Share these opportunities

Threat Intelligence Analyst, CIC, Vaughan

Apply now

Apply for Job

Date Posted: Jul 13, 2019

Reference Code: 45411-en_US

Job Type:  Permanent 
Primary Location: Vaughan, Ontario, Canada 
All Available Locations: Vaughan 

External Posting Description

The cyber security landscape has changed dramatically over the past few years with a record number of incidents and threats being reported. 

Attackers are rapidly becoming more sophisticated and threats are originating from all directions; external (syndicated crime, foreign intelligence agencies, and activists); internal (disgruntled employees, unintended disclosures); and supply chain (counterfeit hardware, unsecure software, poor coding practices). 

Our Cyber Intelligence Centre (CIC); a 24/7 managed security service monitoring and responding to cyber threats, is helping organizations protect their networks, systems, applications, information and reputation in real-time. 
At the core of our Cyber Intelligence Centre, our Cyber Threat Intelligence program pro-actively helps detect malicious behavior using a unique blend of device threat intelligence feeds from multiple commercial and open source feeds, performs research on the latest vulnerabilities, threats, and campaigns against our clients. This role will have the threat intelligence analyst working on-site with a team of Deloitte investigators to help our clients mature their cyber threat intelligence program and defend their infrastructure against attacks. 

Your role as junior staff member at Deloitte:

  • Understand our purpose and values; explore opportunities for impact
  • Demonstrate a strong commitment to personal learning and development; act as a brand ambassador to help attract top-talent
  • Understand expectations and demonstrate personal accountability for keeping performance on-track
  • Actively focus on developing effective communication and relationship-building skills
  • Understand how your daily work contributes to the priorities of the team, the business, and the firm


  • Real-time monitoring of third party security feeds, forums, and mailing lists to gather information on threats related to the client, sector or region; 
  • Assessing each event based on factual information and wider contextual information from multiple sources; 
  • Producing intelligence outputs in the form of executive reporting to provide an accurate depiction of the current threat landscape and associated risk through the use of customer, community, and open source reporting; 
  • Produce actionable intelligence information for delivery to colleagues and customers in the form of technical reports, briefings, and data feeds; 
  • Participate in regular threat focus meetings with CIC; 
  • Participate in threat briefings with clients, either in person or remotely;
  • Develop pro-active intelligence products based on own research;

External Posting Qualifications

Required Qualifications: 

  • Bachelor’s Degree in appropriate field of study or equivalent work experience. Previous Military or Law Enforcement experience a bonus.
  • Any combination of threat intelligence, IT/networking, or information security experience is required.
  • Minimum of 3+ years’ experience as an InfoSec or intelligence analyst.
  • Experience with intelligence analysis processes, including Open Source Intelligence (OSINT) and closed source intelligence gathering, source verification, data fusion, link analysis, and threat actors. 
  • Demonstrable investigative and analytical problem solving skills. 
  • Critical thinking and contextual analysis abilities. 
  • Inherent passion for information security and service excellence. 
  • Deep understanding of adversary cyber tactics and mitigations against them. 
  • Excellent communications skills, including briefings, writing and presentation skills. 
  • Knowledge of intelligence tradecraft and writing techniques. 
  • Basic knowledge of programming, networking, and other core cyber technical skills. 
  • 24x7 on-call availability for high severity incidents.

Desirable Qualifications: 

  • Ability to research and characterize security threats to include identification and classification of threat indicators. 
  • Prior experience working in a Security Operations Centre (SOC), Computer Emergency Response Team (CERT/CIRT) or Intelligence Team.
  • Knowledge of analytics and machine learning models.
  • Industry certifications (GCTI, GREM, GCFA, GIAC, CEH) are a strong asset

Why Deloitte?

Launch your career with The One Firm where you can make a greater impact than you ever thought possible. With endless opportunities at every turn, and a culture built to support and drive our people to be the very best they can be, Deloitte is The One Firm for you to learn, grow, create, and lead.

At Deloitte, we understand that everyone, and their career goals, are different. As a firm, we help create the conditions and opportunities that will enable our people to thrive – both professionally and personally. We do this by making three commitments to our people:

  • You will lead at every level: We grow the world’s best leaders so you can achieve the impact you seek, faster.
  • You can work your way: We give you the means to work how you want, and we have innovative spaces and the mindset to help you be wildly successful.
  • You will feel included and inspired: We create a deep sense of belonging where you can bring your whole self to work.

Apply now and let us show you how to push your career to the next level at Deloitte. The One Firm. For You.

Deloitte is an inclusive employer dedicated to building a diverse workforce.  We encourage applications from all qualified candidates and will accommodate applicants’ needs under the respective provincial human rights codes throughout all stages of the recruitment and selection process. Please advise the Recruiter to ensure your accessibility needs are accommodated throughout this process.  Information received relating to accommodation will be addressed confidentially.

We thank all applicants in advance for their interest; however, only those candidates selected for an interview will be contacted



Apply now

Apply for Job

Find similar jobs: