Specialist Cybersecurity Threat Intelligence

About The Position

Requirements

• Degree/diploma in Information Systems, Information Security, Engineering, or equivalent work experience.
• Six or more years of related experience in IT roles, with a focus on Security, Threat Intelligence, Operations and incident response.
• Strong knowledge of various IT systems, including TIP, SIEM, EDR, ASM and scanning systems.
• Working knowledge of threat models, information analysis, dissemnination and incident handling.
• Technical expertise with security technologies: Anomali, ZeroFox, CrowdStrike, Tenable, Hunchly.
• Ability to work on and continuously deliver on numerous competing priorities simultaneously.
• Excellent analytical, problem solving, technical writing, verbal communication, and interpersonal skills.
• Excellent communication skills with the ability to interact with global teams, develop staff, be a thought leader, and drive innovation.

Nice To Haves

• Knowledge of security validation technologies and use of case development
• Familiarity with SOAR platforms and automation and integration capabilities

Responsibilities

• Analyze, interpret and convert information into actionable intelligence.
• Identify and drive proactive risk reduction opportunities, optimizes, and rationalizes threat information for dissemination.
• Detect and advise on evolving threats.
• Lead and drive innovation by automating operational processes and procedures and integrating systems as required.
• Proactively identify potential sources of security or operations-related efficiency opportunities, prioritizing them based on various factors (level of effort, budgetary requirement, timing, operational requirements, and business priorities).
• Advise leadership and lead remediation activities for resolution of cyber security related risk.
• Provide guidance and senior support in the configuration of supporting technology platforms.
• Support daily operations for the Threat Intel, Cyber Fraud and Vulnerability functions within the team.
• Digest varying vendor and systems documentation and produce Enbridge-specific actionable recommendations and documentation to improve operational technology stacks and support structures.
• Develop, enhance, document, and communicate Threat Intel practices & standards.
• Provide technical leadership, guidance, and training for members of the CTI, CFI & VM teams, leading to an atmosphere of continuous improvement and innovation.
• Develop and maintain working relationships with external teams on behalf of CTI, CFI & VM, leading to improved integration to the business and the industry.
• Identify, troubleshoot, and ensure resolution of technical issues with the environment.
• Coordinate the work of others on the team and performs other senior technical duties as required.

Benefits

• opportunities for growth
• competitive benefits and pension plan
• generous time off