Principal Security Analyst
Waterloo, ON, CA
6d ago

Working in the Global Information Security team, the Security Analyst will be expected to understand a wide array of IT security controls, processes, and concepts.

The Security Analyst will provide extensive support for pre-sales security reviews (RFPs, contract reviews), security risk assessments, risk reviews, and risk treatment plans.

The role will also be required to apply risk review concepts to pre and post sales requests for security review of RFPs, security assessments, contracts, and security related contract addendums for the Open Text Commercial platforms for external customers.

This is a hands-on role that will require detailed knowledge of security concepts, risk models, security controls, security audits and other common IT security domain concepts.

The candidate must possess superior communication skills and the ability to articulate information security concepts and controls in support of our customers.

You are great at :

  • Developing a Knowledge Management practice for security concepts and policies in support of sales function
  • Leading efforts on behalf of the Global Information Security (GIS) team to service and support initiatives
  • Conducting security reviews, risk analysis, and controls reviews in adherence to security policy.
  • Working with internal Sales and Legal teams on security inquiries support
  • What it takes :

  • 5+ years in contracting, product management, security engineering, security compliance or risk and governance
  • Familiar with the management, capturing, sharing and accessibility of knowledge assets.
  • Ability to work alongside stakeholders, internal and external, to promote and optimize the usage of the GISR and OT organization's knowledge assets.
  • Familiar with commonly used information security concepts, best practices and standard procedures
  • Must be able to evaluate and apply concepts of risk management and prioritization models for security related risk items
  • Must be able to apply concepts of security policies and controls to contract documents, RFPs, and security assessment documents
  • Capable of working under pressure in a continually changing environment
  • Is resourceful in knowing how to research problems and find information or documentation on related topics
  • Strong knowledge of Open Text Commercial products and solutions is desired
  • Knowledge of Open Text sales cycle process a plus
  • Strong inter-personal skills are required to work across multiple internal teams and to handle customer interface meetings on security related topics.
  • Audit framework knowledge for ISO27001, PCI, SOC1 & SOC2 desired
  • Good analytic, troubleshooting and problem solving
  • Strong written and verbal communication skills
  • Ability to work alone with minimal supervision effectively and efficiently
  • Understanding of security controls, and risk management frameworks and models is a must.
  • Ability to participate in key proactive security programs.
  • Knowledge Management Practices
  • Process Management Experience is a plus
  • CISA, CISM, CISSP or ISSMP certifications preferred
  • Subject to applicable laws and regulations, OpenText’s global vaccination policy requires all employees to be fully vaccinated against COVID-19 to enter an OpenText office.

    Accommodations may be available for specific roles.

    Report this job

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form