61 Threat Analyst jobs in Canada

Job Description

Salary:

CYPFER is a true first-responder Cybersecurity organization enabling clients to return to business rapidly, the right way, following a cyber-attack. We are a global market leader in ransomware post-breach remediation and cyber-attack first response. We deliver results that far surpass market statistics for cyber-extortion and ransomware events. Our team of cybersecurity professionals works with prominent global insurance carriers, leading law firms, and Fortune 1000 businesses.

Do you enjoy cyber security research and innovation, proactive thinking and problem solving, in a challenging and adaptive environment while consistently thinking outside of the box? If so, this opportunity is right for you!

Were looking for an experienced Security Analyst -Threat Hunterto fill a technical role on the team, who is constantly thinking outside the box, ready to dive deep into the smallest details, is passionate about cybersecurity and has a natural detective sense. The right candidate has experience in both offensive and defensive operations and enjoys innovation and security research.

What will you do?

• Create detection engineering solutions to proactively identify and mitigate sophisticated threat actors (APTs/UNCs) and insider threats
• Analyze, research and reverse engineer Tactics Techniques and Procedures (TTPs) and malware samples to create detections based on industry leading frameworks such as MITRE ATT&CK
• Develop, plan, lead and participate in Purple Team Exercises focusing on and discovering and mitigating emerging threats
• Innovate and create novel solutions including User Behavior Analytics (UBA) models by leveraging Data Science and Machine Learning (ML), bringing cybersecurity and data science closer
• Collaborate and foster relationships with multiple teams including Adversary Emulation (Red Team), Data Science, Threat Intelligence, Security Operation Centre (SOC) and Digital Forensics and Incident Response (DFIR) to drive pragmatic cyber security improvement
• Work closely with our dedicated Development team to create and enhance our threat hunting in-house developed products
• Develop, implement, and refine our defensive tradecraft and tooling
• Provide bespoke advisory and consultation services to senior executive management and perform as a cyber security SME for emerging threats and investigations
• Work and utilize vast data sources, data lakes and security vendor solutions
• In conjunction with other members of the Global Security group, you would ensure the ongoing enhancement of the threat hunting methodologies and overall strategy to detect and alert of cyber threats

What do you need to succeed?

Must-have:

• 5+ years of Cyber Security operations experience preferably comprised of both defensive and offensive roles
• Familiarization with the cyber security Kill Chain phases and MITRE ATT&CK framework TTPs
• Knowledge of offensive security tools, techniques, procedures and security domains focusing on operational security
• Solid grasp of cyber security controls/products including both endpoint, network, application, and infrastructure
• Knowledge of current regional and global threat landscape
• Strong knowledge of Python

Nice-to-have:

• Hands-on experience in malware analysis, reverse engineering, and security research
• Prior experience conducting blue/purple team exercises or penetration testing
• Digital Forensics skills including memory/network/OS/disk forensics
• Defensive oriented certification such as GIAC GREM, GCFA or other reputable, technical, and defensive/offensive focused certification
• Cloud knowledge and expertise of leading cloud providers (AWS, GCP, Azure)
• Programming languages such as C++/C#/JavaScript/Assembly
• Hands-on experience working with LLM and RAG technologies

CYPFER is an equal opportunity employer. If you need any accommodations or adjustments throughout the interview process and beyond, please let us know. We celebrate our inclusive work environment and welcome members of all backgrounds and perspectives to apply.

We thank you for your interest in joining the CYPFER team! While we welcome all applicants, only those who are selected for an interview will be contacted.

About Us

Brookfield Renewable is one of the core businesses under Brookfield Corporation (“Brookfield”), one of the world’s leading alternative asset managers. Brookfield Renewable is one of the world’s largest owners, operators, and developers of renewable power, with $102 billion of power assets under management. Our portfolio of hydropower, wind, utility-scale solar, distributed generation, and storage assets extends across North America, South America, Europe, India, and China, totaling almost 33,000 megawatts of capacity, and over 7,000 generating facilities globally.

Come Join Us

At Brookfield Renewable, we attract and retain high-performing individuals who are interested in making an impact, driving meaningful change and being part of a fast-paced and collaborative environment. Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture. Together, we contribute to the success of one of the fastest growing and largest publicly traded, pure play renewable power platforms in the world while supporting decarbonization and greater energy sustainability to facilitate the global transition to a net-zero.

About the Role

This position is a member of the Corporate Cybersecurity & Technology Risk Team reporting to the Senior Analyst, Cybersecurity Threat Intelligence. This role mitigates risk across Brookfield Renewable portfolio companies by researching emerging threat patterns, developing preventive measures, advising on security enhancements, and administering cross-portfolio cybersecurity services. The ideal candidate should have a deep understanding of the threat landscape, cybersecurity trends, and advanced persistent threats.

