Sr. Security Risk Analyst

OPENTEXT - THE INFORMATION COMPANY

As the Information Company, our mission at OpenText is to create software solutions and deliver services that redefine the future of digital. Be part of a winning team that leads the way in Enterprise Information Management. 

The Opportunity: 
Working in the Global Information Security team, the Risk Analyst will be expected to understand a wide array of IT security controls, processes, and concepts. The Risk Analyst will provide support for our Security Risk Management methodology and be specifically responsible for executing risk assessments for our product/platforms/services and our 3rd party vendors.  The role will also be required to apply risk review concepts in support of audit controls for ISO27001, SOC1, and SOC2 on the Open Text Commercial platforms. This is a hands-on role that will require detailed knowledge of security concepts, governance models, commercial platform processing, risk models, security controls, security audits, and other common IT and security domain concepts.

You are great at: 

• Assisting the Global Information Security (GIS) team to service and support information security risk initiatives 
• Applying security policy and technical controls to risk assessments to Open Text business units to complete product/platform risk assessments
• Completing physical risk assessments
• Completing third-party vendor risk assessments 
• Analyzing risk assessment results and working with risk owners on mitigation actions  

What it takes: 

• Bachelor’s Degree in Information Systems, Business Administration, or similar degree, or equivalent experience preferred. 
• 3+ years in security compliance, risk, and governance
• Knowledge of merger and acquisition processes and ability to analyze security risk for M&A activities 
• Strong interpersonal skills are required to work across multiple internal business units
• Familiar with commonly used information security frameworks, best practices, and standard procedures
• Capable of working independently under pressure in a continually changing environment
• Being resourceful in knowing how to research requirements, learn new technologies, and apply an understanding of controls to determine risk
• Strong knowledge of Open Text Commercial products and solutions is helpful  
• Audit framework knowledge for ISO27001/27017, SOC1 & SOC2, PCI-DSS, HIPAA desired 
• Strong written and verbal communication skills
• Ability to participate in key proactive security programs.
• CISA, CISM, CISSP or other IT certifications preferred
• Amenable to working the night shift

OpenText's efforts to build an inclusive work environment go beyond simply complying with applicable laws. Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please contact us at 1-800-499-6544.