Sr Manager, Cyber Threat Intelligence (CTI)

Our Technology team wakes up every day with one goal in mind - connecting Canadians to the people and things that matter most. Together, we are proud to support 30 million Canadians each month through managing a robust portfolio that champions leading-edge technology. We drive large-scale, complex, and high-visibility technology projects and programs that shape the future of technology in Canada and expand connectivity from coast to coast. If you are interested in being a part of this, consider applying for the following opportunity:

We are seeking a visionary and technically seasoned Senior Manager of Cyber Threat Intelligence (CTI) to evolve and operationalize our advanced threat intelligence and hunting program. The successful candidate will play a critical role in enhancing our organization's ability to anticipate, detect, and pre-empt sophisticated cyber threats, especially those targeting the telecommunications infrastructure and financial services landscape. This role will guide the integration of CTI across key business functions, advance our threat hunting capabilities, and help safeguard sensitive customer data and sector-critical infrastructure from nation-state actors, financially motivated adversaries, and third-party supply chain threats.

What you'll be doing:

Threat Intelligence Operations

• Oversee daily intelligence operations including adversary tracking, threat actor attribution, IOC/IOA analysis, and geopolitical threat monitoring relevant to telecom and financial ecosystems.
• Guide the production of actionable threat intelligence reports and executive briefings that map to business risks across both sectors.
• Ensure intelligence feeds are prioritized, validated, and actionable—enhancing use cases in SIEM, EDR, Dark Web Monitoring and SOAR/Threat Intel platforms.
• Translate highly technical threat findings into clear and concise insights for business, risk, and leadership audiences.
• Maintain updated Priority Intelligence Requirements (PIRs) aligned with business risk assessments, fraud intelligence, telecom, and financial attack surfaces.
• Integrate CTI workflows with threat detection to enhance automation and reduce time-to-detection and time-to-inform stakeholders
• Continuously refine PIRs with stakeholder feedback loops from internal business units.

Leadership & Strategy

• Evolve and enhance an established Cyber Threat Intelligence program by refining existing workflows, intelligence lifecycle practices, and stakeholder engagement models.
• Drive the strategic and operational maturity of the Threat Hunting program by identifying coverage gaps, integrating intelligence-led hunting, and developing advanced detection playbooks.
• Take a learderhip role on across-functional team of CTI professionals and threat hunters and support in establish a clear vision, expectations, and professional development tracks.
• Collaborate with senior leaders across Governance, Risk, Compliance, SOC, IR, and Technology as well as with key external partners and intelligence to ensure CTI insights directly inform executive decision-making, enterprise-wide detection strategy, and sector regulatory alignment.
• Represent the CTI function in industry ISACs (FS-ISAC, CTIA, Telecom ISAC) and other threat-sharing partnerships, enabling collaborative defense against sector-specific threats.
• Manage CTI performance metrics (KPIs/KRIs), aligning outputs with evolving threat models and board-level risk themes to strengthen the relevance and impact of CTI on critical nosiness functions.

Collaboration & Integration

• Collaborate with the SOC, Vulnerability , and Incident Response to ensure threat intel drives detection use cases and post-incident reviews.
• Support threat modeling and cyber risk assessments for critical telecom infrastructure and financial services.
• Work closely with Third-Party Risk Management and Supply Chain teams to monitor and assess external risk dependencies (e.g., vendors, partners, MSSPs).
• Facilitate and participate in cross-functional threat simulations and tabletop exercises informed by real-world threat intelligence.
• Promote a culture of intelligence sharing and threat awareness across all lines of business

What you bring:

• 5+ years of cybersecurity experience, including CTI and/or threat detection roles.
• Leadership experience managing cybersecurity analysts or intelligence teams.
• Deep knowledge of threat actor TTPs, adversary emulation, Threat Hunting, and frameworks including CTI Life Cycle, MITRE ATT&CK, Cyber Kill Chain, PIRs and Diamond Model.
• Demonstrated experience with IT, Telecom or financial industry-specific threat landscapes, including knowledge of sector-specific threats and infrastructure risks (e.g., infostealers, N-day Exploits, APTs ATO, SIM Swapping, RaaS attacks, DDoS, credential stuffing, fraud).
• Proficiency and knowledge of SIEM, MISP, EDR, Vulnerability and Threat Intel Platforms.
• Strong written and verbal communication skills with proven experience briefing technical and non-technical audiences.
• Experience working with compliance or risk frameworks.
• Bachelor’s degree in Cybersecurity, Computer Science, Information Security, or a related field.

Preferred

• Professional certifications such as GCTI, MAD CTI, CISSP, Threat Hunting
• Security Clearance Level I/II.
• Experience with scripting and automation (Python, PowerShell, KQL), advanced Excel, PowerPoint and (STIX/TAXII, JSON data exchange).
• Experience working within telecom carrier operations or large financial institutions (e.g., retail, banking, fintech).
• Familiarity with threat intelligence enrichment using open-source intelligence (OSINT), commercial Intelligence platforms, dark web monitoring, or fraud intelligence sources.

What’s in it for you?

We believe in investing in our people and helping them reach their potential as valuable members of our team. As part of our team, you’ll have access to a wide range of incredible resources, growth opportunities, discounts, and perks, including:

• Competitive salary & annual bonus
• Competitive & flexible health and dental benefits, pension plan, RRSP, TFSA, and Stock matching programs.
• Discounts: Enjoy up to 50% off Rogers Services and Blue Jays Tickets, 25% off TSC items, and a 20% discount on all wireless accessories sold in Rogers stores.
• Paid time off for volunteering
• Company matching contributions to charities you support
• Growth & Development Opportunities:
  
  • Self-driven career development programs (E.g. MyPath program)
  • Rogers First: priority in applying to internal roles of interest
• Wellness Programs:
  
  • Homewood employee & family assistance program
  • Cognitive Behavioural Therapy (CBT) & Virtual therapy sessions
  • Low or no-cost fitness membership with access to virtual classes
• Our commitment to the environment and diversity:
  
  • Work for an organization committed to environmental protection
  • Strong commitment to diversity and inclusion with employee resource groups supporting equity-deserving groups including groups representing People of Colour, 2SLGBTQIA+, Indigenous Peoples, Persons with Disabilities and Women. We all bring something different, and we know what makes us different makes us great.

This is a hybrid work position and will require you to be in office three days per week. You can choose which days in office work best for you!

To protect our people, brand and assets, a pre-employment background check will be conducted. As part of our selection process, all candidates must clear a criminal background check. Additionally, a credit check and drivers abstract may be required depending on the role.

Schedule: Full time
Shift: No Selection
Length of Contract: Not Applicable (Regular Position)
Work Location: 8200 Dixie Road (101), Brampton, ON
Travel Requirements: Up to 10%
Background Check(s) Required: Criminal Record and Credit Check
Posting Category/Function: Technology & Information Technology
Requisition ID: 325284