promoted

Security Specialist - Senior_10+yrs

Maarut IncToronto
Full-time

The Cyber Security Centre of Excellence (COE) is seeking one (1) Senior Cyber Security Specialist to support in strengthening Ontario’s cyber security infrastructure as the province collectively mo... Show more

 • Promoted

Cyber Security Specialist

Empire LifeToronto, Ontario, Canada
Full-time

This range is provided by Empire Life.Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.Direct message the job poster from Empire Life Please note... Show more

 • Promoted

Rq00650 - Sr. Security Specialist

Source CodeToronto, Canada
Full-time

Security Specialist1+ year contract (260 business days) - possible extensionONSITE 5 days -200 Front St WestNOTE Provide after‑hours support as required for security events or high‑priority operati... Show more

 • Promoted

Digital Security Specialist- En

IAMGOLD CorporationToronto, Canada
Full-time

Innovative, Accountable Mining.IAMGOLD is a Canadian-based gold mining company with operations and development projects across North America and West Africa.With flagship operations like the Côté G... Show more

 • Promoted

Data Security Advisor - Data Strategy

Altis TechnologyToronto, ON, CA
Full-time +1

Our leading financial services client is looking for a permanent resource to join their team as a.Data Security Manager (Data Security Strategy Advisor).This will be a hybrid role reporting to thei... Show more

 • Promoted

Manager, Cyber Resilience & Offensive Security

EQ BankToronto
Full-time +1

Our company continues to grow, and today we serve more than 800,000 customers across Canada through Equitable Bank, Canada's Challenger Bank™ and have been around for more than 50 years.Equitable B... Show more

 • Promoted

Site Security Lead - Operational Excellence (Former Federal, Provincial, Municipal Police Offic[...]

Securitas Security Services USA, Inc.Toronto, ON, CA
Full-time

This position is for an active open vacancy.Posting will be removed once filled.Corporate discounts with Goodlife Fitness, CAA, Perkopolis and Telus.Monday to Friday work schedule.Leadership level ... Show more

 • Promoted

Security specialist

Flip retailToronto
Full-time

Security Specialist vacancy in Toronto Canada.Security Specialist mainframe - REMOTE.Duty: Safety Specialist data processor.Ability: Protection Specification: Rational Identity & Accessibility Mgmt... Show more

 • Promoted

Specialist, Stadium Hospitality Security - Match Day Only

FIFA World Cup 2026 - Canada, Mexico and the United StatesToronto, ON, CA
Full-time

At FIFA26, our vision is to unite the world through the greatest sporting event of all time.The FIFA World Cup 26™ will mark the first time that the tournament will feature 48 teams and be hosted b... Show more

 • Promoted • New!

RQ08709 - Security Specialist - Senior

Rubicon PathToronto, Ontario, Canada
Full-time

About the job RQ08709 - Security Specialist - Senior.Role: Senior Security Specialists.Support the development, UAT and Production of OPS Secure environments.Monitoring the health, performance, and... Show more

 • Promoted

Senior Technical Specialist, Corporate Security

Jaide HealthToronto
Full-time +1

Base salary range: For this role, candidates located in Canada can expect a base salary range, described in the posting.Actual compensation is determined based on skills, experience, and role level... Show more

 • Promoted

Senior Specialist in Cyber Security Strategies

Rubicon PathToronto, Ontario, Canada
Full-time

Enhance Ontario's cyber security infrastructure as a Senior Cyber Security Specialist.Leverage your expertise to implement security architectural best practices and expand cyber safety education in... Show more