Threat Intelligence Lead
3 weeks ago
The Threat Intelligence Lead will own Canonical's threat intelligence strategy and execution, including understanding of which cyber threat actors are targeting Canonical, and the use of intelligence on Tactics, Techniques and Procedures (TTP) to better our products and internal cybersecurity controls. You will collaborate with internal stakeholders as well as with the wider cybersecurity community, making sure that Canonical is recognised as a thought leader on open source threat intelligence.
This role will report to the CISO.
You will lead intelligence gathering and development activities on threat actors targeting software supply chains. You'll study attack trends across the wider open source software landscape, report findings to internal security teams, and advise the wider engineering community on the best course of action to detect and mitigate possible threats.
As the publisher of Ubuntu, Canonical products are directly or indirectly present in almost every organisation and household in the world, making them a prime target for threat actors. This team's mission is to help Canonical, and by extension countless community members and companies around the world, secure their software infrastructure.
What you'll do in this role:
- Build and own Canonical's threat intelligence strategy
- Build and maintain OSINT research environments
- Develop OSINT tradecraft, principals, and techniques
- Identify and track targeted intrusion cyber threats, trends, and new developments by cyber threat actors through analysis of proprietary and open source datasets
- Collaborate across teams to inform on activity of interest
- Coordinate adversary/campaign tracking
- Contribute to the wider threat intelligence community, establishing Canonical as a key contributor and thought leader in the space
- Work with product and engineering teams to explain cybersecurity threats and advise on mitigation strategies
- Work with the OPSEC and IS team to help implement/update security controls prioritising cyber defence
- Identify intelligence gaps and propose new tools and research projects to fill them
- Conduct briefings for executives, internal stakeholders and external customers
The successful Threat Intelligence Lead will be:
- An experienced threat intelligence leader (or similar)
- Knowledgeable about the current open source threat landscape and computer networking/infrastructure concepts
- Highly competent with OSINT tools (e.g., Buscador, Trace Labs OSINT VM, OSINT Framework, Maltego, Shodan, social media scraping tools, etc.)
- Able to identify, organise, catalogue, and track adversary tradecraft trends — often with incomplete data
- Experienced using threat intelligence data to influence enterprise architecture or product development decisions
- An excellent communicator with the ability to clearly articulate and tailor technical content to a variety of audiences
- Able to travel twice a year, for company events up to two weeks long
Desired Characteristics:
- A professional portfolio of OSINT related scripts, tools, or frameworks
- Demonstrated involvement in the larger OSINT community (please share relevant links)
- Degree qualified, with a bachelor's degree in computer science, information security, or a related field
- Certifications in related areas (e.g. GOSI, SANS SEC487 & SEC587, IntelTechniques OSIP, etc)
- Experience in a tech company or government/military signal intelligence departments
What we offer you:
We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.
- Distributed work environment with twice-yearly team sprints in person
- Personal learning and development budget of USD 2,000 per year
- Annual compensation review
- Recognition rewards
- Annual holiday leave
- Maternity and paternity leave
- Employee Assistance Programme
- Opportunity to travel to new locations to meet colleagues
- Priority Pass, and travel upgrades for long haul company events
Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.
Canonical is an equal opportunity employer.
We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.
-
Threat Intelligence Lead
1 week ago
Kuwait City, Al Asimah Canonical Full timeJoin to apply for the Threat Intelligence Lead role at Canonical3 months ago Be among the first 25 applicantsJoin to apply for the Threat Intelligence Lead role at CanonicalGet AI-powered advice on this job and more exclusive features.The Threat Intelligence Lead will own Canonical's threat intelligence strategy and execution, including understanding of...
-
Senior Intelligence Analyst
3 weeks ago
Kuwait City, Al Asimah Google Full timeMinimum qualifications:Bachelor's degree or equivalent practical experience.7 years of experience in an investigative role involved in the production of threat intelligence for decision-makers or customers and involved in direct customer support.Experience in an operational role involved in the research and writing of threat intelligence products for...
-
Intelligence Risk Management Specialist
7 days ago
Kuwait City, Al Asimah beBeeThreat Full timeThreat Intelligence ExpertWe're looking for a skilled Threat Intelligence Expert to own our threat intelligence strategy and execution. The ideal candidate will have in-depth knowledge of the current open source threat landscape and computer networking/infrastructure concepts.This role involves understanding cyber threat actors targeting our organization,...
-
Advanced Intelligence Specialist
20 hours ago
Kuwait City, Al Asimah beBeeIntelligence Full time $57,500 - $117,900Job Title: Advanced Intelligence SpecialistWe are seeking a highly skilled and experienced Advanced Intelligence Specialist to join our team. The ideal candidate will possess exceptional analytical and problem-solving skills, with the ability to work effectively in a fast-paced environment.The successful candidate will be responsible for conducting...
-
Highly Skilled Intelligence Analyst Wanted
1 week ago
Kuwait City, Al Asimah beBeeIntelligence Full timeThe OpportunityWe are seeking a highly skilled professional to join our team in providing multi-faceted Intelligence Support services. This role will involve developing and analyzing potential CI threats, insider threats, and Green on Blue threats.Develop and analyze potential CI threats, insider threats, and Green on Blue threats.Play an intricate role in...
-
Cybersecurity Leader
1 week ago
Kuwait City, Al Asimah beBeeCybersecurity Full timeSenior Cybersecurity SpecialistWe are seeking a highly skilled Senior Cybersecurity Specialist to join our team. As a key member of our cybersecurity group, you will be responsible for designing, implementing and evolving our security standards and playbooks. You will work closely with our engineering teams to analyze and improve our security architecture,...
-
Cybersecurity Expert Opportunities
1 week ago
Kuwait City, Al Asimah beBeeCybersecurity Full timeCybersecurity Professionals WantedWe are seeking experienced cybersecurity professionals to join our team in Kuwait. The ideal candidate will have a strong background in IT and extensive experience in cybersecurity. About the RoleThis is an exciting opportunity to work with a leading organization in the banking sector. As a cybersecurity professional, you...
-
Head of Security Operations
3 weeks ago
Kuwait City, Al Asimah HealthCare Dynamics Gen. Trading Company W.L.L Full timeThis global leadership role in cyber security is to manage the Security Operations (SecOps) team responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build...
-
High-End Cyber Security Strategist
1 week ago
Kuwait City, Al Asimah beBeeSecurity Full timeThe Senior Security Operations Engineer role involves implementing and evolving Canonical's Security Operation Center. This is an exciting opportunity for individuals with a strong academic track record and professional experience working in security operations teams or centers.Job DescriptionThis is a mid-senior level full-time position within the...
-
Head of Security Operations
2 weeks ago
Kuwait City, Al Asimah Canonical Full timeJoin to apply for the Head of Security Operations role at CanonicalContinue with Google Continue with GoogleJoin to apply for the Head of Security Operations role at CanonicalGet AI-powered advice on this job and more exclusive features.Sign in to access AI-powered advicesContinue with Google Continue with GoogleContinue with Google Continue with...