Working in the Global Information Security team, the Security Analyst will be expected to understand a wide array of IT security controls, processes, and concepts.
The Security Analyst will provide extensive support for pre-sales security reviews (RFPs, contract reviews), security risk assessments, risk reviews, and risk treatment plans.
The role will also be required to apply risk review concepts to pre and post sales requests for security review of RFPs, security assessments, contracts, and security related contract addendums for the Open Text Commercial platforms for external customers.
This is a hands-on role that will require detailed knowledge of security concepts, risk models, security controls, security audits and other common IT security domain concepts.
The candidate must possess superior communication skills and the ability to articulate information security concepts and controls in support of our customers.
You are great at :
Developing a Knowledge Management practice for security concepts and policies in support of sales function
Leading efforts on behalf of the Global Information Security (GIS) team to service and support initiatives
Conducting security reviews, risk analysis, and controls reviews in adherence to security policy.
Working with internal Sales and Legal teams on security inquiries support
What it takes :
5+ years in contracting, product management, security engineering, security compliance or risk and governance
Familiar with the management, capturing, sharing and accessibility of knowledge assets.
Ability to work alongside stakeholders, internal and external, to promote and optimize the usage of the GISR and OT organization's knowledge assets.
Familiar with commonly used information security concepts, best practices and standard procedures
Must be able to evaluate and apply concepts of risk management and prioritization models for security related risk items
Must be able to apply concepts of security policies and controls to contract documents, RFPs, and security assessment documents
Capable of working under pressure in a continually changing environment
Is resourceful in knowing how to research problems and find information or documentation on related topics
Strong knowledge of Open Text Commercial products and solutions is desired
Knowledge of Open Text sales cycle process a plus
Strong inter-personal skills are required to work across multiple internal teams and to handle customer interface meetings on security related topics.
Audit framework knowledge for ISO27001, PCI, SOC1 & SOC2 desired
Good analytic, troubleshooting and problem solving
Strong written and verbal communication skills
Ability to work alone with minimal supervision effectively and efficiently
Understanding of security controls, and risk management frameworks and models is a must.
Ability to participate in key proactive security programs.
Knowledge Management Practices
Process Management Experience is a plus
CISA, CISM, CISSP or ISSMP certifications preferred
Subject to applicable laws and regulations, OpenText’s global vaccination policy requires all employees to be fully vaccinated against COVID-19 to enter an OpenText office.
Accommodations may be available for specific roles.