Talent.com
Tech Talent International
Cybersecurity Production ExpertTech Talent International • Montreal, QC, Canada
Cybersecurity Production Expert

Cybersecurity Production Expert

Tech Talent International • Montreal, QC, Canada
29 days ago
Job type
  • Full-time
  • Permanent
  • Quick Apply
Job description

Tech Talent International (SI) supplies technical talent to a variety of clients ranging from Fortune 100/500/1000 companies to small and mid-sized organizations in Canada/US and Europe.

We currently have a role as a Cybersecurity Production Expert with our large consulting client on a long term project with a major financial services client in the downtown Montreal area.

This role can either be a fulltime, perm role or a long term C2C contract.

Role: Cybersecurity - Cybersecurity Production Expert

Type: Permanent or Contract 40 hrs/week

Location: Hybrid - Downtown Montreal, QC -(roles starts off 5 days in office for 1st 3 months, then turns into hybrid setup 3 days onsite, 2 days from home)

Salary: $110,000 - $120,000 + 9% bonus + 3-5 weeks paid vacation + RRSP contribution + benefits + sick/personal days

Contract Rate Option: $100 - $105/hr C2C

On-Call Info: 6pm to 6am, for 1 weeks, every 16 weeks

Job Description:

The Production CSIRT Purple Team Expert position will provide security expertise to the 24x7 Security

Operation Center (SOC). The primary purpose of this position is to develop, implement and assist on the continuous evolution of security use cases and correlation rules which assist on detecting, preventing, and responding to cyber threats against our group's infrastructure. It provides critical support to the firm - wide cybersecurity program via partnerships in the region with our peer s globally and within our diverse lines of business as well as externally with client s, partners and regulators.

As a Production Security Purple Team Expert , you are not only responsible for the continuous use case and correlation rule development and enhancement but also expected to participate in Threat Hunting and participate in cybersecurity investigations which will enhance the 24x7 Security Opera tion Center (SOC) capabilities as the first line of defense to identify potential information security incidents.

MAIN RESPONSIBILITIES

Responsibilities include but are not limited to:

  • Provide analysis and trending of security log data from many heterogeneous security devices
  • Responsible for use - case development and validation
  • Develop threat hunting program and capabilities
  • Investigate, document and report on information security issues and emerging trends
  • Perform threat hunting to identify potential adversaries within the network as well as participate in exercises with the AMER Purple Team to detect and remediate any potential gaps or use case
    defects.
  • Provide support and /or research any security related questions or incidents.
  • Perform tasks independently with some oversight
  • Integrate and share information with other analysts and other teams.
  • Follow incident - specific procedures to perform triage of potential security incidents to validate and
    determine needed mitigation and maintain said procedures up to date.
  • Escalate potential security incidents to Level IV engineers, implements countermeasures in response
    to others, and recommend operational improvements
  • Maintaining awareness of the bank's technology architecture, known weaknesses, the architecture
    of the security solutions used for monitoring, imminent and pervasive threats as identified by client
    threat intelligence, and recent security incidents
  • Continuously improve the service by identifying and correcting issues or gaps in knowledge (analysis
    procedures, plays, client network models), false positive tuning, identifying, and recommending new or updated use cases , content, countermeasures, scripts.

Classification : Internal

  • Serve as a subject matter expert in at least one security - related area ( e.g., specific malware solution, python programming, etc.)
  • Actively seek self - improvement through continuous learning and pursuing advancement to a Level IV Analyst
  • Adhere to internal operational security and other company policies
  • Regular interactions with local AMER CSIRT Teams ( CTI, Purple) as well as with EMEA and APAC
    regions.
  • Perform light project work as assigned

