Security Advisor Specialist - Incident Management

About the role

Join the Partner Solutions (PSI) team as a Security Advisor Specialist in incident management. We are a passionate team driven by innovation and a desire to push boundaries. Our environment is dynamic and supports learning and professional growth.

• Ensure optimal triage of security alerts while supporting the escalation and eradication of cybersecurity incidents within established timelines.
• Identify anomalies, investigate advanced cyber events, and provide third‑level support for investigations and confirmed incidents as required.
• Participate in the cybersecurity incident lifecycle, from preparation through post‑mortem.
• Ensure optimal coverage by reviewing detection rules, recommending improvements and/or proposing new rules based on the organization’s operating context.
• Contribute to the creation, enhancement, review, and maintenance of documentation in line with industry best standards.
• Collaborate with various internal teams on projects and initiatives as a subject‑matter expert when required.
• Respond to user requests related to cybersecurity.
• Participate in the 24/7 support rotation in collaboration with other team members.

• Strong understanding of log sources (EDR, SIEM, NDR, DNS, email, web proxy, identity (AD/Azure AD)).
• Strong understanding of query languages: CQL, KQL, SQL; correlation and pivoting techniques.
• Strong understanding of detection engineering: rule writing, ATT&CK mapping.
• Understanding of phishing/social engineering techniques, initial access vectors, privilege escalation, lateral movement, and exfiltration.
• Bachelor’s degree in Information Technology, Systems Security Management, or other relevant experience.
• Five to eight years of experience in the information security (cybersecurity) field.
• Expert knowledge of security incident management principles.
• Excellent analytical, synthesis, and problem‑solving skills.
• Outstanding team spirit.
• Initiative‑taking and self‑directed.
• Strong attention to detail and excellent communication skills.
• Ability to mentor team members and transfer knowledge.
• For candidates located in Quebec, bilingualism is required to interact with English‑speaking colleagues across the country.
• Demonstrated commitment to training, self‑learning, and maintaining cybersecurity technical skills.
• No Canadian work experience required, but authorization to work in Canada is required.

Salary range (but not limited to): 118,

Annual bonus target: 15%, with a potential payout of up to double the target.

Our pension offerings provide flexibility and long‑term security for our employees beyond their careers; we offer a defined benefit pension plan that provides guaranteed income for life.

We offer flexible work arrangements, a hybrid work model, up to 5 extra days off per year, and benefits for physical and mental well‑being, including telemedicine and a wellness account. An Employee Share Purchase Plan allows employees to participate in shares, with Intact matching 50% of net shares.

#LI-Hybrid

We are an equal opportunity employer. We encourage applications from individuals who are members of equity‑deserving groups, including women, Indigenous peoples, persons with disabilities, Black people, and members of the 2

SLGBTQI+ community.

We acknowledge the land on which we operate, and we are committed to reconciliation. We provide accommodations for people with disabilities.

Please note that we do not provide sponsorship or other support for immigration‑related matters. Candidates must be eligible to work in Canada from the anticipated start date and throughout their employment.

If you are an employee of Intact or belairdirect, please apply through the internal career site.