Lead Security Analyst
OpenText Corp
Richmond Hill, ON, CA
2d ago

The Opportunity

The successful candidate will have played a role within a successful Threat and Vulnerability Management (TVM) program delivering protection capabilities and solutions to reduce IT security related risks.

The Lead Security Engineer will lead the identification, testing, validation, tracking, and research efforts while providing recommended corrective action across multiple technical teams, management levels, and business groups.

The Lead Security Engineer will also support the maturation of our TVM program.

You are great at :

  • Leading a risk-based plan and roadmap for threat and vulnerability management services across global Commercial and Corporate infrastructures
  • Maturing vulnerability management programs in local, private, and public cloud environments
  • Leading the design, build, and day-to-day operations of a threat and vulnerability management program
  • Providing in-depth analysis of identified vulnerabilities and impact to our commercial and corporate systems, networks, and applications
  • Developing and delivering required threat and vulnerability management reporting capabilities
  • Acting as a liaison between IT, engineering, architecture, network, and cloud teams to ensure TVM requirements are implemented and understood
  • Proactively finding opportunities to minimize cyber threats and enhance response capabilities
  • Identifying and resolving false positive findings in assessment results
  • Performing in-depth analysis of current threat activity and trends
  • Providing support for audits and gathering of artifacts for ISO27001, PCI, SOC1 & SOC2, etc.
  • Leading and delivering reporting and metrics including Key Risk Indicators (KRI’s) as required.
  • Developing security standards, processes, playbooks, and run-books for vulnerability management practices
  • What it takes :

  • 7+ years’ experience in working in IT Security
  • 4+ years’ experience in working as a threat & vulnerability management expert
  • BS in Computer Science, Cyber Security, Information Assurance, or Information Security
  • Proven domain expertise in relevant areas, such as threat intelligence, penetration testing, intrusion analysis, incident handling, malware analysis or security engineering
  • Demonstrated experience in an enterprise-level TVM team
  • Solid understanding of malware families, application, network, and cloud attack vectors
  • Expert level familiarity with enterprise vulnerability management tools, such as Qualys, Rapid7, Tenable Nessus
  • Scripting knowledge to automate repeatable tasks using vendor APIs
  • Experience creating and refining metrics to articulate and measure program performance
  • Experience with system hardening and secure configuration frameworks
  • Able to work independently and efficiently, as well as with others, to meet deadlines
  • When required, on call support
  • Able to multi-task, prioritize, and resolve multiple inquiries at once
  • Possess excellent writing and communication skills
  • Preferred certifications CISSP, CISM, CRISC, or equivalent
  • Experience with FedRAMP compliance requirements a plus
  • Experience with Docker containers, and container platforms a plus
  • While OpenText is an Equal Opportunity Employer, our efforts to build an inclusive work environment go beyond simply complying with applicable laws.

    Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws.

    Should you require accommodations during the selection process, please contact accomodationrequests opentext.com.

    Additionally, OpenText, as a proud US Federal Government contractor, is subject to Executive Order 14042 requiring all US employees (in office or virtual) be fully vaccinated by January 4, 2022.

    New employees joining OpenText will be required to provide proof of vaccination prior to joining or be approved for a medical or religious exemptions.

    If you believe you qualify for an exemption you can request the exemption form at accommodationrequests opentext.com.

    Report this job
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form