Loading...
Share this Job
Apply now »

 

 

Lead Security Analyst (SIEM)

Req id:  4593

Richmond Hill, ON, CA Waterloo, ON, CA

 

OPENTEXT - THE INFORMATION COMPANY

As the Information Company, our mission at OpenText is to create software solutions and deliver services that redefine the future of digital. Be part of a winning team that leads the way in Enterprise Information Management. 

 

ENABLING THE DIGITAL WORLD

OpenText enables the digital world by simplifying, transforming, and accelerating enterprise information needs, on premises or in the cloud. We embrace all things digital and are committed to being the Best Place to Work for our Employees in over 140 locations around the world.

We obsess over our customers to ensure they are wildly successful in embracing the Digital World. Our customers entrust us with their most important information, we need to be their most trusted partner. What we do, we do well. What we create, we do purposefully to impact the world. If you believe in this and are passionate about enabling the Digital World then let OpenText turn your career vision into reality.



The Opportunity: 

The Lead Security Analyst (SIEM) is a member of the Information Protection Center providing subject matter expertise.  You are responsible for the health, performance, and capacity planning of our SIEM platform including the management and operation of the SIEM infrastructure.  This hands-on role requires a deep technical knowledge of security technologies and must have a solid understanding of information security and networking. 

 

You are great at:

 

  • Providing subject matter expertise for all SIEM components and design.
  • Researching, documenting, and implementing security best practices to continually improve the deployment and use of the SIEM.
  • Coordinating and conducting event collection, log management, event management, and compliance automation.
  • Researching, analyzing, and understanding common and complex log sources.
  • Providing expert guidance regarding the implementation of rules and event correlation for the SIEM environment.
  • Developing detection rules to support alerting and response capabilities for our SOC services.
  • Providing day to day event parsing and repairing of events that have missing or incorrect information.
  • Troubleshooting issues with log sources or systems, with internal IT teams and vendors, providing resolution to defects or performance issue as needed.
  • Creating detailed reports on the status of the SIEM that also includes metrics on items such as number of logging sources; log collection rate, and server performance.
  • Design and build dashboards in the SIEM.
  • Develop, implement, and execute standard procedures for the administration, management, and lifecycle of the SIEM.
  • Participating in incident response and technical investigations as needed.
  • Performing in-depth analysis of current threat activity and trends
  • Mentoring and training security team members on the SIEM deployment and operation.
  • Providing support for audits and gathering of artifacts for, ISO27001, PCI, SOC1 & SOC2, etc.

 

What it takes:

 

  • BS in Computer Science, Cyber Security, Information Assurance, or Information Security preferred.
  • 3-5 years SIEM experience that includes leading SIEM deployments and optimization.
  • Minimum 2 years working experience with LogRhythm and/or Splunk.
  • Experience working with major Cloud providers preferred.
  • Understands and can articulate how the SIEM platform and service provides value to the company.
  • Experience in a large enterprise environment analyzing security event data for attack patterns and understanding attacker tactics.
  • Experience in developing SIEM correlation rules to detect new threats beyond current capabilities.
  • Working knowledge of Threat intelligence to interpret IOC’s and translating them for SIEM alerting.
  • Understanding of OSI layers, network protocols (IP, ICMP,TCP,UDP), network services (DNS, DHCP, HTTP), routing protocols
  • Scripting skills (Python, PowerShell, Regular Expressions, Lua)
  • Experience with Windows and Linux Operation Systems
  • Experience creating and refining metrics to articulate and measure program performance.
  • Able to work independently and efficiently, as well as with others, to meet deadlines in a fast-paced environment.
  • Self-motivated and detail-oriented.
  • Possess excellent writing and communication skills.
  • CISSP, GCIH, CISA, CISM, or other industry certifications preferred.

 

 

At OpenText we understand and value diversity in our employees and are proud to be an Equal Opportunity Employer. We hire the best talent regardless of race, creed, color, national origin, ancestry, disability, marital status, sex, age, veteran status or sexual orientation. If you require accommodation at any time during the recruitment process please email accommodationrequests@opentext.com. Applicants have rights under Federal Employment Laws including but not limited to: Family and Medical Leave Act (FLMA)Equal Employment Opportunity  and Employee Polygraph Protection Act


OPENTEXT - THE INFORMATION COMPANY

Our growing team is mapping the future of Information Management, and we continue to make new discoveries that expand its boundaries. Join us and be part of a winning team, where the opportunities for your career are limitless. 

From its innovative start as a research project by University of Waterloo professors in 1991, OpenText has grown into a global company with offices in more than 35 countries. Our high- performance culture has forged our growth and is an excellent fit for people looking to push themselves to learn and do more.

It’s our time to lead, and as part of our team, it will be your time too. Our continued growth will provide you the opportunity to explore, learn and chart an exciting career path while enjoying a good work-life balance. 

Perks 
If you thrive in a dynamic work environment, there is always a new horizon to explore. We are proud to offer excellent benefits, challenging work and competitive financial rewards. 

Benefits 
Our employee programs prioritize employees’ well-being and that of their families. We offer a comprehensive benefit plan, education assistance, a wellness/fitness reimbursement and time off to volunteer. 

Social events 
With offices around the world and flexible work arrangements, OpenText strives to make sure all our employees feel connected. Teamwork extends to our social lives too from local social events to company-wide activities, we want our employees to take time to relax and have fun.  

Corporate Citizenship  
Corporate Citizenship is more than a program for us, it is engrained in our purpose, impact, and approach to doing business. Through numerous volunteer initiatives, we support education and innovation for global change.

Explore your career and your potential. Become an OpenText Voyager.

Apply now »