Lead Security Analyst

Description:

OpenText, a global leader in information management, is seeking a Lead Security Analyst to join their Security Operations Centre (SOC) in Waterloo, ON. OpenText’s Global Information Security (GIS) team ensures the reliability of enterprise systems, protects customer data, and drives digitalization initiatives across the organization. This hands-on role focuses on monitoring, analyzing, and responding to cyber threats in real-time, leveraging advanced security tools, AI, and machine learning to proactively detect and remediate incidents.

Key Responsibilities:

• Monitor, analyze, and respond to security incidents across endpoints, servers, and networks.

• Manage security cases and correlate logs from SIEM, system, and network sources to detect threats in real time.

• Conduct risk analysis, security reviews, and controls assessments ensuring compliance with ISO 27001, SOC 2, HIPAA, and SOX.

• Develop and maintain operational processes, guides, playbooks, and procedures aligned with security standards and policies.

• Utilize AI/ML tools for anomaly detection, threat hunting, and developing AI-driven incident response playbooks.

• Generate security event metrics, analyze gaps, and produce reports to improve SOC performance and threat intelligence.

• Stay updated on security advisories and recommend appropriate response actions.

Required Qualifications & Skills:

• Eligibility for Secret Level Security Clearance with the Government of Canada.

• 8–12 years of professional experience in cybersecurity, with at least 2 years in cybersecurity operations.

• Hands-on experience with SIEM platforms (LogRhythm, ArcSight, Splunk, Microsoft Sentinel).

• Proficiency in vulnerability assessment tools (Nessus, Qualys, Rapid7) and EDR solutions (CrowdStrike, SentinelOne, Microsoft Defender ATP).

• 3+ years of experience with AI/ML-based security tools for threat detection and incident analysis.

• Strong troubleshooting, problem-solving, and research skills.

• Familiarity with information security concepts, standards, and best practices.

• Bachelor’s degree in Cybersecurity, Information Systems, or related field preferred.

• Preferred certifications: CISSP, CISM, CISA, GIAC (GCIA, GCIH, GCFA), or CEH.