Intact

www.intactfc.com

8 Jobs

19,798 Employees

About the Company

We created a purpose-driven company based on Values and a belief that insurance is about people, not things. This is the foundation on which we have built Intact and it lives every day through our purpose, Values, what we aim to achieve and how. ___ Nous sommes la pour aider les gens, les entreprises et la societe a aller de l'avant dans les bons moments et a etre resilients dans le moments difficiles. Notre entreprise est basee sur des valeurs et la conviction que l'assurance doit d'abord s'interesser aux personnes, et non aux choses. C'est dans cette optique que nous avons bati Intact et ca se reflete chaque jour dans notre raison d'etre, nos valeurs, nos facteurs de succes en leadership, notre promesse aux employes, nos objectifs et notre strategie.

Listed Jobs

Company Name: Intact
Job Title: Spécialiste en Sécurité - Sécurité offensive (Équipe rouge mondiale)
Job Description: **Job Title** Offensive Security Specialist – Global Red Team **Role Summary** Conduct offensive security assessments across all Intact affiliates worldwide. Apply advanced attack techniques to test, validate, and strengthen security controls, network defenses, and incident‑response capabilities. Deliver actionable findings and metrics to improve organizational security posture. **Expectations** - Deliver rigorous, peer‑reviewed penetration tests on schedule. - Maintain professional engagement discipline and adhere to engagement rules. - Communicate clearly with technical and non‑technical stakeholders, including CISO, risk, and governance teams. - Continuously update tools and methodologies to match evolving threat tactics. **Key Responsibilities** - Perform network reconnaissance using industry‑standard tools, threat‑intel feeds, OSINT, and other publicly available sources. - Design and execute targeted red‑team exercises that simulate real threat‑actor behavior across corporate networks, cloud, and application layers. - Bypass modern EDR/ATP solutions (CrowdStrike, MDE, SentinelOne) and demonstrate privilege escalation, lateral movement, and data exfiltration techniques. - Analyze and report on findings, recommending clear remediation, hardening, and improvement actions. - Collaborate with regional cyber‑governance and risk teams to ensure timely remediation tracking. - Generate KPI reports and metrics for the CISO and senior leadership on control effectiveness. - Evaluate emerging threats to the financial‑services sector and benchmark regional results against peers. - Consume threat‑intel data, map attack surfaces, and establish actionable rules for testing engagements. - Keep all offensive security tools, scripts, and processes current and compliant with internal rules of engagement. - Provide timely, concise communication to stakeholders throughout all testing phases. **Required Skills** - Deep knowledge of TCP/IP, DNS, UDP, BGP, and routing tables. - Proficiency in exploitation and privilege‑escalation techniques on Windows, Linux, and network devices. - Advanced use of penetration‑testing frameworks (Kali Linux, Metasploit, Cobalt Strike, etc.). - Ability to evade and defeat EDR/ATP protections (CrowdStrike, MDE, SentinelOne). - Expertise in threat‑intel parsing, vulnerability assessment, and attack‑surface analysis. - Solid understanding of SOC, SIEM, IAM, DLP, and incident‑response operations. - Strong technical documentation, reporting, and presentation skills. - Excellent collaboration across time zones and functional teams. **Required Education & Certifications** - Bachelor’s degree in Computer Science, Information Technology, Information Security or related field (or equivalent experience). - Minimum 5 years of professional IT experience, 3 years in information‑security roles. - Hands‑on experience in offensive security operations. - Certifications preferred: OSCP, CEH, GCIA, GPEN, or equivalent. - Knowledge of applicable regulatory standards (PCI‑DSS, ISO 27001, NIST, etc.) is a plus.

