Principal Security Compliance Analyst - Compliance Strategy

OPENTEXT - THE INFORMATION COMPANY

As the Information Company, our mission at OpenText is to create software solutions and deliver services that redefine the future of digital. Be part of a winning team that leads the way in Enterprise Information Management. 

The Opportunity

The Principal, Security Compliance Analyst will have the opportunity to make meaningfully contributions to the OpenText Compliance Program in accordance with various security frameworks, including and not limited to SOC1/2/3, ISO 27001, ISO27017, FedRAMP, SWIFT, HIPAA, and SOC2+HITRUST frameworks. The Principal Security Analyst plays a key role in the continued development and maturity of an ever-growing Security Compliance Program that supports the delivery of compliance certifications and customer security requirements. In this role, you will be involved in managing and sustaining the various compliance programs by working collaboratively with Product, Cloud Operations, internal teams, auditors and other stakeholders.

You Are Great At

• Familiar with Information Security principles, knowledge of IT processes (e.g. Change Management, Incident Management, Risk Management, Network and System Administration).
• Experience collaborating with non-compliance professionals and senior leadership, advocating and educating the organization on compliance values and requirements.
• Partner with product and operation teams to align on compliance roadmaps and execution.
• Collaborate cross-functionally with technology and business stakeholders to drive, track, and resolve all aspects of compliance readiness and audit execution.
• Track and maintain the overall compliance scope, including products and services that are within audit scope.
• Understanding of evaluating the design and effectiveness of IT controls and experience working with auditors/regulators for compliance assessments.
• Experience leading preparation for and/or managing assessment activities (ISO 27001, SOC reporting, HIPAA/HITRUST, etc.) for assigned cloud services through assessment planning, assessment fieldwork, and final report delivery.
• Influence and Interface with external auditors, articulating control implementation and impact, and establishing considerations for applying security and compliance concepts to a technical cloud environment.
• Identify and track process improvement efforts, and articulate impact to customers and contractual commitments.
• Participating in, or potentially leading, gap assessment, compliance readiness, and compliance monitoring activities. 

What It Takes

• 7+ years of experience in IT audit and/or compliance, with a concentration on leading multiple, simultaneous audit engagements in large Cloud Service Provider environment, encompassing multiple frameworks.
• Partner with OpenText stakeholders strategically to increase the Compliance outreach and impact within the company, and better support customer security certification requirements.
• Collaborate with Product teams to develop new product and compliance certification strategies to support customer commitments.
• Collaborate across various business units to build OpenText customer trust websites to support sales and pre-sales activities.
• Ability to independently research and translate new security frameworks and requirements into impact and effort estimates for the compliance delivery team.
• Support compliance communications with senior leadership on compliance governance, key project updates, and education/roadshows.
• Strong technical, analytical, interpersonal, communication and writing skills.
• Ability to work both independently and within a global team environment.
• Big 4 and public accounting experience is highly preferred.
• Strong personal characteristics as demonstrated by the following: achievement-oriented, self-controlled, self-confident, collaborative, flexible, approachable, and dedicated. 
• Required industry standard certifications (CISSP, CISA) or equivalent.
• Bachelor’s Degree in Information Technology, Business or related vocations.

OpenText's efforts to build an inclusive work environment go beyond simply complying with applicable laws. Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please contact us at hr@opentext.com.