REQUIREMENTS
TRAINING AND OCCUPATIONAL EXP ERIENCE

  • Experience in IT Security Incident management at level 3 or multiple years (
  • In- depth technical knowledge of methods used by malware and APTs
  • Extended culture on Cybersecurity
  • Knowledge of security concerning the network infrastructure, UNIX and Windows environments,
    databases, package deployment tools, security tools (USB port control, hard drive encryption)
  • Script writing in shell, Python, Java, PowerShell, Ansible, SQL
  • Knowledge o f 5+ years of experience with the following technologies: SIEM, ELK, IDS/IPS, network -
    and host - based firewalls, data leakage protection (DLP)
  • Direct experience with anti - virus software, endpoint detection response (EDR), firewalls and content
    filtering
  • Experience or demonstrable knowledge in Incident response, log analysis and PCAP analysis
  • Good level of knowledge in network fundamentals, for example, OSI Stack, TCP/IP, DNS, HTTP(S),

SMTP

  • Good level of understanding in the approach threat actors take to attacking a
    port scanning, web application attacks, DDoS, lateral movement
  • Passion to learn and to contribute to the ongoing development of the team
  • Certifications like GCFA, GCIH, OSCP, or similar are good to have .
    Skills/Behaviors Preferred:

network, phishing,

  • Ability to demonstrate the right approach to investigating alerts and/or indicators and document your findings in a manner that both peer and executive level colleagues can understand
  • Appreciation of the wider roles of interconnecting Cyber Security teams and collaboration with each of those ( i.e., Forensics / Threat Intelligence / Penetration Testing / Vulnerability Management / "Purple Teaming" etc.)
  • Ability to handle fluctuating workloads, conflicting
  • Analytical skills
  • Strategic vision
  • Rigor & Accuracy
  • Flexibility
  • Communication skills
  • Collaboration
  • Self - driven


Create a job alert for this search

Cybersecurity Production Expert • Montreal, QC, Canada

Similar jobs

BRP Cyber Security Cloud Expert

BRPMontreal (administrative region), QC, CA
Full-time

Become a Cyber Security Cloud Expert at BRP, safeguarding vital systems and information against cyber threats.Your expertise in cloud technologies and security frameworks is essential for success.I... Show more

 • Promoted

Expert Infrastructures et Cybersécurité

I-TRACINGMontreal (administrative region), QC, CA
Full-time

Intervenant depuis les locaux d'I-TRACING situés à Montréal, vous intégrerez l’équipe Production/Infrastructure ayant en charge la mise en œuvre, l’administration, la supervision et l’évolution des... Show more

 • Promoted

Cybersecurity Architect

Spreedly IncMontreal (administrative region), QC, CA
Full-time

Spreedly is the world's leading Open Payments Platform.Founded in 2007 and headquartered in Durham, NC, the company gives mid‑market and enterprise businesses the infrastructure to connect to any p... Show more

 • Promoted

Operational Technology Cybersecurity Expert

WSP in CanadaMontreal (administrative region), QC, CA
Full-time

Join as an Operational Technology Cybersecurity Expert, focusing on safeguarding energy systems.Leverage your expertise in cybersecurity to enable safe digital transformation in critical infrastruc... Show more

 • Promoted

CAE Cybersecurity and DevOps Expert

CAEMontreal (administrative region), QC, CA
Full-time

Advance your career at CAE as a Cybersecurity and DevOps Integration Specialist, focusing on dynamic security solutions.Collaborate in a high-performance environment committed to global safety.In t... Show more

 • Promoted

Security Specialist - Cyber Threat Intelligence

Intact Financial CorporationMontreal (administrative region), QC, CA
Full-time

Pay at Intact is about much more than just salary.Multiple benefits offered to support.Wellness account and much more.Share plan & other savings: up to.Salary range (but not limited to):.Annual bon... Show more

 • Promoted

Remote Red Team Operator for AI-Driven Cybersecurity Enhancements

DataAnnotationMontreal (administrative region), QC, CA
Remote
Full-time

Transform cybersecurity through your expertise as a Red Team Operator.Work remotely to evaluate AI security models and inform advanced defense tactics against evolving threats.This role invites you... Show more

 • Promoted

Spécialiste en cybersécurité / Cybersecurity specialist

Prevu3D IncMontreal
Full-time

Prevu3D est une entreprise technologique basée à Montréal, fondée en 2017, dont la mission est de rendre les environnements physiques complexes plus faciles à comprendre et à exploiter dans le mond... Show more

