Lead Security Analyst

OpenText

OpenText offers cloud-native solutions in an integrated and flexible Information Management platform to enable intelligent, connected and secure organizations.

View company page

OPENTEXT
OpenText is a global leader in information management, where innovation, creativity, and collaboration are the key components of our corporate culture. As a member of our team, you will have the opportunity to partner with the most highly regarded companies in the world, tackle complex issues, and contribute to projects that shape the future of digitaltransformation.
Global Information Security (GIS) leverages our people, processes and technology to develop new digitalization efforts that ensure our enterprise systems reliability, minimize staff interaction, and most importantly, protect our customers data. Companies are recognizing the need to digitize information and manage alternative work scenarios in todays changing reality. With this in mind, we work tirelessly to drive improvements across our security services and accelerate our customers digital journey in a safe and trusted environment.
Security Risk is the team that identifies security gaps that represent a threat to the confidentiality, integrity and availability of data. Through security architecture, vulnerability scanning and vendor risk evaluations risks are identified and documented for risk owners.
Your Impact:
The Lead Security Engineer will fully understand a wide array of security processes and concepts. The LeadSecurity Engineer leads the development and implementation of a critical program that identifies and manages OpenTexts Vulnerability Identification and Reporting program delivering protection capabilities and solutions to reduce IT security related risks. This role is responsible for working directly across multiple teams, management levels, disciplines, technologist, and business groups.
As a Lead Security Analyst, you will:
Own and deliver risk-based plan and roadmap for vulnerability management services across global infrastructures (ISO27001, PCI, SOC1 & SOC2).
Partner with IT and engineering stakeholders to identify and mitigate security vulnerabilities, supporting business needs.
Deliver expert capabilities and direction for vulnerability management services, including reporting capabilities.
Manage third-party network security assessments and performs in-depth vulnerability analysis and trend identification.
Support audits and gather artifacts for compliance (ISO27001, PCI, SOC1 & SOC2); lead reporting and metrics including Key Risk Indicators (KRIs).
Possess 7+ years IT Security experience; 4+ years in-depth vulnerability management experience.
What you need to Succeed:
Expert level with Qualys, Rapid7 Nexpose, or Tenable Nessus for enterprise vulnerability management.
Scripting knowledge for task automation using vendor APIs; open to exploring open-source or in-house tools.
Demonstrated experience in building, enhancing, and managing vulnerability management programs.
Ability to communicate technical risks to advanced teams and brief executive management; experience with metric creation and system hardening.
CISSP certification required; preferred certifications include CISSP, CISM, CRISC, or equivalent.
BS in Computer Science, Cyber Security, Information Assurance, or Information Security preferred
Experience with FedRAMP compliance requirements a plus
Experience with WebApp, Offensive Security, Docker containers, and container platforms a plus
One last thing:
OpenText is more than just a corporation, it's a global community where trust is foundational, the bar is raised, and outcomes are owned.
Join us on our mission to drive positive change through privacy, technology, and collaboration. At OpenText, we don't just have a culture; we have character. Choose us because you want to be part of a company that embraces innovation and empowers its employees to make a difference.
OpenText's commitment to diversity and inclusion surpasses legal requirements, evident in our Equal Employment Opportunity Statement of Policy

which promotes a respectful and empowering environment for employees of all backgrounds, culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please contact us at hr@opentext.com . Our proactive approach fosters collaboration, innovation, and personal growth, enriching OpenText's vibrant workplace.
Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.

#J-18808-Ljbffr