JSOC - Cybersecurity Specialist, Digital Threat Hunting

Questrade Financial Group (QFG), through its companies - Questrade, Inc., Questrade Wealth Management Inc., Community Trust Company, Zolo, and Flexiti Financial Inc., provides securities and foreign currency investment, professionally managed investment portfolios, mortgages, real estate services, financial services and more. Questrade uses cutting-edge technologies to develop innovative products that give customers better, more affordable ways to take control of their money.

We are everything a traditional financial institution is not. At QFG, you will be constantly moving forward, bringing the future of fintech into existence. You will be a part of a collaborative team that cares deeply about our mission and each other. Your team members will help you conquer challenges, push boundaries and discover what you are truly capable of.

At QFG, we have a culture of innovation where technology serves people—both our team and our customers. We see AI as a collaborative and transformative enabler, and we are seeking forward-thinking individuals who can effectively integrate it into their daily work. The ideal candidate will be a catalyst for change, helping us use AI to create a more efficient and rewarding employee experience while also developing cutting-edge solutions that delight and serve our customers. Join us in shaping a future where AI empowers our team to do their best work and helps us deliver unparalleled customer experiences.

This is a place where you can explore, discover and learn with continuous growth. As a diverse and inclusive place to work, with a hybrid working environment you can unleash your creativity and curiosity with no limits. If you share the same sense of infinite possibility, come shape your future at QFG.

What’s in it for you as an employee of QFG?

• Health & wellbeing resources and programs
• Paid vacation, personal, and sick days for work-life balance
• Competitive compensation and benefits packages
• Career growth and development opportunities
• Opportunities to contribute to community causes
• Work with diverse team members in an inclusive and collaborative environment
  
  

We’re looking for our next Specialist, Digital Threat Hunting. Could It Be You?

Your contribution delivering sustainable and measurable results in the following areas will be very important:

Identifying and taking down customer-facing and external digital threats - monitoring phishing sites, brand impersonation, typosquatting domains, and fraud campaigns targeting the organization and its customers. You will be primarily involved in investigating digital fraud patterns, coordinating takedowns with registrars and hosting providers, monitoring social media for brand threats, and maintaining relationships with external abuse teams and law enforcement. You will be working alongside internal customers and our vendor support teams to ensure we are utilizing our security tools in accordance with corporate policies and growing business needs. You will work closely with Cybersecurity and IT teams to align priorities and execute plans for new initiatives, as well as contribute to process improvements and build documentation for new tools.

Need more details? Keep reading…

You will:

• Monitor for and identify phishing sites, typosquatting domains, and fraudulent web properties targeting the organization and its customers.
• Coordinate and execute takedown requests with domain registrars, hosting providers, and platform abuse teams.
• Monitor social media platforms for brand impersonation, fake accounts, and fraud campaigns targeting customers.
• Track and investigate digital fraud patterns, credential harvesting campaigns, and customer-targeted scams.
• Maintain relationships with external takedown service providers and law enforcement contacts for escalation of persistent fraud operations.
• Provide intelligence on external threat actors and fraud TTPs to CTI Specialist for integration into the broader threat landscape.
• Produce digital fraud metrics: phishing sites identified, takedown success rate, average time-to-takedown, social media impersonation cases resolved.
• Collaborate with the Security Engineer on anti-fraud engineering tooling and automation for detection and takedown workflows.
• Perform OSINT investigations on suspicious domains, registrants, and hosting infrastructure.
• Analyze phishing kits and credential harvesting pages to understand attacker tactics and customer exposure.
• Track dark web and underground forums for discussion of fraud campaigns targeting the organization and its customers.
• Document takedown requests, outcomes, and lessons learned for continuous improvement of fraud prevention workflows.
• Monitor threat feeds and external intelligence sources for emerging fraud TTPs and threat actor activity.
• Coordinate with customer support and fraud response teams to assess customer impact and provide incident guidance.
• Support communication with customers affected by phishing, impersonation, or fraud campaigns.
• Maintain awareness of regulatory requirements and industry standards related to brand protection and fraud prevention.
• Mentor junior analysts on OSINT techniques, phishing analysis, and digital fraud investigation methods.
• Communicate digital fraud findings, trends, and recommendations to technical and non-technical stakeholders.
• Track and report on digital threat hunter program metrics (cases handled, investigation turnaround time, threat intel shared).
  
  

So are YOU our next Specialist, Digital Threat Hunting? You are if you have…

• 3+ years of relevant experience in threat intelligence, OSINT, digital fraud investigation, or security operations.
• Experience with OSINT techniques, tools, and methodologies for investigating external threats and digital fraud.
• Practical experience with phishing kit analysis, credential harvesting page identification, and fraud pattern recognition.
• Experience with brand protection and monitoring platforms for detecting impersonation, counterfeiting, and fraud campaigns.
• Experience coordinating takedown requests with domain registrars, hosting providers, and social media platforms.
• Experience investigating and tracking digital fraud TTPs, credential harvesting, and customer-targeted scams.
• Strong understanding of domain registration, DNS, WHOIS, and internet infrastructure fundamentals.
• Knowledge of social media platforms, fraud detection indicators, and brand impersonation identification.
• Knowledge of dark web monitoring tools, underground forums, and threat actor communication channels.
• Knowledge of fraud frameworks, anti-fraud platforms, and industry standards for brand protection and customer safety.
• Experience with dark web monitoring and threat intelligence platforms.
• Scripting skills (Python) for OSINT automation.
• Active participation in fraud prevention and brand protection communities.
  
  

Brownie points if you have...

GOSI, SANS FOR589, GCTI, HTB CDSA or similar relevant certifications.

Sounds like you? Click below to apply!

At Questrade Financial Group of Companies, with multiple office locations around the world, we are committed to fostering a diverse, inclusive and accessible work environment. This is an environment where individuals are treated with dignity and respect. Here, the unique skills and experience you bring will be valued. You will be supported and motivated, so that you can harness your unlimited potential. Our team reflects the diversity of the communities we serve and operate in. Having a collaborative and diverse team helps us push boundaries to bring the future of fintech into existence—not only for the benefit of our customers, but for those who build their career with us.

Questrade Financial Group of companies Applicant Tracking System utilizes artificial intelligence (AI) for application screening. The AI system operates on predetermined criteria, with final decisions subject to human review.

Candidates selected for an interview will be contacted directly. If you require accommodation during the recruitment/selection process, please let us know and we will work with you to meet your needs.