OPENTEXT - THE INFORMATION COMPANY

As the Information Company, our mission at OpenText is to create software solutions and deliver services that redefine the future of digital. Be part of a winning team that leads the way in Enterprise Information Management.

Senior Security Analyst (Threat Hunting and Detection)

ENABLING THE DIGITAL WORLD

OpenText enables the digital world by simplifying, transforming, and accelerating enterprise information needs, on premises or in the cloud. We embrace all things digital and are committed to being the Best Place to Work for our Employees in over 140 locations around the world.

We obsess over our customers to ensure they are wildly successful in embracing the Digital World. Our customers entrust us with their most important information, we need to be their most trusted partner. What we do, we do well. What we create, we do purposefully to impact the world. If you believe in this and are passionate about enabling the Digital World then let OpenText turn your career vision into reality.

The Opportunity:

The Threat Hunting Analyst is a key member of Open Text's Cyber Security team and will possess strong operational and analytical experience in Threat Hunting and Detection Engineering. This position will support maturing the Threat Hunting program. The successful candidate will develop threat detection and analysis techniques from Threat Intelligence, threat trends and security tools to drive improvements in security monitoring and alerting capabilities. This hands-on role requires deep technical knowledge of security monitoring, security operations, network and systems analysis, threat modeling and threat detection.

You are great at:

• Researching and understanding Cybersecurity threats, threat actors, trends in adversary activities, attack vectors and Tactics, Techniques and Procedures (TTPs).
• Using threat modeling and attack frameworks to develop detection mechanisms for a variety of security tools and technologies to identify, detect and respond to malicious activity.
• Leveraging intelligence derived from Threat Hunting to improve overall Security Operations, tool visibility, threat awareness, and detection and response.
• Supporting the implementation and consistent operation of the Threat Hunting program.
• Assisting and initiating security program improvements and efficiencies across security technologies, processes, and services.
• Optimizing security tools deployment and introducing scalable security services.
• Building and coordinating plans for transition and integration of an acquired company's security operations, tools, services, and processes.
• Continually building automation and tooling capabilities for the deployment and management of our internal security services.
• Driving continuous improvement of the acquisition security integration playbook.
• Proactively search for Threats to prevent or minimize Cybersecurity attacks.
• Ability to communicate to technical and management levels.
• Interpret and analyze data from multiple sources, providing key analytics.
• Document findings in an easy-to-read format.
• Perform other duties and responsibilities necessary.

What it takes:

• BS in Computer Science, Cyber Security, Information Assurance, or Information Security preferred.
• 7+ years of experience and demonstrated success in security and infrastructure and cloud.
• 3+ years technical project management experience, including experience leading large-scale, demanding, and information security projects.
• 7+ years experience in technical skills with IT security components, including firewalls, UTM, ATP, TVM, IAM, security analytics, server operating systems, and other industry-standard techniques and practices.
• Have a diverse knowledge base and hands-on experience with a combination of two or more subject matter areas: Digital Forensic, Incident Response, Security Operations Center, and Threat Hunting.
• Supplemental hands-on experience with Root Cause Analysis, Data Analytics, Intelligence Analysis, malware reversing, network and endpoint security, adversary tracking, and other security-related tasks is an added benefit to the Team.
• Demonstrated experience generating metrics to measure service and program effectiveness.
• Strong written and presentation skills with the ability to communicate effectively with diverse technical and non-technical groups, spanning all organizational levels.
• Must be able to work in a fast paced and changing environment while handling multiple tasks, priorities, and directives. Capable of working under pressure.
• CISSP, GCIH, CISA, CISM, or other industry certifications preferred.
• Experience with MITRE ATT&CK framework preferred.
• Hands-on experience with programming and query languages: Python, Shell Code, YARA, SQL
• Knowledge of Confluence and Jira
• Experience with Windows and Linux OS
• Experience with EDRs and SIEMs
• Knowledge of Cloud environments: AWS, Azure, and Google Cloud
• Hands-on experience with teaching and mentoring other team members.
• Knowledge of industry standard System Engineering principles and Configuration Management practices

Work Location

The location for the position is in Canada, Alpharetta, GA, Brook Park, OH, other US locations

While OpenText is an Equal Opportunity Employer, our efforts to build an inclusive work environment go beyond simply complying with applicable laws. Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws. Should you require accommodations during the selection process, please contact [email protected].