Security Analyst (vulnerability management)

Our employees are at the heart of everything we do. Together, we help people, businesses, and society prosper in good times and be resilient in bad times.

Our employee promise represents Intact’s commitment to you in exchange for living our Values, striving to do your best work, being open to change and investing in your career. In return, we promise to provide support, opportunities and performance‑led financial rewards at a workplace where you can shape the future, win as a team and grow with us.

Join our vulnerability management team as a Security Analyst. You will act as a subject‑matter expert for assessing and tracking infrastructure vulnerabilities, technology obsolescence, and security configurations (baselines). Your primary mission is to analyze risks and support technical teams in remediation.

• Act as an expert in infrastructure vulnerabilities, software obsolescence management, and security configurations (baselines).
• Analyze, prioritize, and triage threats (software vulnerabilities, technology obsolescence, configuration gaps) to guide IT teams in remediation.
• Collaborate with system administrators and application teams to interpret scan results and validate remediation plans.
• Coordinate remediation with systems/network/cloud and application teams; remove technical or operational roadblocks; manage exceptions and risk compensations.
• Ensure compliance with service level agreements (SLAs) and security timelines.
• Advise technical teams on remediation best practices and explain the potential impacts of identified risks.
• Continuously improve the process (light automation, alignment to CIS Benchmarks, NIST CSF, ISO 27001, governance).

• Studies in computer science, IT management, or equivalent experience.
• 3 to 5 years of relevant experience in information security or in coordinating IT projects.
• Mastery of vulnerability management concepts (CVE, CVSS), technology obsolescence, and configuration standards (CIS Benchmarks).
• Proven experience in project coordination, priority management, and tracking complex initiatives involving multiple teams.
• Good understanding of operating systems and networks.
• No Canadian work experience required however must be eligible to work in Canada.
• Bilingualism. Need to interact on a regular basis with colleagues across the country.

• Academic training or professional experience in programming (Python).
• Knowledge of database query languages (SQL, NoSQL).
• Proficiency with vulnerability management platforms (e.g., Tenable, Qualys, Rapid7, CrowdStrike, Prisma Cloud, etc.).
• Possession of recognized security or project management certifications.

This role is a new member of our growing team.

We are an equal opportunity employer. At Intact, our Value of respect is founded on seeing diversity as a strength. We strive to create an accessible workplace where employees feel valued, included and encouraged to share their unique perspectives.

We encourage applications from individuals who are members of equity‑deserving groups, including but not limited to women, Indigenous peoples, persons with disabilities, Black people, and members of the 2SLGBTQI+ community.

As part of Intact’s commitment to reconciliation, we acknowledge that we work, meet and travel across the land currently called Canada, originally inhabited by First Nations, Metis and Inuit people. This history extends through many centuries and continues to evolve today.

We have policies to ensure equal access and participation for people with disabilities, including providing workplace adjustments (accommodations). A copy of applicable policies is available on request.

If we can provide a specific adjustment to make the recruitment process more accessible for you, please let us know when we reach out about a job opportunity. We’ll work with you to meet your needs.

Learn more about our recruitment process and your candidate journey here.

Please note that Intact does not provide sponsorship or other support for immigration‑related matters including but not limited to employer‑specific closed work permits. Candidates must be eligible to work in Canada from the anticipated start date and throughout their employment and are solely responsible for maintaining their work eligibility.

If you are an employee of Intact or belairdirect, please apply for this role on Internal Career Site.