Specialist, Threat Response

Position Status: Vacant

Teck is a leading Canadian resource company focused on responsibly providing the metals essential for global development and the energy transition while caring for the people, communities and land that we love.

Reporting to the Manager, Cyber Threat Defence, the Specialist, Threat Response is responsible for managing and coordinating all aspects of incident response activities. This individual will work alongside a team of security experts, develop advanced response strategies, define detection use-cases, and collaborate with various partners to improve our security posture. This role's focus will be on automating incident response processes and crafting reusable scripts and tools to streamline our response capabilities.

• Be a courageous safety leader, adhere to and sponsor safety and environmental rules and procedures.

• Champion the 3 lines of defense model for risk management and act as a 2nd line of defense facilitator regularly interacting with the 1st line of defense.

• Develop and implement automated incident response strategies and playbooks using SOAR platforms and custom scripts.

• Coordinate and lead response efforts during security incidents, ensuring effective containment, eradication, and recovery.

• Integrate incident response tools with other security platforms to enable seamless, automated threat identification and response.

• Conduct regular testing and validation of automated incident response processes.

• Collaborate with the threat intelligence and detection teams to ensure a comprehensive and coordinated security approach.

• Ensure timely and accurate reporting on threat response activities to senior management.

• 5+ years of experience in cybersecurity with a focus on incident response and threat management.

• Certified Information Systems Security Professional (CISSP) and Certified Information Security Manager (CISM) or equivalent certifications.

• Proven track record in security operations automation.

• Experience in crafting and implementing automated incident response strategies.

• Additional relevant certifications (e.g., CEH, GIAC, GCIH) are a plus.

• Proficiency in incident response and security automation platforms (e.g., SOAR, XDR, Cortex XSOAR, Splunk Phantom).

• Strong coding and scripting skills in Python, PowerShell, or similar languages.

• Experience with automating incident response tasks and processes.

• Understanding of APIs and integration techniques for security tools.

• Excellent analytical and problem-solving skills.

• Strong leadership and team management capabilities.

• Embodied Teck values in daily activities by being responsible and courageous, respectful and inclusive, alongside humble and driven.

• You are aware of, have a desire to, with knowledge in, and the ability to increase maturity by building on context, manage and assess risk and trade-offs, and to standardize process through writing and review.

• An emphasis and desire to keep Teck Safe by anticipating needs.

• Demonstrated personal accountability, radical transparency and a growth mindset.

At Teck, we offer more than just a job – we provide a pathway to personal and professional enrichment. With captivating projects set against stunning backdrops, a culture of inclusivity and collaboration, and boundless opportunities to learn and grow, joining us means embracing a fulfilling and dynamic career adventure.

Teck employees receive access to our total rewards program and comprehensive benefits package that promote physical, mental, financial, and emotional well-being.

Salary Range: $103,000 - $127,000

The actual base salary offered is determined based on the successful candidate’s relevant experience, skills, and competencies and considers internal equity.

We wish to thank all applicants for their interest and effort in applying for the position; however, only candidates selected for interviews will be contacted.