Company Name: Intact
Job Title: Security Advisor Specialist, Offensive Security (Global Red Team)
Job Description: **Job Title** Security Advisor Specialist, Offensive Security (Global Red Team) **Role Summary** Execute offensive security testing to evaluate and strengthen security controls, threat response, and incident handling across all Intact Financial regions and affiliates. Conduct reconnaissance, red‑team attacks, and purple‑team debriefs to identify vulnerabilities, benchmark response capabilities, and recommend improvements to enhance enterprise security posture. **Expectations** - Deliver thorough red‑team engagements and actionable recommendations. - Maintain alignment with global rules of engagement and regulatory standards. - Communicate findings in both technical detail and business‑friendly language. - Continuously update tools, techniques, and documentation. **Key Responsibilities** - Perform external and internal reconnaissance using OSINT, threat intel, and standard tools. - Execute offensive attacks to test controls, evading modern EDR/DLP solutions and achieving privilege escalation. - Simulate real‑world adversary behavior to benchmark response across the enterprise. - Analyze assessment results, produce detailed reports, and recommend remediation. - Collaborate with cyber governance, risk, and regional teams to track findings. - Generate metrics and reports for CISO and affiliate leadership. - Stay abreast of emerging threats, especially in the financial services sector. - Maintain and upgrade offensive security tools and processes. - Ensure compliance with ROE and communicate effectively with stakeholders. **Required Skills** - Deep understanding of TCP/IP, DNS, UDP, BGP, routing, and network exploitation. - Advanced skills in offensive security tools, manual pentest techniques, and script automation (Python). - Proficiency with OWASP Top 10, MITRE ATT&CK, CVSS scoring, and vulnerability exploitation. - Knowledge of SIEM, SOC, IAM, DLP, EDR, threat intelligence, and incident response. - Ability to translate technical findings into business‑impact narratives. - Strong analytical, problem‑solving, and communication skills. - Experience in capturing flag competitions or equivalent practical adversary simulation. **Required Education & Certifications** - Bachelor’s degree in Computer Technology, Information Security, or related field (preferred). - Minimum 5 years of professional IT experience; 3+ years in information security. - Recognized security certifications (CEH, CISM, or equivalent) – asset. - Knowledge of NIST, COBIT 5, ISO 27001 standards – asset.

St-hyacinthe, Canada

Hybrid

30-10-2025

Company Name: Intact
Job Title: DevOps Application Security
Job Description: **Job title:** DevOps Application Security **Role Summary:** Design, build, and maintain automated security solutions that integrate seamlessly into developers’ CI/CD pipelines, enabling secure application development and rapid, self‑service responses to security incidents. **Expectations:** * Advance application security through automation and DevSecOps practices. * Empower development teams with accessible security tooling and expertise. * Deliver high‑quality, scalable security automation within a multi‑cloud environment. **Key Responsibilities:** * Create and maintain automation tools and scripts to embed application security best practices into development workflows. * Design CI/CD pipeline components that perform automated security testing (SAST, SCA, DAST, etc.). * Build self‑service security portals/use‑cases for developers (tool access, dashboards, reporting). * Collaborate with software engineers to integrate security controls into code and architecture. * Monitor automated systems, detect, and respond to security incidents. * Provide training and documentation to developers on secure coding and tool usage. **Required Skills:** * 5–7 years of professional experience in application security or related DevSecOps role. * Strong programming/scripting proficiency (Java, Python, Bash, etc.). * Hands‑on experience with CI/CD platforms (Jenkins, GitHub Actions, GitLab CI/CD, Azure DevOps). * Knowledge of application security frameworks and standards (OWASP Top 10, SANS, NIST). * Familiarity with web services technologies (REST, SOAP, GraphQL). * Experience with relational and NoSQL databases. * Cloud platform expertise (AWS, Azure, GCP) and related security services. * Excellent communication and teamwork skills, able to explain technical concepts to non‑technical stakeholders. **Required Education & Certifications:** * Bachelor’s degree in Software Engineering, Computer Science, Cybersecurity, or related field. * Professional certifications are a plus: CISSP, CEH, CISM, OSCP, or equivalent. ---

Company Name: Intact
Job Title: Security Analyst I – 4 Month Internship/Co-op (Summer 2026)
Job Description: **Security Analyst I – 4 Month Internship/Co-op (Summer 2026)** **Role Summary** Support cybersecurity initiatives through threat detection, data integration, and compliance activities to advance organizational security. **Expectations** Full-time commitment (35 hours/week) during Summer 2026 (May–August). Active student status during internship and return to studies in Fall 2026. **Key Responsibilities** - Cyber Defense: Design threat detection workflows, analyze logs, write KQL, and automate monitoring processes. - Cyber Governance, Risk, and Compliance: Triage GRC requests, update risk registers, produce cybersecurity KPIs, and support compliance reviews. - Collaborate with engineering teams to improve detection platforms, document processes, and streamline operations. **Required Skills** - Proficiency in Python, Bash, PowerShell, Linux, GitHub, and log analysis. - Experience with Excel, Jira, Confluence, and ticketing platforms (e.g., ServiceNow). - Basic understanding of cybersecurity frameworks (NIST, ISO 27001). **Desirable Skills** - Familiarity with cloud security tools (Azure, Sentinel) and infrastructure-as-code tools (Terraform). - Knowledge of data pipeline technologies (Logstash, Kafka, Rsyslog) or CI/CD pipelines. **Required Education & Certifications** - Currently pursuing a Bachelor’s or Master’s degree in Cybersecurity, Information Technology, Computer Science, or related fields. - Prior cybersecurity internship experience considered an asset.

Toronto, Canada

On site

06-01-2026

View 8 more jobs at Intact