Threat Intelligence LeadCanonical • Wrocław, Województwo dolnośląskie, Polska

Threat Intelligence Lead

Canonical • Wrocław, Województwo dolnośląskie, Polska

30+ days ago

Job description

Join to apply for the Threat Intelligence Lead role at Canonical

3 months ago Be among the first 25 applicants

Join to apply for the Threat Intelligence Lead role at Canonical

The Threat Intelligence Lead will own Canonical's threat intelligence strategy and execution, including understanding of which cyber threat actors are targeting Canonical, and the use of intelligence on Tactics, Techniques and Procedures (TTP) to better our products and internal cybersecurity controls. You will collaborate with internal stakeholders as well as with the wider cybersecurity community, making sure that Canonical is recognised as a thought leader on open source threat intelligence.

This role will report to the CISO.

You will lead intelligence gathering and development activities on threat actors targeting software supply chains. You'll study attack trends across the wider open source software landscape, report findings to internal security teams, and advise the wider engineering community on the best course of action to detect and mitigate possible threats.

As the publisher of Ubuntu, Canonical products are directly or indirectly present in almost every organisation and household in the world, making them a prime target for threat actors. This team's mission is to help Canonical, and by extension countless community members and companies around the world, secure their software infrastructure.

What you'll do in this role

Build and own Canonical's threat intelligence strategy
Build and maintain OSINT research environments
Develop OSINT tradecraft, principals, and techniques
Identify and track targeted intrusion cyber threats, trends, and new developments by cyber threat actors through analysis of proprietary and open source datasets
Collaborate across teams to inform on activity of interest
Coordinate adversary / campaign tracking
Contribute to the wider threat intelligence community, establishing Canonical as a key contributor and thought leader in the space
Work with product and engineering teams to explain cybersecurity threats and advise on mitigation strategies
Work with the OPSEC and IS team to help implement / update security controls prioritising cyber defence
Identify intelligence gaps and propose new tools and research projects to fill them
Conduct briefings for executives, internal stakeholders and external customers

The successful Threat Intelligence Lead will be

An experienced threat intelligence leader (or similar)

Knowledgeable about the current open source threat landscape and computer networking / infrastructure concepts

Highly competent with OSINT tools (e.g., Buscador, Trace Labs OSINT VM, OSINT Framework, Maltego, Shodan, social media scraping tools, etc.)

Able to identify, organise, catalogue, and track adversary tradecraft trends — often with incomplete data

Experienced using threat intelligence data to influence enterprise architecture or product development decisions

An excellent communicator with the ability to clearly articulate and tailor technical content to a variety of audiences

Able to travel twice a year, for company events up to two weeks long

Desired Characteristics

A professional portfolio of OSINT related scripts, tools, or frameworks

Demonstrated involvement in the larger OSINT community (please share relevant links)

Degree qualified, with a bachelor's degree in computer science, information security, or a related field

Certifications in related areas (e.g. GOSI, SANS SEC487 & SEC587, IntelTechniques OSIP, etc)

Experience in a tech company or government / military signal intelligence departments

What we offer you

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

Distributed work environment with twice-yearly team sprints in person

Personal learning and development budget of USD 2,000 per year

Annual compensation review

Recognition rewards

Annual holiday leave

Maternity and paternity leave

Employee Assistance Programme

Opportunity to travel to new locations to meet colleagues

Priority Pass, and travel upgrades for long haul company events

About Canonical

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer

We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

Seniority level

Mid-Senior level

Employment type

Full-time

Job function

Information Technology

Industries

Software Development

Referrals increase your chances of interviewing at Canonical by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Create a job alert for this search

Threat Intelligence • Wrocław, Województwo dolnośląskie, Polska

Related jobs

Ethics & Compliance Investigation Lead, EMEA

Collins Aerospace • Wrocław, Województwo dolnośląskie, Polska

Bierutowska 65-67, Wrocław 51-317, Poland.Collins Aerospace, part of RTX, is a leading provider of advanced and intelligent solutions for the global aerospace and defense sectors.With a comprehensi...Show more

Last updated: 30+ days ago • Promoted

IT Security Specialist

SCALO • Wrocław, Województwo dolnośląskie, Polska

W Scalo dostarczamy projekty software’owe i wspieramy naszych partnerów w rozwoju ich biznesu.Tworzymy oprogramowanie, które pozwala działać szybciej, skuteczniej i z większym wpływem.Działamy w ob...Show more

Last updated: 30+ days ago • Promoted

SAP Defense & Security lead Consultant

IBM • Wrocław, Województwo dolnośląskie, Polska

IBM Consulting specialises in providing innovative and secure technology solutions.We are dedicated to helping government agencies and defense organizations leverage the power of enterprise softwar...Show more

