Lead Security Analyst

Description:

• Leading the security design of OpenText Public cloud infrastructure, including AWS, Azure and GCP from a Protected-B compliance lens.
• Planning, testing, and implementing security solutions for the monitoring and protection of company assets in the cloud.
• Deployment, management, and optimization of cloud and container security tools such as Prisma Cloud (RedLock/Twistlock), Lacework, Sysdig, etc.
• Detailed understanding of securing the end-to-end image/container lifecycle from image build to production deployment.
• Build methods to advance automation and security for cloud and container-based applications to realize DevSecOps CI pipelines.
• Understanding of Kubernetes and Docker security
• Analyzing incident requirements for security tools and technology (Use-cases for SIEM, Endpoint Protection, Vulnerability Management, DLP, perimeter security, DDoS, other).
• Developing standards, policies, and procedures as well as best practices documentation.
• Providing direction and guidance on OpenText’s security requirements and standards for use in cloud environments.
• Automating security controls to streamline operational services and support.
• Identifying processes/procedures for how to handle a cloud security event, including forensic isolation and mitigation with Digital Forensics and Incident Response (DFIR/IR) teams.
• Identifying new security threats by conducting continual monitoring, security testing, vulnerability assessments and log analysis.
• Performing other duties and responsibilities necessary.

What it takes:

• BS in Computer Science, Cyber Security, Information Assurance, or Information Security preferred.
• Minimum of 5 years of IT Security and/or security engineering experience, with a focus on Cloud Security and Cloud technologies.
• Proficiency in a scripting language such as Python, PowerShell, or Bash
• Experience with selecting, designing, and implementing security tools and capabilities for large, complex commercial organizations with focus on cloud security.
• Experience with containers and knowledge of Kubernetes and Docker.
• Experience with Linux and Windows environments
• Experience with security services for Anti-Virus, Threat and Vulnerability Management, Unified Threat Management, SIEM, DOS/DDOS, and other tools and services.
• Understanding of compliance frameworks, like PCI, ISO 27001, NIST, FedRAMP etc.
• Able to demonstrate clear understanding of current threats to Cloud infrastructure and/or IT infrastructures at technical and managerial levels.
• Strong written and presentation skills with the ability to communicate effectively with diverse technical and non-technical groups, spanning all organizational levels.
• Must be able to work in a fast paced and changing environment while handling multiple tasks, priorities, and directives. Capable of working under pressure.
• CCSP, CISSP, GCIH, CISM, or other relevant industry certifications preferred.
• Experience and knowledge with Protected B classification preferred.
• Canadian Government Reliability status (protected) clearance preferred.