Senior Security Engineer

The opportunity: The Security Engineer will fully understand a wide array of securityprocesses and concepts. The Security Engineer leads the development and implementation of a critical program that identifies and manages OpenText's Threat and Vulnerability Management (TVM) program delivering protection capabilities and solutions to reduce IT security related risks. This role is responsible for working directly across multiple teams, management levels, disciplines, technologist, and business groups. This is a hands-on role that will require detailed knowledge of security concepts, security services, and common security issues. You are great at: o Owning and delivering a risk based plan and roadmap for threat & vulnerability management services across global Commercial and Corporate infrastructures o Partnering with the IT and engineering stakeholders to identify, understand and patch or otherwise mitigate security threats to support business needs o Delivers expert capabilities and direction for threat & vulnerability management services o Developing and delivering required threat & vulnerability management reporting capabilities o Managing third party network and application security assessments o Performing in-depth analysis of current threat activity and trends o Identifying and resolving false positive findings in assessment results o Providing support for audits and gathering of artifacts for ISO27001, PCI, SOC1 & SOC2, etc. o Lead and deliver reporting and metrics including Key Risk Indicators (KRI's) as required. o Documenting process and procedures related to all aspects of a threat & vulnerability management program What it takes: o 7+ years' experience in working in IT Security o 4+ years' experience in working as a threat & vulnerability management expert o Expert level familiarity with enterprise vulnerability management tools, such as Qualys, Rapid insightVM, Rapid7 Nexpose or Tenable Nessus o Scripting experience (Python preferred) to automate repeatable tasks using vendor APIs o Willingness to explore using open-source or in-house developed tools for vulnerability management services and reporting o Demonstrated experience building, enhancing and managing vulnerability management programs o Experience providing mentorship to other Security team members o Expert in the ability to communicate to advanced technical teams as well as brief executive management on technical risks and issues, including assessment of compensating controls o Experience creating and refining metrics to articulate and measure program performance o Experience with system hardening and secure configuration frameworks o Able to work independently and efficiently, as well as with others, to meet deadlines Ref#: 20168
Salary Range: NA
Minimum Qualification
8 - 10 years

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.