Principal Security Analyst - SOC

Hiring Manager: Mike Nappi

Talent Acquisition Advisor: Jess Bougie

Job Code Level: IYP5

Refer Your Friends!

**This role requires eligibility for Seceret Level Security Clearance with the Government of Canada**

Global Information Security (GIS) leverages our people, processes and technology to develop new digitalization efforts that ensure our enterprise systems’ reliability, minimize staff interaction, and most importantly, protect our customers’ data. Companies are recognizing the need to digitize information and manage alternative work scenarios in today’s changing reality. With this in mind, we work tirelessly to drive improvements across our security services and accelerate our customers’ digital journey in a safe and trusted environment.

Security Operations is the team that handles day to day protection of our environment and the tools that support them. This team takes care of identifying security weaknesses and facilitates remediation efforts. Additionally, this team monitors networks to assesses abnormal behaviors and manages security incidents to allow for execution of response processes.

Your Impact:

As a Security Analyst within the SOC, you will be responsible for monitoring, analyzing, and responding to cyber threats in real time. Leveraging advanced security tools and techniques, you will perform in-depth log analysis, investigate security incidents, and support proactive threat hunting efforts to strengthen OpenText’s security posture. This is a hands-on role that will create, maintain, and follow detailed operational processes and procedures to appropriately analyze, escalate, and assist in remediation of information security incidents. You will also proactively search for, and handle, threats, and abnormal activities within the environment.

What the role offers:

As a Principal Security Analyst, you will:

• Lead the security design of OpenText Public cloud infrastructure, including AWS, Azure and GCP.
• Plan, test, and implement security solutions for the monitoring and protection of company assets in the cloud.
• Deploy, manage, and optimize cloud and container security tools such as Prisma Cloud (RedLock/Twistlock), Lacework, Sysdig, etc.
• Secure the end-to-end image/container lifecycle from image build to production deployment.
• Design and propose advanced AI-driven detection methodologies to identify sophisticated threats and attack patterns across enterprise systems
• Lead the evaluation and continuous improvement of machine learning models used for threat intelligence and anomaly detection
• Build methods to advance automation and security for cloud and container-based applications to realize DevSecOps CI pipelines, especially using Terraform
• Analye requirements for security tools and technology (SIEM, Endpoint Protection, Vulnerability Management, DLP, perimeter security, DDoS, other).
• Automate security controls to streamline operational services and support.
• Identify new security threats by conducting continual monitoring, security testing, vulnerability assessments and log analysis.
• Possess 12-15 years of previous professional experience.

What you need to Succeed:

• Familiarity with key information security concepts, standards, and industry best practices.
• Hands-on experience with SIEM platforms (LogRhythm, ArcSight, Splunk, Microsoft Sentinel) for threat detection and correlation.
• Proficiency in vulnerability assessment tools (Nessus, Qualys, Rapid7) and EDR solutions (CrowdStrike, SentinelOne, Microsoft Defender ATP).
• 5+ years of security analysis experience with specialized knowledge in applying AI/ML techniques to threat hunting and incident investigations
• Demonstrated ability to create and refine AI algorithms for identifying zero-day vulnerabilities and emerging attack vectors in large-scale environments
• Strong troubleshooting, problem-solving, and research capabilities to assess security incidents and risks.
• Bachelor’s degree in Cybersecurity, Information Systems, or related field preferred, with 2+ years in cybersecurity operations.
• Certifications (Preferred): CISSP, CISM, CISA, GIAC (GCIA, GCIH, GCFA), or CEH.
• Must be eligible for Secret Level Security Clearance

One last thing:

OpenText is more than just a corporation, it's a global community where trust is foundational, the bar is raised, and outcomes are owned.

Join us on our mission to drive positive change through privacy, technology, and collaboration. At OpenText, we don't just have a culture; we have character. Choose us because you want to be part of a company that embraces innovation and empowers its employees to make a difference.

OpenText's efforts to build an inclusive work environment go beyond simply complying with applicable laws. Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws.

If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please submit a ticket at Ask HR.Our proactive approach fosters collaboration, innovation, and personal growth, enriching OpenText's vibrant workplace.