Cyber Threat Analyst
About The Position
Reporting to the Director, Cybersecurity and Operations, the Cyber Threat Analyst supports Payments Canada’s proactive defense against cyber threats. The main goal is to collect, research and analyze cyber threat data, assist in threat modeling and support proactive threat hunting operations to detect potential intrusions. Working closely with the Lead, CTI and Threat Hunting and other security teams to deliver high-quality intelligence products, contribute to ongoing investigations and support organizational security priorities. This role focuses on hands-on analysis, data collection and execution of tasks, with guidance and mentorship from senior team members.
Requirements
- Post-secondary education in Cybersecurity, Computer Science, Information Security, or related field; OR equivalent practical experience.
- Minimum three (3) years of experience in cyber threat intelligence, SOC operations, or incident response.
- Familiarity with MITRE ATT&CK framework or other threat modeling methodologies.
- Experience using SIEM or EDR platforms for analysis and investigations.
- Knowledge of adversary TTPs, intrusion sets, and threat analysis techniques.
- Ability to analyze data from multiple sources (logs, alerts, endpoint data).
- Strong written and verbal communication skills.
- Curious, detail-oriented, and motivated to learn advanced CTI and hunting practices.
- Eligibility to successfully complete background checks that will be carried out by Payments Canada, including criminal, credit, identity, employment, and education checks.
- Ability to work outside of regular working hours based on operational requirements.
- Willing to travel periodically to meet with external partners or attend industry events and conferences.
Nice To Haves
- Industry certification (e.g., Security+, GCTI, CTIA, CEH) is considered an asset.
- Familiarity with scripting or automation (Python, PowerShell) is considered an asset.
Responsibilities
- Collect, review and analyze threat data from internal and external sources.
- Assist in monitoring and tracking threat groups, including their activities and TTPs.
- Assist senior team members in developing threat models for systems under development.
- Participate in threat modeling workshops as a supporting team member.
- Participate in proactive threat hunting operations under the guidance of senior team members.
- Investigate anomalies, alerts, or suspicious behaviors using SIEM/EDR data.
Benefits
- Flexible, hybrid (remote/office) environment.
- Competitive compensation package, including annual variable bonus and defined contribution pension plan with employer matching percentage (if eligible).
- Comprehensive health and dental benefit coverage, including mental health coverage, life insurance and a health spending account for you and your dependents (Permanent and temporary employees with contracts 12 months and over).
- Paid time off: minimum four weeks paid vacation, sick and personal days, December holiday shutdown and cultural holiday observance days.
- 26 weeks of paid maternity and parental leave top-up (if eligible)
- Rewards and recognition program.
- Access to office gym facilities.
- Internal and external professional development opportunities.
- Fun team and organizational events.
- Monthly all staff forums led by our Executive Leadership Team.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
Associate degree
