OPENTEXT - THE INFORMATION COMPANY
OpenText is a global leader in information management, where innovation, creativity, and collaboration are the key components of our corporate culture. As a member of our team, you will have the opportunity to partner with the most highly regarded companies in the world, tackle complex issues, and contribute to projects that shape the future of digital transformation.
AI-First. Future-Driven. Human-Centered.
At OpenText, AI is at the heart of everything we do—powering innovation, transforming work, and empowering digital knowledge workers. We're hiring talent that AI can't replace to help us shape the future of information management. Join us.
Your Impact:
We are part of OpenText Cybersecurity Enterprise division specializing in Threat Detection and Response Domain. Our product helps security operations teams to efficiently and effectively preempt and respond to threats that matter with proactive threat hunting, real-time threat detection, and response automation.
We are seeking a detail-oriented and technically proficient Analystto join our team. This role is critical in ensuring accurate enrichment of security events, enabling effective threat detection, correlation, alerting, and reporting across the SIEM platform.
What the role offers:
- Analyze and categorize security event data from various log sources
- Develop and maintain categorization mappings for new and existing log sources to ensure consistent event normalization.
- Enrich ArcSight events with contextual metadata (e.g., asset information, user identity, location, business relevance).
- Work with Asset management, IAM, and CMDB teams to integrate contextual data sources.
- Ensure consistent normalization and categorization of events to support use case development and alerting.
- Perform quality assurance on categorization mappings to ensure alignment with taxonomy and compliance requirements.
- Provide support and troubleshooting for issues in production environments.
What you need to succeed:
- Bachelor's degree in Computer Science, Information Security, or related field.
- 6+ years of experience working with any SIEM platforms.
- Strong understanding of event taxonomy and contextual information that is required in SOC environment
- Experience with log source onboarding and event normalization.
- Familiarity with scripting languages (e.g., Python, Bash) for automation and data parsing.
- Excellent analytical and problem-solving skills.
- Strong communication and documentation abilities.
- Experience with any SIEM platforms (ArcSight, Splunk, QRadar, etc.) and log management tools.
- Knowledge of cybersecurity frameworks (MITRE ATT, NIST, etc.).
- Exposure to threat detection and incident response workflows.
OpenText's efforts to build an inclusive work environment go beyond simply complying with applicable laws. Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws.
If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please contact us athr@opentext.com. Our proactive approach fosters collaboration, innovation, and personal growth, enriching OpenText's vibrant workplace.
