Senior Threat Content Specialist, Cyber Intelligence Center

Apply now »
Apply now

Apply for Job

Date: Jul 2, 2022

Location: Vaughan, Ontario, Canada

Company: Deloitte

Job Type: Permanent 
Reference code: 105241   
Primary Location: Vaughan, Ontario, Canada 
All Available Locations: Vaughan; Calgary; Edmonton; Montreal; Ottawa; Toronto; Vancouver 


Our Purpose

At Deloitte, we are driven to inspire and help our people, organization, communities, and country to thrive. Our Purpose is to build a better future by accelerating and expanding access to knowledge. Purpose defines who we are and gives us reason to exist as an organization.

By living our Purpose, we will make an impact that matters.

Have many careers in one Firm.
Build your leadership skills at Deloitte University.
Enjoy flexible, proactive, and practical benefits that foster a culture of well-being and connectedness. 

What will your typical day look like?

  • Identify issues and gaps on existent content to reduce false positives and non-incidents within the SIEM;
  • Provide input, direction and strategic decisions to help drive content improvement decisions within the SIEM;
  • Assess the content as a result of changes in the client environment;
  • Provide reports on a monthly basis or ad hoc communicating the changes in the content in the SIEM platform;
  • Customize security content including filters/rules/report creation and vulnerability mapping;
  • Participate on Workshops with clients to discuss improvements over SIEM.

About the team

This position will focus on supporting and maintaining the new and existing clients in the SOC.
Occasional travel to local clients will be required and there are also opportunities for travel nationally and globally if the candidate is interested. This position requires ability to obtain Government of Canada "Secret"
security clearance.

Enough about us, let’s talk about you

You are self-motivated, energetic, driven for success and results oriented. Your knowledge of security devices, system administration, security operations processes, incident management, professional services and the firm will help you to support delivery and execution of managed security services offered by Deloitte. You will also be a key player and part of a team providing world-class security operations capabilities for our clients and a
capability aligned with our strategic direction and that helps the firm better deliver on new and existing engagements.

  • Diploma / Degree in Information Security, or equivalent working experience;
  • Minimum of two (4) years of experience working within information security;
  • Minimum of one (2) year of SIEM Content Development experience;
  • Experience with 2 or more SIEM technologies (e.g. ArcSight, LogRhythm, QRadar, or Splunk);
  • Strong working knowledge of Security devices (IDS/IPS, Firewalls, Load Balancers, Routing & Switching etc.);
  • Knowledge on Risk assessment, security assessment, Continuous monitoring, Kill chain and regulatory (e.g.: PCI, HIPAA, ISO27000 series). 

Our shared values

While our Purpose guides us and helps explain why we exist, our shared values describe the behaviour we expect from each other at the firm.

They provide common ground to unite us across cultures and geographies. They help us to earn the trust and respect of our stakeholders. We all commit to living by these shared values, to stay true to the principles they represent, and to honour the legacy from which they came. They are what sets us apart and makes us Deloitte.

Every day, we live our Purpose through the following five shared values:

  • Lead the way: Deloitte is not only leading the profession, but reinventing it for the future. We’re also committed to creating opportunity and leading the way to a more sustainable world.
  • Serve with integrity: Deloitte has earned the trust of employees, clients, regulators, and the public for 175 years. Upholding that trust is our single most important responsibility.
  • Take care of each other: We look out for one another and prioritize respect, fairness, development, and well-being.
  • Foster inclusion: We are at our best when we foster an inclusive culture and embrace diversity in all forms. We know this attracts top talent, enables innovation, and helps us deliver well-rounded client solutions.
  • Collaborate for measurable impact: We approach our work with a collaborative mind¬set, teaming across businesses, geographies, and skill sets to deliver tangible, measurable, attributable impact.

The next step is yours

Sound like The One Firm. For You? 

At Deloitte, we are all about doing business inclusively – that starts with having diverse colleagues of all abilities. Deloitte encourages applications from all qualified candidates who represent the full diversity of communities across Canada. This includes, but is not limited to, people with disabilities, candidates from Indigenous communities, and candidates from the Black community in support of living our values, creating a culture of Diversity Equity and Inclusion and our commitment to our AccessAbility Action PlanReconciliation Action Plan and the BlackNorth Initiative.

We encourage you to connect with us at if you require an accommodation for the recruitment process (including alternate formats of materials, accessible meeting rooms or other accommodations). We’d love to hear from you!

By applying to this job you will be assessed against the Deloitte Global Talent Standards. We’ve designed these standards to provide our clients with a consistent and exceptional Deloitte experience globally.
Deloitte Canada has 30 offices with representation across most of the country. We acknowledge our offices reside on traditional, treaty and unceded territories as part of Turtle Island and is still home to many First Nations, Métis, and Inuit peoples. We are all Treaty people.

Job Segment: Information Security, Developer, Law, Equity, Technology, Legal, Finance