Last updated: 1 day ago • Promoted

IT Engineer

Mitsui High-tec (Europe) sp. z o.o. • Skarbimierz-Osiedle, opolskie, Polska

Projektowanie i wdrażanie systemów traceability obejmujących wszystkie etapy procesu produkcyjnego – od zakupu surowców po wysyłkę wyrobów. Tworzenie dokumentacji wymagań i współpraca z dostawcami s...Show more

Last updated: 12 days ago • Promoted

Information Security Officer

CodeTwo • Wrocław, dolnośląskie, Polska

Realizowanie zadań związanych z zapewnieniem bezpieczeństwa informacji (w tym danych osobowych) i funkcjonowaniem Systemu Zarządzania Bezpieczeństwem Informacji w CodeTwo.Wdrażanie i utrzymywanie s...Show more

Last updated: 30+ days ago • Promoted

Analyst / Consultant Security – 3rd party risk

Sii Sp. z o.o. • Wrocław, dolnośląskie, Polska

Dla naszego klienta z branży bankowej poszukujemy doświadczonego Konsultanta.Dołącz do naszego zespołu i wesprzyj nas w obszarze bezpieczeństwa i zarządzania ryzykiem dostawców zewnętrznych.Szukamy...Show more

Last updated: 20 days ago • Promoted

Security Consultant

Ernst & Young Advisory Services Sdn Bhd • Wrocław, Województwo dolnośląskie, Polska

Let us introduce you the job offer by EY GDS Poland – a member of the global integrated service delivery center network by EY. As a Security Consultant within EY’s internal Security Consulting and A...Show more

Last updated: 30+ days ago • Promoted

Information Security Engineer – Cyber Threat Detection

Ryanair - Europe's Favourite Airline • Wrocław, Województwo dolnośląskie, Polska

Ryanair Labs are currently recruiting for a Information Security Engineer – Cyber Threat Detection & Response to join Europe's Largest Airline Group. This is a very exciting time to join Ryanair as ...Show more

Last updated: 12 days ago • Promoted

IT Security Analyst

Vaimo Group • Wrocław, Województwo dolnośląskie, Polska

Vaimo is a full-service digital experience agency that helps brands and businesses grow by uniting.With 16+ years of experience and offices across the Nordics, EMEA, and North America, we combine s...Show more

Last updated: 1 day ago • Promoted

Security Engineer

Appfire • Wrocław, Wrocław, Polska

Appfire is seeking a highly skilled Security Engineer to join our Appfire Information Security team.This Security Engineer role will report to our Deputy CISO and work within our Security Engineeri...Show more

Last updated: 30+ days ago • Promoted

Financial Crime Risk Supervising Associate

EY • Wrocław, Województwo dolnośląskie, Polska

Financial Crime Risk Supervising Associate.Location : Wrocław - 2 days office / 3 days remote.At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected po...Show more

Last updated: 9 days ago • Promoted

Expert Cyber Security

Ciklum • Wrocław, Województwo dolnośląskie, Polska

Ciklum is looking for an Expert Cyber Security to join our team full‑time in Poland.We are a custom product engineering company that supports both multinational organizations and scaling startups t...Show more

Last updated: 30+ days ago • Promoted

Financial Crime Risk Associate

EY • Wrocław, Województwo dolnośląskie, Polska

Location : Wrocław - 2 days in office / 3 days remote.Let us introduce you the job offer by EY GDS Poland – a member of the global integrated service delivery center network by EY.Risk Management Se...Show more

Last updated: 12 days ago • Promoted

Security Engineer - Retailer Security @ Antal

Antal • Wrocław, Poland

Security Engineer - Retailer Security.Location : Hybrid / Wrocław (2 days per week in the office).We are currently seeking an experienced. Security Engineer - Retailer Security.Retailer Security Archit...Show more

Last updated: 21 days ago • Promoted

OT Security Architect

EY • Wrocław, Województwo dolnośląskie, Polska

Security Junior Architect will support the team in security solution selection design, proof of concept and implementation support in projects for our clients and their manufacturing environments.A...Show more

Last updated: 30+ days ago • Promoted

Associate, Anti Money Laundering / Prevention / KYC Representative I

BNY Mellon • Wrocław, Województwo dolnośląskie, Polska

At BNY, our culture allows us to run our company better and enables employees' growth and success.As a leading global financial services company at the heart of the global financial system, we infl...Show more

Last updated: 3 days ago • Promoted

Director, Principle Security Architect

Kyndryl • Wrocław, Województwo dolnośląskie, Polska

At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ...Show more

Last updated: 30+ days ago • Promoted

Google SecOps Security Architect

Sii Sp. z o.o. • dolnośląskie, dolnośląskie, Polska

We are looking for an experienced Security Architect with strong expertise in Google SecOps (formerly Google Chronicle) to lead and support our SIEM Transformation initiative.The successful candida...Show more

Last updated: 10 days ago • Promoted