Key Responsibilities

You will work collaboratively with internal teams and portfolio company cybersecurity personnel to:

• Execute and monitor monthly vulnerability scans across IT and OT environments, track and report on remediation progress.
• Collect, analyze, and report phishing simulation and security awareness metrics.
• Conduct threat intelligence research using tools such as Dark Owl, OpenCTI, and Shodan; produce actionable intelligence reports.
• Analyze, advise on, and draft lessons learned from cyber incidents that occur.
• Administer key Corporate Cybersecurity & Technology Risk systems.
• Test and evaluate new as well as existing technologies for process improvement.
• Assist in the implementation of new portfolio-wide cybersecurity tools and controls.
• Prepare threat intelligence memos to assist in the cyber due diligence of target acquisitions
• Aid other team members within Cybersecurity & Technology Risk as required.

Knowledge and Experience Required

• Bachelor’s degree or college diploma in Information Technology or related discipline.
• Industry certification is considered an asset (CISSP, CompTIA Security +, CEH, etc.).
• 2-4 years of experience in cybersecurity including but not limited to vulnerability management, security awareness and identity access management systems will be considered an asset.
• 1-2 years’ experience with operational technologies (OT) and Cybersecurity Risk Management considered an asset.
• Understanding of cyber security principles and best practices (NIST CSF, ISO27001, etc.) including incident management & response processes.
• Experience with the following or similar tools is considered an asset: Rapid 7, Dark owl, Shodan, Knowbe4.
• Demonstrated experience in completing cybersecurity-related projects will be regarded as an asset.
• Excellent written and oral communication skills.
• Ability to deliver quality and accurate management reporting with supporting documentation.
• Strong planning, prioritizing, and time management skills to undertake and manage multiple tasks at once and work under deadlines.

Note: Offices continue to be central to collaboration and Brookfield’s identity. This position requires the employee to be on-site for a minimum of 4 days to perform most effectively. We will reassess the approach on a as needed basis.

Working here, you will enjoy:

At Brookfield, your goals are a priority. We start with your strengths and ambitions as an employee and strive to create opportunities to tap into your potential.

• We work to recognize you in meaningful, personalized ways including a competitive salary, bonus structure, a health benefits program, and defined contribution pension plan.
• Our spaces are open, dynamic, and collaborative, giving you access to different businesses and teams. For your wellbeing, our building is equipped with a modern gym, bike storage, and healthy snacks and drinks.
• We cultivate a culture where we invest in your growth and development.

Diversity & Inclusion

Brookfield Renewable embraces and promotes the principles of diversity, equity, and inclusion. We welcome and encourage applications from all qualified candidates, including women, Indigenous peoples and other persons of all races, ethnic origins, religions, abilities, sexual orientations, and gender identities and expressions. We also provide accommodation during all parts of the hiring process, upon request. If contacted to proceed to the recruitment process, please advise us if you require any accommodation.

About Us

Brookfield Renewable is one of the core businesses under Brookfield Corporation (“Brookfield”), one of the world’s leading alternative asset managers. Brookfield Renewable is one of the world’s largest owners, operators, and developers of renewable power, with $102 billion of power assets under management. Our portfolio of hydropower, wind, utility-scale solar, distributed generation, and storage assets extends across North America, South America, Europe, India, and China, totaling almost 33,000 megawatts of capacity, and over 7,000 generating facilities globally.

Come Join Us

At Brookfield Renewable, we attract and retain high-performing individuals who are interested in making an impact, driving meaningful change and being part of a fast-paced and collaborative environment. Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture. Together, we contribute to the success of one of the fastest growing and largest publicly traded, pure play renewable power platforms in the world while supporting decarbonization and greater energy sustainability to facilitate the global transition to a net-zero.

About the Role

This position is a member of the Corporate Cybersecurity & Technology Risk Team reporting to the Senior Analyst, Cybersecurity Threat Intelligence. This role mitigates risk across Brookfield Renewable portfolio companies by researching emerging threat patterns, developing preventive measures, advising on security enhancements, and administering cross-portfolio cybersecurity services. The ideal candidate should have a deep understanding of the threat landscape, cybersecurity trends, and advanced persistent threats.

