Talent.com
Lead Security Compliance Analyst

Lead Security Compliance Analyst

OpenTextNorth Sydney Council, New South Wales, Australia
3 days ago
Job description

OpenText - The Information Company

OpenText is a global leader in information management, where innovation, creativity, and collaboration are the key components of our corporate culture. As a member of our team, you will have the opportunity to partner with the most highly regarded companies in the world, tackle complex issues, and contribute to projects that shape the future of digital transformation.

AI-First. Future-Driven. Human-Centered. At OpenText, AI is at the heart of everything we do—powering innovation, transforming work, and empowering digital knowledge workers. We\'re hiring talent that AI can\'t replace to help us shape the future of information management. Join us.

The Opportunity

The Lead Security Analyst will have the opportunity to meaningfully contribute to the OpenText Compliance Program and play a key role in the continued development and maturity of an ever-growing Security Compliance Program that leads the delivery of compliance certifications that support customer security requirements.

In this role, you will be involved in leading and sustaining the Australian Information Security Registered Assessors Program (IRAP) framework by working collaboratively with internal teams, SMEs, external customers, vendors, auditors and other stakeholders. You will lead the IRAP compliance program and contribute to other public sector certifications. The Lead Security Analyst will provide advisory services to internal stakeholders, engage with government clients and agencies, plan and execute the IRAP gap assessment prior to the IRAP assessment, and manage the full IRAP lifecycle.

You Are Great At

  • Setting strategic direction for audit readiness, managing compliance programs, driving continuous improvement activities, delivering dashboarding & reporting metrics
  • Interfacing with stakeholders, articulating control implementation and impact, and establishing considerations for applying security and compliance concepts to a technical cloud environment
  • Effectively communicating compliance program results, including assessment status, workflow, remediation, and reporting, to a broad audience including peers and senior leaders
  • Leading small teams by assigning and tracking individual tasks and ensuring the team meets milestones and addresses / escalates challenges
  • Supporting delivery of audit milestones to ensure audit timelines stay on target by proactively identifying and coordination resolution of roadblocks, compliance risk
  • Timely escalations of roadblocks and issues that impact compliance progress and timelines
  • Coordinating the overarching annual audit plan with internal and external auditors to support delivery of multiple, simultaneous audits and certifications (both new and existing) within the Open Text portfolio
  • Collaborating cross-functionally with technology and business stakeholders to drive, track, and resolve all aspects of compliance readiness and audit execution

What It Takes

  • 7+ years of experience in IT, InfoSec, and audit / compliance, with a concentration on leading multiple, simultaneous audit engagements for a Cloud Service Provider
  • Familiar with the IRAP authorization process, development, and maintenance of core documents such as the Information Security Manual (ISM)
  • Extensive knowledge / experience with identification, analysis, tracking, reporting, and remediation of vulnerabilities
  • Automation first philosophy with the ability to identify and solution opportunities that reduce manual effort
  • Strong technical skills around cloud, containers, GRC tools, and security tools
  • Support the building and operation of an IRAP program and environment that integrates with a larger Federal Authorization program (FedRAMP, Protected B, etc.)
  • Support activities such as security architecture reviews, risk assessments, continuous monitoring, DR / BCP
  • Strong ability to communicate complex technical information and compliance requirements to leadership and stakeholders
  • Experience working in a large CSP organization and with Australian Government
  • Strong personal characteristics as demonstrated by the following : Owner’s mindset, achievement-oriented, self-controlled, self-confident, flexible, approachable, and dedicated.
  • Must have or be willing to obtain Baseline Security Clearance Certificate
  • Required industry standard certifications (CISSP, CISA) or equivalent.
  • Bachelor’s and master’s degree in Information Technology, Business, or related vocations.

    • OpenText\'s efforts to build an inclusive work environment go beyond simply complying with applicable laws. Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws.

    If you need assistance and / or a reasonable accommodation due to a disability during the application or recruiting process, please contact us at hr@opentext.com. Our proactive approach fosters collaboration, innovation, and personal growth, enriching OpenText\'s vibrant workplace.

    Seniority level

    Mid-Senior level

    Employment type

    Full-time

    Job function

    Legal

    Industries

    Software Development

    Note : This description focuses on the lead security analyst responsibilities, required qualifications, and OpenText\'s inclusion policy. Other job postings or incidental location mentions have been removed to improve clarity and formatting.

    Compliance-focused candidates are encouraged to apply. If you need assistance with accessibility or accommodations, contact hr@opentext.com.

    #J-18808-Ljbffr

    Create a job alert for this search

    Compliance Analyst • North Sydney Council, New South Wales, Australia