Sr. Security Analyst

Open Text Corporation•Waterloo, ON

14h•$86,800 - $130,200

About The Position

Global Information Security and Privacy (GISP) leverages our people, processes and technology to develop new digitalization efforts that ensure our enterprise systems’ reliability, minimize staff interaction, and most importantly, protect our customers’ data. Companies are recognizing the need to digitize information and manage alternative work scenarios in today’s changing reality. With this in mind, we work tirelessly to drive improvements across our security services and accelerate our customers’ digital journey in a safe and trusted environment. Security Governance and Sales Support protects and streamlines our global operations by crafting and upholding a thorough security governance program in line with top industry standards and practices. We focus on handling all security requests, including contract reviews to audits, related to sales swiftly and effectively, ensuring the security and privacy of our clients. We're proactive in identifying and reducing security risks with ongoing monitoring and constant improvement of security measures and guidelines. Building a culture of security awareness and responsibility within our team and among our partners is key to us, as is being a dependable resource for our sales teams. A Sr. Security Analyst role at OpenText is more than just a job; it's an opportunity to impact lives. As a key contributor, you will understand a wide array of security processes and concepts. You will be involved in monitoring, responding, and protecting information assets by working collaboratively with internal teams, SMEs, external customers, auditors, and other stakeholders. Opportunities exist in the areas of Governance & Risk, Operations, Compliance, and Disaster recovery. You will be encouraged to cultivate an engineering mindset, driving innovative security solutions and processes that address real-world problems and shape the future.

Requirements

Minimum 3+ years of experience in cybersecurity governance, risk management, or compliance.
Strong understanding of vulnerability management, phishing simulation tools, and security awareness platforms.
Proven experience working with Works Councils/Unions and cross-functional teams across IT, HR, and Security Operations.
Familiarity with audit controls and regulatory frameworks, including: NIST 800-53, ISO/IEC 27001, 27017, 27018, SOC 1 / SOC 2, PCI-DSS, FedRAMP, HIPAA, Protected B (ITSG-33)
Excellent written communication skills, with the ability to produce high-quality executive and customer-facing deliverables.
Demonstrated ability to manage multiple priorities in a fast-paced, dynamic environment.
CGEIT, CISA, CISM, CISSP, ITIL, or other relevant IT/security certifications.

Responsibilities

Collaborate with internal Vulnerability Management and Networking teams to remediate risks flagged by TPRM platforms.
Respond promptly to customer security inquiries during sales negotiations to support deal closure.
Maintain documentation and communication workflows to ensure transparency and trust with external stakeholders.
Design and deploy quarterly phishing simulations, including template creation and Works Council approvals; coordinate with IT and Security Operations (Incident Response).
Conduct post-campaign analysis and remedial training, reporting metrics (click rates, report rates) to stakeholders.
Partner with HR and Works Councils to plan, develop, and refresh annual mandatory security awareness and compliance training; monitor completion and escalate non-compliance.
Create and manage audit artifacts for governance reviews, including Mega and Cloud for Government audits; gather and validate evidence per regulatory and customer requirements.
Author customer-facing security communications (e.g., whitepapers) articulating OpenText’s security posture and compliance with Cyber Security Regulations such as NIS 2 and DORA; support executive-level reporting (CISO Dashboard, Board updates, M&A metrics).