Key Responsibilities

You will work collaboratively with internal teams and portfolio company cybersecurity personnel to:

• Execute and monitor monthly vulnerability scans across IT and OT environments, track and report on remediation progress.
• Collect, analyze, and report phishing simulation and security awareness metrics.
• Conduct threat intelligence research using tools such as Dark Owl, OpenCTI, and Shodan; produce actionable intelligence reports.
• Analyze, advise on, and draft lessons learned from cyber incidents that occur.
• Administer key Corporate Cybersecurity & Technology Risk systems.
• Test and evaluate new as well as existing technologies for process improvement.
• Assist in the implementation of new portfolio-wide cybersecurity tools and controls.
• Prepare threat intelligence memos to assist in the cyber due diligence of target acquisitions
• Aid other team members within Cybersecurity & Technology Risk as required.

Knowledge and Experience Required

• Bachelor’s degree or college diploma in Information Technology or related discipline.
• Industry certification is considered an asset (CISSP, CompTIA Security +, CEH, etc.).
• 2-4 years of experience in cybersecurity including but not limited to vulnerability management, security awareness and identity access management systems will be considered an asset.
• 1-2 years’ experience with operational technologies (OT) and Cybersecurity Risk Management considered an asset.
• Understanding of cyber security principles and best practices (NIST CSF, ISO27001, etc.) including incident management & response processes.
• Experience with the following or similar tools is considered an asset: Rapid 7, Dark owl, Shodan, Knowbe4.
• Demonstrated experience in completing cybersecurity-related projects will be regarded as an asset.
• Excellent written and oral communication skills.
• Ability to deliver quality and accurate management reporting with supporting documentation.
• Strong planning, prioritizing, and time management skills to undertake and manage multiple tasks at once and work under deadlines.

Note: Offices continue to be central to collaboration and Brookfield’s identity. This position requires the employee to be on-site for a minimum of 4 days to perform most effectively. We will reassess the approach on a as needed basis.

Working here, you will enjoy:

At Brookfield, your goals are a priority. We start with your strengths and ambitions as an employee and strive to create opportunities to tap into your potential.

• We work to recognize you in meaningful, personalized ways including a competitive salary, bonus structure, a health benefits program, and defined contribution pension plan.
• Our spaces are open, dynamic, and collaborative, giving you access to different businesses and teams. For your wellbeing, our building is equipped with a modern gym, bike storage, and healthy snacks and drinks.
• We cultivate a culture where we invest in your growth and development.

Diversity & Inclusion

Brookfield Renewable embraces and promotes the principles of diversity, equity, and inclusion. We welcome and encourage applications from all qualified candidates, including women, Indigenous peoples and other persons of all races, ethnic origins, religions, abilities, sexual orientations, and gender identities and expressions. We also provide accommodation during all parts of the hiring process, upon request. If contacted to proceed to the recruitment process, please advise us if you require any accommodation.

Job Description

Job Title: Vulnerability Management Analyst

Location: Remote, within Canada
Contract: 6 to 12 months +

Overview:
We are seeking a detail-oriented Vulnerability Management Analyst to support our cybersecurity efforts during a critical breach response. This contract role involves identifying, prioritizing, and tracking vulnerabilities across the organization to help reduce risk and prevent further exploitation.

Key Responsibilities:

• Conduct continuous vulnerability scanning and assessments across networks, systems, and applications.
• Validate and prioritize vulnerabilities based on risk and potential impact.
• Collaborate with IT, security, and development teams to ensure timely remediation of critical vulnerabilities.
• Track remediation progress and maintain clear reporting dashboards.
• Assist in integrating vulnerability data with incident response and threat intelligence efforts.
• Provide recommendations to improve vulnerability management processes and controls.
• Support post-incident reviews and update playbooks related to vulnerability handling.

Qualifications:

• Experience in vulnerability scanning tools such as Nessus, Qualys, Tenable, or similar.
• Knowledge of CVE identification, risk scoring (CVSS), and remediation workflows.
• Familiarity with patch management processes and coordination.
• Understanding of common vulnerabilities and exploits (OWASP Top 10, etc.).
• Strong communication and documentation skills.
• Relevant certifications like CVA, CISSP, or CompTIA Security+ are a plus.

Additional Details:

• Contract position for 6 to 12 months with possible extension.
• Occasional travel outside the country may be required.
• Remote work with flexible scheduling is available.

Fluid thanks you for your interest in this opportunity. However, only candidates with the required skills will be contacted.

Fluid is committed to the principles of equal employment opportunity and affirmative action. We welcome and encourage diversity in our workplace.

Candidates must be qualified to work in Canada.

English

• Information technology
• Computer science
• Computer and information systems security/information assurance

Work must be completed both in person and remotely.

Job Description

Who we are : Founded in 2001, Vivid Seats (NASDAQ: SEAT) is a leading online ticket marketplace committed to becoming the ultimate partner for connecting fans to the live events, artists, and teams they love. We believe in the power of experiences and are fiercely dedicated to building products that inspire human connections. Named as one of Built In's top places to work in 2025 , we believe that our People are our greatest competitive advantage. To support our People, we have built a company culture that empowers our employees to embrace challenges, encourages unity through collaboration, and seeks to constantly evolve by leveraging data and inspiring innovation.

