Senior Threat Intelligence Researcher

About eSentire

eSentire is on a mission to hunt, investigate and stop cyber threats before they become business disrupting events. We were founded on the premise that if you can’t find a solution, you build it. Entrepreneurship and innovation are in our DNA. Our culture is based on transparency, teamwork, and continuous innovation.

As the authority in Managed Detection and Response, we protect the critical data and applications of 2000+ organizations in 80+ countries, across 35 industries from known and unknown cyber threats.

The Opportunity

We are seeking an analytical and detail-oriented Senior Threat Intelligence Researcher to join eSentire’s Threat Response Unit. The successful candidate will report to the Senior Manager, Threat Intelligence Research and have primary responsibility for production of data-driven threat intelligence reporting. Your work will involve collecting, analyzing, and synthesizing large datasets on cyber threats, incidents, and vulnerabilities to provide actionable insights for our clients and internal security teams. The ideal candidate thrives in a fast-paced environment, excels at turning complex data into compelling narratives, and has a passion for advancing cybersecurity through evidence-based research.

Responsibilities

• Data Collection and Analysis: Collect, process and analyze data from internal case data, open-source intelligence (OSINT), partner feeds, and proprietary tools to identify emerging trends across the threat landscape.
• Report Development: Author high-impact, data-driven reports including statistical analysis, visualizations, and executive summaries. Ensure reports are clear, objective, and relevant to the target audience.
• Threat Trend Identification: Monitor global cyber threat landscapes, using quantitative methods to detect patterns, predict risks, and correlate incidents across sectors (e.g., finance, healthcare, critical infrastructure).
• Collaboration and Stakeholder Engagement: Work closely with cross-functional teams, including analysts, researchers and incident responders, to validate findings and incorporate feedback. Participate in projects in support of streamlining data collection and analysis. Present research outcomes to internal stakeholders and clients through webinars, briefings, and whitepapers.
• The manager will assign other duties as required.

Time Allocation

• 50% – Intelligence Processing and Reporting
• 20% - Intelligence Dissemination
• 20% - Project Participation
• 10% - Threat Intelligence Escalations

Requirements

• 3+ years in threat intelligence, cybersecurity research, or data analysis roles. Experience in producing threat intelligence reports, particularly focused on attack patterns and trends, is desired.
• Excellent written and verbal communication skills, with the ability to distill complex technical data into accessible insights for non-technical audiences.
• Strong critical thinking, attention to detail, and the ability to work independently or in teams.

Desired Qualifications

• Education: Associate or bachelor's degree in Cybersecurity, Computer Science, Data Science, Statistics, or a related field.
• Proficiency in data analysis and processing tools such as Python, R, SQL, or similar.
• Proficiency with databases such as PostgreSQL, MongoDB, Elasticsearch, or similar, for querying, managing, and analyzing large-scale threat intelligence datasets.
• Experience with threat intelligence platforms (e.g., MISP, OpenCTI, ThreatConnect) and data visualization tools (e.g., Tableau, Power BI).
• Strong understanding of cybersecurity concepts, including MITRE ATT&CK framework, Diamond Model of Intrusion Analysis, and incident response methodologies.

Hiring Status

Immediate Need (Existing Vacancy)

Work Location

If the successful candidate is located within 50 km of our Waterloo, Ontario office, this role will follow a hybrid schedule: work from home on Mondays and Fridays, and work onsite Tuesday through Thursday. Candidates residing more than 50 km from the office will work fully remote.

Compensation Range

The expected base salary range for this role is $120,000-$150,000 CAD (exclusive of bonus, equity, and benefits). This range is for the primary location for which the job is posted. Actual compensation may vary depending on location and job-related factors such as qualifications, experience, knowledge, skills, and internal equity.

Your Talent Acquisition Specialist can speak to you more about the range and where you may fall within it based on your location and these factors.

Our Culture and Values

We celebrate diversity, operating with mutual respect and consideration, in an environment that fosters inclusivity for all. We believe that a variety of perspectives, backgrounds, and experiences make us stronger – if you’re enthusiastic about this opportunity but don’t meet every qualification, we encourage you to apply anyway. It takes a diverse set of thoughts, cultures, backgrounds, and perspectives to be a true market leader.

Total Rewards

We believe in rewarding performance and providing comprehensive benefits tailored to support your well-being. Our package includes comprehensive health benefits, a flexible vacation plan, and participation in our company-wide equity program, allowing you to share in the success and growth of our organization.

Accommodation

If you have any accessibility requirements during the recruitment process, please reach out to our HR team at talentacquisition@esentire.com and any accommodation needs will be addressed upon request. Your talents and unique perspectives are valued, and we look forward to the opportunity to work together to build a more inclusive future.

It's our mission at eSentire to protect our customers 24/7/365 and we extend this conviction to job seekers. During the application and interview process, eSentire will communicate with you from one of our corporate "@esentire.com" email addresses, never from a public email address.

Key skills/competency

• Threat Intelligence
• Cyber Threat Analysis
• Data Collection
• OSINT
• Report Writing
• Data Visualization
• Python
• SQL
• MITRE ATT&CK
• Incident Response