Threat Exposure Oversight Specialist enhancing security risk management in Cyber Defence team. Collaborating across functions to validate and document security controls and risks.
Responsibilities
Cyber Threat Exposure Oversight: Translate red team findings and threat intelligence into measurable detection and control expectations.
Map threat techniques to telemetry sources and detection logic.
Validate detection implementation through artifact review (rule Ids, configurations, test evidence).
Identify and document coverage gaps.
Maintain structured mapping from threat - control - detection - residual risk.
Support executive-level exposure reporting within Cyber Defense.
Insider Threat Oversight: Support development and refinement of insider threat monitoring strategy within Cyber Defense.
Translate insider threat scenarios into measurable telemetry and controls expectations.
Validate monitoring coverage for privilege misuse, data exfiltration, and anomalous access patterns.
Partner with relevant stakeholders (Security, HR, Legal where appropriate).
Document insider threat posture and maturity gaps.
Cross-Functional Integration: Collaborate with Threat Intelligence, Detection Engineering, and Incident Response teams.
Clarify ownership boundaries and decision points.
Promote evidence-based closure discipline.
Ensure remediation decisions are traceable and documented.
Requirements
Minimum 3 years experience in detection engineering, threat hunting, insider threat, red team, or similar technical Cyber Defense role.
5+ years of experience in IT or security operations.
Strong knowledge with SIEM, EDR, endpoint telemetry, or log-based detection environments.
Experience working with threat modeling methodologies such as MITRE ATT&CK, STRIDE, PASTA etc.
Ability to translate technical findings into structured risk narratives.
Strong analytical and documentation skills.
Comfort operating in cross-functional environments.
Ability to challenge assumptions through calm, evidence-based discussion.
Strong initiative: proven ability and experience leading projects and initiatives autonomously.
Bilingualism is required for candidates located in Quebec considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
No Canadian work experience required however must be eligible to work in Canada.
Benefits
Flexible work arrangements and a hybrid work model
Possibility to purchase up to 5 extra days off per year
Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
Pension offerings provide flexibility and long-term security for our employees beyond their careers.
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.