We believe in harnessing emerging technology to power performance and unlock creativity. As part of our culture of innovation, we actively embrace the use of AI tools to enhance decision-making, improve workflows, and produce better outcomes for our customers.

The Opportunity:

The Manager, Information Security is responsible for leading the design and integration of information security into key areas of the Vivid Seats business. This role is critical in ensuring that security is baked in up front to ensure that information assets and associated information systems are adequately protected in the digital ecosystem in which Vivid Seats operates. This role partners with platform engineering teams to drive security practices and principles related to cloud-based infrastructure, software engineering teams to drive security practices and principles into a fast-paced Agile development cycle and product owners to understand business requirements and landscape.

In addition to bringing Information Security best practices, you will help develop a collaborative, cross-disciplinary and high-performing team while overseeing and improving organizational design, structure, priorities, management processes and reporting information systems. You will be responsible for coordinating project efforts, while building productive, value-added partnerships with vendors. You will also be integral in building an engaged Vivid Seats corporate security culture. "How" results are achieved will be as important as "what" is achieved.

How your role expectations will progress as a Manager, Information Security in the first 30, 90, and 180 days:

30 days in

• Acclimate to Vivid Seats' values and organizational goals to understand how your department drives initiatives forward.
• Understand the team' contributions and the needs of stakeholders that rely on your deliverables to bring business objectives to life.
• Partner with Director, Information Security, Engineering and Product leaders to align on technology vision and roadmap.
• Meet with and begin regular 1:1s with team members to understand their motivations, strengths, and areas you can support them with.

60 days in

• Align with team members to achieve personal and functional goals that correlate to department objectives.
• Develop and lead initiatives for the team that enhance process, drive innovation, and build on Vivid Seats values.
• Strategically drive the Information Security operational metrics by refining the technical roadmap and/or processes as required.
• Identify within the team how ways of working can be improved with the objective of increasing velocity and results.
• Build trust and relationships with team and key stakeholders including executives

90 days in

• Monitor and evolve team deliverables, individual goals, and overall performance to ensure alignment with broader initiatives of your department and the organization
• Collaborate with stakeholders to confirm accurate prioritization and refine processes for collaboration and best practices.
• Meaningfully contribute to department roadmap exercises that balance current needs with future strategic initiatives.
• Be a thought leader for Information Security within the company, supporting and influencing other verticals in the business.

What You'll Bring:

• 8+ years of combined experience in information security and technology with expertise in secure cloud and/or web applications in an e-commerce environment.
• 3 years of experience leading a team and people management.
• Extensive knowledge of current and emerging IT security technologies and techniques covering all levels of cloud and applications.
• Strong business acumen with the ability to drive information security initiatives with a business-first mindset, ensuring alignment with Vivid Seats' goals of connecting fans to live events and enhancing customer trust.
• Deep understanding of Cloud infrastructure (AWS, GCP, or Azure Cloud) concepts, services and related controls.
• Advanced knowledge of information security concepts and technologies such as SCA, SAST, DAST, IAM, vulnerability management, firewalls, IPS/IDS, network analyzers, proxies, SEIM, SOAR, encryption, cloud-based security control services, WAF, bot mitigation.
• Knowledge of and hands-on experience with multiple architectures and technology elements such as MySQL, n-tier, J2EE, Web Services, React, Browser, Android, iOS, React Native, Node.js, Next.js, JAMstack, AWS, K8s, Microservices / Service Mesh.
• Experience writing and/or testing code and scripts with one or more languages such as Java/JavaScript, Python/Perl/bash/python.
• Experience with two or more (or preferably full-stack technology experience) operating systems, infrastructure & cloud infrastructure, software engineering, technology product or service ownership.
• Deep knowledge of multiple cyber security governance and compliance frameworks such as FISMA, NIST CSF, ISO 27000, PCI, SOX, SOC2.
• Experience delivering training to technology SMEs in other areas.
• Ability to lead large internal security technology projects and security remediation projects with significant dependencies on external IT and product teams.

Location : Toronto, ON

101-30 Duncan St.
Toronto, Ontario M5V 2C3

We believe in a hybrid 3 days/week in-office working model, which provides employees the flexibility to take advantage of in-person and remote collaboration.

Our Commitment:
We are an equal opportunity employer that values the critical importance of a diverse workforce and sense of belonging. Many of our roles have flexible requirements and we encourage you to apply regardless of whether you meet every qualification.