Lead Security Analyst

OPENTEXT
OpenText is a global leader in information management, where innovation, creativity, and collaboration are the key components of our corporate culture. As a member of our team, you will have the opportunity to partner with the most highly regarded companies in the world, tackle complex issues, and contribute to projects that shape the future of digital transformation.

Global Information Security (GIS) leverages our people, processes and technology to develop new digitalization efforts that ensure our enterprise systems’ reliability, minimize staff interaction, and most importantly, protect our customers’ data. Companies are recognizing the need to digitize information and manage alternative work scenarios in today’s changing reality. With this in mind, we work tirelessly to drive improvements across our security services and accelerate our customers’ digital journey in a safe and trusted environment.

Security Risk is the team that identifies security gaps that represent a threat to the confidentiality, integrity and availability of data. Through security architecture, vulnerability scanning and vendor risk evaluations risks are identified and documented for risk owners.

Your Impact:

The Lead Security Engineer will fully understand a wide array of security processes and concepts. The Lead Security Engineer leads the development and implementation of a critical program that identifies and manages OpenText’s Vulnerability Identification and Reporting program delivering protection capabilities and solutions to reduce IT security related risks. This role is responsible for working directly across multiple teams, management levels, disciplines, technologist, and business groups.

As a Lead Security Analyst, you will:

• Own and deliver risk-based plan and roadmap for vulnerability management services across global infrastructures (ISO27001, PCI, SOC1 & SOC2).
• Partner with IT and engineering stakeholders to identify and mitigate security vulnerabilities, supporting business needs.
• Deliver expert capabilities and direction for vulnerability management services, including reporting capabilities.
• Manage third-party network security assessments and performs in-depth vulnerability analysis and trend identification.
• Support audits and gather artifacts for compliance (ISO27001, PCI, SOC1 & SOC2); lead reporting and metrics including Key Risk Indicators (KRI’s).
• Possess 7 years’ IT Security experience; 4 years’ in-depth vulnerability management experience.

What you need to Succeed:

• Expert level with Qualys, Rapid7 Nexpose, or Tenable Nessus for enterprise vulnerability management.
• Scripting knowledge for task automation using vendor APIs; open to exploring open-source or in-house tools.
• Demonstrated experience in building, enhancing, and managing vulnerability management programs.
• Ability to communicate technical risks to advanced teams and brief executive management; experience with metric creation and system hardening.
• CISSP certification required; preferred certifications include CISSP, CISM, CRISC, or equivalent.
• BS in Computer Science, Cyber Security, Information Assurance, or Information Security preferred
• Experience with FedRAMP compliance requirements a plus
• Experience with WebApp, Offensive Security, Docker containers, and container platforms a plus

One last thing:

OpenText is more than just a corporation, it's a global community where trust is foundational, the bar is raised, and outcomes are owned.

Join us on our mission to drive positive change through privacy, technology, and collaboration. At OpenText, we don't just have a culture; we have character. Choose us because you want to be part of a company that embraces innovation and empowers its employees to make a difference.

OpenText's commitment to diversity and inclusion surpasses legal requirements, evident in our Equal Employment Opportunity Statement of Policy which promotes a respectful and empowering environment for employees of all backgrounds, culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please contact us at hr@opentext.com. Our proactive approach fosters collaboration, innovation, and personal growth, enriching OpenText's vibrant workplace.