Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead Canonical's threat intelligence strategy and collaborate with teams to enhance cybersecurity.
- Company: Canonical is a pioneering tech firm driving the global shift to open source, known for Ubuntu.
- Benefits: Enjoy remote work, a personal development budget, annual bonuses, and travel opportunities.
- Why this job: Join a thought leader in open source, making a real impact on global software security.
- Qualifications: Experience in threat intelligence, knowledge of OSINT tools, and a degree in a related field required.
- Other info: Remote-first culture with twice-yearly team sprints and a commitment to diversity.
The predicted salary is between 48000 - 84000 Β£ per year.
Join to apply for the Threat Intelligence Lead role at Canonical
Join to apply for the Threat Intelligence Lead role at Canonical
The Threat Intelligence Lead will own Canonical\βs threat intelligence strategy and execution, including understanding of which cyber threat actors are targeting Canonical, and the use of intelligence on Tactics, Techniques and Procedures (TTP) to better our products and internal cybersecurity controls. You will collaborate with internal stakeholders as well as with the wider cybersecurity community, making sure that Canonical is recognised as a thought leader on open source threat intelligence.
This role will report to the CISO.
You will lead intelligence gathering and development activities on threat actors targeting software supply chains. You\βll study attack trends across the wider open source software landscape, report findings to internal security teams, and advise the wider engineering community on the best course of action to detect and mitigate possible threats.
As the publisher of Ubuntu, Canonical products are directly or indirectly present in almost every organisation and household in the world, making them a prime target for threat actors. This team\βs mission is to help Canonical, and by extension countless community members and companies around the world, secure their software infrastructure.
What you\βll do in this role
- Build and own Canonical\βs threat intelligence strategy
- Build and maintain OSINT research environments
- Develop OSINT tradecraft, principals, and techniques
- Identify and track targeted intrusion cyber threats, trends, and new developments by cyber threat actors through analysis of proprietary and open source datasets
- Collaborate across teams to inform on activity of interest
- Coordinate adversary/campaign tracking
- Contribute to the wider threat intelligence community, establishing Canonical as a key contributor and thought leader in the space
- Work with product and engineering teams to explain cybersecurity threats and advise on mitigation strategies
- Work with the OPSEC and IS team to help implement/update security controls prioritising cyber defence
- Identify intelligence gaps and propose new tools and research projects to fill them
- Conduct briefings for executives, internal stakeholders and external customers
The successful Threat Intelligence Lead will be
- An experienced threat intelligence leader (or similar)
- Knowledgeable about the current open source threat landscape and computer networking/infrastructure concepts
- Highly competent with OSINT tools (e.g., Buscador, Trace Labs OSINT VM, OSINT Framework, Maltego, Shodan, social media scraping tools, etc.)
- Able to identify, organise, catalogue, and track adversary tradecraft trends β often with incomplete data
- Experienced using threat intelligence data to influence enterprise architecture or product development decisions
- An excellent communicator with the ability to clearly articulate and tailor technical content to a variety of audiences
- Able to travel twice a year, for company events up to two weeks long
Desired Characteristics
- A professional portfolio of OSINT related scripts, tools, or frameworks
- Demonstrated involvement in the larger OSINT community (please share relevant links)
- Degree qualified, with a bachelor\βs degree in computer science, information security, or a related field
- Certifications in related areas (e.g. GOSI, SANS SEC487 & SEC587, IntelTechniques OSIP, etc)
- Experience in a tech company or government/military signal intelligence departments
What we offer you
We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.
- Distributed work environment with twice-yearly team sprints in person
- Personal learning and development budget of USD 2,000 per year
- Annual compensation review
- Recognition rewards
- Annual holiday leave
- Maternity and paternity leave
- Employee Assistance Programme
- Opportunity to travel to new locations to meet colleagues
- Priority Pass, and travel upgrades for long haul company events
About Canonical
Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence β in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.
Canonical is an equal opportunity employer
We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.
Seniority level
-
Seniority level
Mid-Senior level
Employment type
-
Employment type
Full-time
Job function
-
Job function
Information Technology
-
Industries
Software Development
Referrals increase your chances of interviewing at Canonical by 2x
Get notified about new Threat Intelligence Lead jobs in Manchester, England, United Kingdom.
Weβre unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Threat Intelligence Lead employer: Canonical
Contact Detail:
Canonical Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Threat Intelligence Lead
β¨Tip Number 1
Network with professionals in the cybersecurity field, especially those involved in threat intelligence. Attend industry conferences or webinars to meet potential colleagues and learn about the latest trends and tools in OSINT.
β¨Tip Number 2
Engage actively in online communities and forums related to open source threat intelligence. Sharing your insights and participating in discussions can help you establish yourself as a knowledgeable candidate and may catch the attention of Canonical's hiring team.
β¨Tip Number 3
Showcase your expertise by contributing to open source projects or writing articles on platforms like Medium or LinkedIn. This not only demonstrates your skills but also aligns with Canonical's commitment to open source.
β¨Tip Number 4
Prepare for interviews by familiarising yourself with Canonical's products and their security features. Understanding how your role as a Threat Intelligence Lead can enhance their offerings will show your genuine interest in the company and its mission.
We think you need these skills to ace Threat Intelligence Lead
Some tips for your application π«‘
Tailor Your CV: Make sure your CV highlights relevant experience in threat intelligence and OSINT tools. Use keywords from the job description to demonstrate that you meet the specific requirements of the Threat Intelligence Lead role.
Craft a Compelling Cover Letter: In your cover letter, explain why you're passionate about open source security and how your background aligns with Canonical's mission. Mention specific projects or experiences that showcase your expertise in threat intelligence.
Showcase Your Skills: Include examples of your work with OSINT tools and any contributions to the OSINT community. If you have a portfolio of scripts or tools, make sure to mention it and provide links if possible.
Prepare for Technical Questions: Anticipate technical questions related to threat intelligence and cybersecurity. Be ready to discuss your approach to identifying and mitigating threats, as well as your experience with collaboration across teams.
How to prepare for a job interview at Canonical
β¨Understand Canonical's Mission
Before the interview, make sure you understand Canonical's mission and how the Threat Intelligence Lead role fits into it. Familiarise yourself with their products, especially Ubuntu, and think about how your experience can contribute to securing their software infrastructure.
β¨Showcase Your OSINT Skills
Be prepared to discuss your experience with OSINT tools and techniques. Highlight specific projects or scenarios where you've successfully identified threats or trends using these tools. This will demonstrate your practical knowledge and ability to apply your skills in real-world situations.
β¨Communicate Clearly
As an excellent communicator, youβll need to articulate complex cybersecurity concepts to various audiences. Practice explaining technical content in simple terms, as this will be crucial when advising product and engineering teams on mitigation strategies.
β¨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving abilities in threat intelligence. Think of examples from your past experiences where you identified a threat, analysed it, and proposed actionable solutions. This will showcase your analytical skills and strategic thinking.
