Intact's logo
EN FR
Search Careers
some people discussing
Back to Careers

Senior Security Advisor - Incident Response

Type:
Full Time
Location(s):
  • Calgary, Alberta
  • Montréal, Quebec
  • St-Hyacinthe, Quebec
  • Toronto, Ontario
Date Posted:
Job ID:
R152798

Our employees are at the heart of everything we do. Together, we help people, businesses, and society prosper in good times and be resilient in bad times.


Our employee promise represents Intact’s commitment to you in exchange for living our Values, striving to do your best work, being open to change and investing in your career. In return, we promise to provide support, opportunities and performance-led financial rewards at a workplace where you can shape the future, win as a team and grow with us.

Pay at Intact is about much more than just salary.

  • Flexible work arrangements and a hybrid work model

  • Possibility to purchase up to 5 extra days off per year

  • Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more

  • Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)

Salary range (but not limited to):

101,800 - 124,400

Annual bonus target, based on the base salary, with a potential payout of up to double the target (subject to personal and company performance):

12%

As part of our commitment to Win As A Team, we share our success with employees through our annual bonus plan and Employee Share Purchase Plan (ESPP) – with Intact matching 50% of your net shares.

Our pension offerings provide flexibility and long-term security for our employees beyond their careers. We are one of the few companies offering the opportunity to receive guaranteed income for life via our defined benefit pension plan.

Salary for the candidate will be determined taking into consideration a number of factors including: experience, skills, qualifications, anticipated contribution to role, internal equity, etc. The salary range presented above is based on a 35-hour workweek and would represent a majority of different candidate profiles. However, we encourage candidates who may fall outside of this range to apply as well.


About the role

We're looking for a Senior Security Advisor, Incident Response to join our growing team!

What you’ll do here:

  • Lead end-to-end response for high-priority security incidents, including scoping, containment, eradication, recovery, and post-incident reviews.

  • Perform advanced investigations (endpoint forensics, network traffic analysis, identity and access, email security, and cloud platforms).

  • Handle escalations from L2 Analysts and provide hands-on guidance during active incidents.

  • Maintain chain of custody and evidence integrity; establish and follow processes to preserve traceability.

  • Create clear, factual investigative reports and provide timely stakeholder updates tailored to technical and non-technical audiences.

  • Lead lessons-learned workshops and drive remediation and control improvements.

  • Contribute to playbook development and automation; identify opportunities to streamline triage and response.

  • Identify, assess, and report on security risks in line with internal policies and applicable regulations/standards

  • Propose and track risk mitigation and remediation plans, balance business impact and control effectiveness.

  • Analyze security solutions and recommend approaches that optimize risk reduction vs. cost.

  • Maintain Intact’s cybersecurity incident response plan and supporting procedures; contribute to broader cybersecurity plans and testing (e.g., tabletop exercises).

  • Support Legal and HR on investigations (e.g., insider threat, fraud) and coordinate with Privacy/Compliance for potential regulatory notifications.

  • Partner with IT/Cloud/Network teams to validate containment and recovery actions and ensure durable fixes.

  • Provide mentorship and technical guidance to SOC analysts to develop their IR skills.

  • Participate in a scheduled on-call rotation to support 24/7 coverage for critical incidents.

  • Track and report SOC KPIs/KRIs (e.g., MTTD, MTTR, detection efficacy, containment time) and contribute to continuous improvement initiatives.

 

What you bring to the table: 

  • Bachelor’s degree in computer science, information security, engineering or any combination of equivalent education and experience.

  • 10+ years of experience in Information Technology with at least 5 years dedicated to Information Security, including hands-on SOC/Incident Response experience.

  • Deep knowledge of information security principles, incident response processes, and digital investigation concepts (e.g., chain of custody, evidence handling).

  • Proficiency with security platforms (SIEM, SOAR, EDR/XDR, Digital Forensics, Network security and traffic analysis, Cloud security investigation in AWS/Azure/GCP, and Identity and Access investigation tools).

  • Strong understanding of common vulnerabilities and attacker techniques (SANS, OWASP Top 10, CSA, MITRE ATT&CK).

  • Certifications (assets): One or more of: CISSP, CISM, CISA, CGEIT, CRISC, GSEC, GISP (asset). Incident response/forensics/threat intel: GCIH, GCFA/GCFE, GCTI, GNFA, Azure/AWS security certs (asset). Certified Fraud Examiner (CFE) or equivalent training (asset).

  • Strong ethical principles and sound judgement; understanding of security and business ethics.

  • Excellent written and verbal communication; ability to translate technical findings for varied audiences.

  • Analytical, critical thinker with a positive attitude, team spirit, and commitment to continuous learning.

  • Ability to lead during high-pressure incidents and coordinate across multiple teams.

  • For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country. 

  • No Canadian work experience required however must be eligible to work in Canada.

#LI-Hybrid

Il s'agit d'un nouveau rôle au sein de notre équipe en plein croissance | This role is a new member of our growing team.


We are an equal opportunity employer

At Intact, our Value of respect is founded on seeing diversity as a strength. We strive to create an accessible workplace where employees feel valued, included and encouraged to share their unique perspectives.

We encourage applications from individuals who are members of equity-deserving groups, including but not limited to women, Indigenous peoples, persons with disabilities, Black people, and members of the 2SLGBTQI+ community.

As part of Intact’s commitment to reconciliation, we acknowledge that we work, meet and travel across the land currently called Canada, originally inhabited by First Nations, Metis and Inuit people. This history extends through many centuries and continues to evolve today.

We have policies to ensure equal access and participation for people with disabilities, including providing workplace adjustments (accommodations). A copy of applicable policies is available on request.

If we can provide a specific adjustment to make the recruitment process more accessible for you, please let us know when we reach out about a job opportunity. We’ll work with you to meet your needs.

Learn more about our recruitment process and your candidate journey here.

Please note that Intact does not provide sponsorship or other support for immigration-related matters including but not limited to employer-specific closed work permits. Candidates must be eligible to work in Canada from the anticipated start date and throughout their employment and are solely responsible for maintaining their work eligibility.

If you are an employee of Intact or belairdirect, please apply for this role on Internal Career Site.

Manual Application