Lead Security Analyst

OPENTEXT

OpenText is a global leader in information management, where innovation, creativity, and collaboration are the key components of our corporate culture. As a member of our team, you will have the opportunity to partner with the most highly regarded companies in the world, tackle complex issues, and contribute to projects that shape the future of digital transformation.

• This role requires eligibility for Seceret Level Security Clearance with the Government of Canada**
  
  

Global Information Security (GIS) leverages our people, processes and technology to develop new digitalization efforts that ensure our enterprise systems’ reliability, minimize staff interaction, and most importantly, protect our customers’ data. Companies are recognizing the need to digitize information and manage alternative work scenarios in today’s changing reality. With this in mind, we work tirelessly to drive improvements across our security services and accelerate our customers’ digital journey in a safe and trusted environment.

Security Operations is the team that handles day to day protection of our environment and the tools that support them. This team takes care of identifying security weaknesses and facilitates remediation efforts. Additionally, this team monitors networks to assesses abnormal behaviors and manages security incidents to allow for execution of response processes.

Your Impact

As a Security Analyst within the Security Operations Centre (SOC), you will be responsible for monitoring, analyzing, and responding to cyber threats in real time. Leveraging advanced security tools and techniques, you will perform in-depth log analysis, investigate security incidents, and support proactive threat hunting efforts to strengthen OpenText’s security posture. This is a hands-on role that will create, maintain, and follow detailed operational processes and procedures to appropriately analyze, escalate, and assist in remediation of information security incidents. You will also proactively search for, and handle, threats, and abnormal activities within the environment.

What The Role Offers

As a Lead Security Analyst, you will:

• Manage security cases, analyze incidents, and correlate logs from SIEM, system, and network sources to detect threats in real time.
• Respond to security incidents across endpoints and servers while implementing security tools to reduce risk.
• Conduct risk analysis, security reviews, and controls assessments to ensure adherence to ISO 27001, SOC 2, HIPAA, and SOX.
• Stay updated on security advisories (e.g., CERT) and recommend appropriate response actions.
• Develop and refine guides, playbooks, and procedures to align with security standards and policies.
• Provide technical expertise in utilizing AI and machine learning models for anomaly detection and advanced threat hunting
• Design and implement AI-driven incident response playbooks to accelerate threat containment and remediation
• Create security event metrics, analyze data gaps, and generate reports to improve SOC performance and threat intelligence.
• Possess 8-12 years of previous professional experience.
  
  

What You Need To Succeed

• Familiarity with key information security concepts, standards, and industry best practices.
• Hands-on experience with SIEM platforms (LogRhythm, ArcSight, Splunk, Microsoft Sentinel) for threat detection and correlation.
• Proficiency in vulnerability assessment tools (Nessus, Qualys, Rapid7) and EDR solutions (CrowdStrike, SentinelOne, Microsoft Defender ATP).
• Strong troubleshooting, problem-solving, and research capabilities to assess security incidents and risks.
• 3+ years hands-on experience with AI/ML-based security tools for threat detection and security incident analysis
• Demonstrated skill in developing or customizing AI models for identifying novel attack patterns and conducting proactive threat hunting
• Bachelor’s degree in Cybersecurity, Information Systems, or related field preferred, with 2+ years in cybersecurity operations.
• Certifications (Preferred): CISSP, CISM, CISA, GIAC (GCIA, GCIH, GCFA), or CEH.
• Must be eligible for Secret Level Security Clearance
  
  

One Last Thing

OpenText is more than just a corporation, it's a global community where trust is foundational, the bar is raised, and outcomes are owned.

Join us on our mission to drive positive change through privacy, technology, and collaboration. At OpenText, we don't just have a culture; we have character. Choose us because you want to be part of a company that embraces innovation and empowers its employees to make a difference.

OpenText's efforts to build an inclusive work environment go beyond simply complying with applicable laws. Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws.

If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please contact us at [email protected]. Our proactive approach fosters collaboration, innovation, and personal growth, enriching OpenText's vibrant workplace.