 • Promoted

Strategic Cybersecurity Team Lead for Enhanced incident Response

GenetecMontreal (administrative region), QC, CA
Full-time

Lead a dedicated SOC as Team Lead, masterfully guiding security analysts in identifying and mitigating cyber threats.This role is central to refining processes and ensuring swift incident handling.... Show more

 • Promoted

Expert Cybersécurité Projets TI

Exo – Réseau de transport métropolitainMontreal (administrative region), QC, CA
Full-time

Rejoignez un expert en cybersécurité pour assurer une intégration efficace dans les projets TI.Votre rôle dynamique favorisera la flexibilité du travail tout en répondant aux exigences de sécurité.... Show more

 • Promoted

Product Security Specialist - Haivision

Haivisionlaval, qc, ca
Full-time

The Product Security Specialist is responsible for ensuring products are secure before release by embedding security into the development lifecycle.This role focuses on automated security testing, ... Show more

 • Promoted

Coordinator, Cybersecurity Awareness and Training

AlithyaMontreal (administrative region), QC, CA
Full-time

Coordinator, Cybersecurity Awareness and Training.Job Category IT - Administration.Posting Date 05/05/2026, 09:45 PM.Need Justification New Position.Reporting to the Chief Information Security Offi... Show more

 • Promoted

Cybersecurity Incident Response Lead

Crédit Agricole GroupMontreal (administrative region), QC, CA
Full-time

Crédit Agricole CIB (CA-CIB) Canada is the home of Crédit Agricole CIB Canada Branch and Crédit Agricole Services & Operations.The Canada Branch has offices in Montreal and Toronto providing financ... Show more

 • Promoted

Expert en Sécurité Cryptographique Senior

SII CanadaMontreal (administrative region), QC, CA
Full-time

Join Groupe SII as a Senior Expert in Cryptographic Security, focusing on enhancing compliance and reducing risks tied to cryptographic mechanisms in a diverse work setting.In this key role at Grou... Show more

 • Promoted

Project Cybersecurity Manager

ALSTOM GruppeMontreal
Full-time

At Alstom, we understand transport networks and what moves people.From high-speed trains, metros, monorails, and trams, to turnkey systems, services, infrastructure, signalling and digital mobility... Show more

 • Promoted

Cybersecurity Advisor

LeadingtalentMontreal
Full-time

CGI – Payroll Services Centre (PSC) offers all-in-one cloud-based solutions that simplify payroll and human capital management.We take pride in our strong client relationships, reflected in our hig... Show more

 • Promoted

Cybersecurity Channel Account Manager

Fortinet, Inc.Montreal (administrative region), QC, CA
Full-time

Shape the cybersecurity landscape as a Channel Account Manager with Fortinet.This position focuses on cultivating partnerships and driving growth with National Solution Providers.As a Regional Chan... Show more

 • Promoted

Expert en Cybersécurité Senior chez TEHORA

TEHORAMontreal (administrative region), QC, CA
Full-time

Intégrez TEHORA en tant qu'expert senior en cybersécurité, jouez un rôle stratégique dans la sécurité tout en bénéficiant de conditions de télétravail et horaires flexibles.TEHORA recherche un expe... Show more

 • Promoted

Channel Solutions Engineer: Bridging Partners and Cybersecurity Technology

TrendAIMontreal (administrative region), QC, CA
Full-time

Forge vital connections as a Channel Solutions Engineer in cybersecurity.Elevate partner effectiveness through AI-driven platforms that enhance shared customer success and revenue growth.This role ... Show more

 • Promoted

Expert en Sécurité Applicative DevSecOps

Banque NationaleMontreal, Montreal (administrative region), CA
Full-time

Intègre l’équipe de Protection des Actifs à la Banque Nationale comme Expert en Sécurité Applicative DevSecOps.Ta maîtrise des vulnérabilités et de l'automatisation sera essentielle pour la sauvega... Show more