
Incident Response Analyst
2 days ago
As the global leader in high-speed connectivity, Ciena is committed to a people-first approach. Our teams enjoy a culture focused on prioritizing a flexible work environment that empowers individual growth, well-being, and belonging. We're a technology company that leads with our humanity—driving our business priorities alongside meaningful social, community, and societal impact.
The Security Organization
The Security team at Ciena is a tightly knit group of skilled professionals who share the same passion for defending against cyber criminals. With the increase in volume and sophistication of cyber-crime, we are growing and have tons of exciting work planned.
Key Responsibilities
- Incident Response Leadership
- Lead the detection, containment, eradication, and recovery phases of cybersecurity incidents in collaboration with the SOC and other teams.
- Coordinate and facilitate the Extended Security Incident Response Team (ESIRT) during high-severity incidents.
- Develop and maintain incident response playbooks, procedures, and workflows to improve readiness and efficiency.
- Digital Forensic Analysis
- Perform host forensic analysis on Windows based systems.
- Conduct network forensics by leveraging disparate log sources to include firewall logs, NetFlow, full packet capture, and various intrusion detection/prevention logs.
- Leverage available tooling to contain and eradicate a threat actor's presence from the network when responding to live intrusion events.
- Understand the capabilities of malicious binaries and scripts through usage of sandbox environments and static analysis.
- Tabletop Exercises (TTXs)
- Design, develop, and lead regular Tabletop Exercises (TTXs) to test and enhance the organization's incident response capabilities.
- Evaluate the performance of participants during TTXs and provide actionable feedback for improvement.
- Maintain detailed records and reports of TTX outcomes to guide future training and preparedness.
- Proactive Threat Hunting
- Conduct regular proactive threat-hunting activities to identify potential risks, vulnerabilities, and indicators of compromise (IOCs).
- Utilize advanced tools, techniques, and threat intelligence to uncover malicious activity within the environment.
- Collaborate with the SOC to refine detection mechanisms and improve response capabilities based on threat-hunting findings.
- Collaboration and Communication
- Work closely with the SOC, Security Architecture, IT, and other teams to enhance incident response and threat-hunting processes.
- Serve as a liaison between technical teams and executive stakeholders during incidents, providing clear and concise updates.
- Represent the organization in external threat-sharing communities and partnerships to stay ahead of emerging threats.
- Process Development and Maintenance
- Continuously improve incident response processes and threat-hunting methodologies.
- Ensure compliance with relevant regulations, industry standards, and company policies in all incident response activities.
- Maintain detailed and accurate documentation of incidents, investigations, and lessons learned.
Qualifications
- Education:
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field or equivalent experience.
- Relevant Certifications pertaining to DFIR are desirable but not required.
- Experience:
- 3-5+ years of experience in cybersecurity, with a focus on incident response and threat hunting.
- Experience in Digital Forensics and Incident Response ("DFIR") consulting or IR within a global organization is highly desirable.
- Skills
- Strong knowledge of incident response methodologies, threat-hunting, cyber threat intelligence research, and cybersecurity tools (e.g., SIEM, EDR, forensic tools).
- Familiarity with digital forensics and Windows based artifacts.
- Strong understanding of attacker Tactics, Techniques, and Procedures ("TTPs").
- Proficiency in scripting and automation (e.g., Python, PowerShell) is a plus.
- Strong analytical, communication, and organizational skills.
- Other Requirements:
- Ability to work effectively in a fast-paced, 24/7/365 environment, including participating in on-call rotations as needed.
- Strong problem-solving skills with a focus on collaboration and teamwork.
- Experience designing and leading Tabletop Exercises is a significant advantage.
Not ready to apply? Join our
Talent Community
to get relevant job alerts straight to your inbox.
At Ciena, we are committed to building and fostering an environment in which our employees feel respected, valued, and heard. Ciena values the diversity of its workforce and respects its employees as individuals. We do not tolerate any form of discrimination.
Ciena is an Equal Opportunity Employer, including disability and protected veteran status.
If contacted in relation to a job opportunity, please advise Ciena of any accommodation measures you may require.
-
Incident Response Analyst
3 weeks ago
Manila, National Capital Region, Philippines Baker & McKenzie Rechtsanwaltsgesellschaft mbH Full timeThe Incident Response Analyst will provide detection, containment, and analysis of security events to protect the confidentiality, integrity, and availability of information systems in accordance with the firm's business objectives, regulatory requirements, and strategic goals.ResponsibilitiesProvide Tier 2 incident response services to the global...
-
Incident Response Analyst
4 days ago
Manila, National Capital Region, Philippines Ciena Full time ₱1,200,000 - ₱2,400,000 per yearAs the global leader in high-speed connectivity, Ciena is committed to a people-first approach. Our teams enjoy a culture focused on prioritizing a flexible work environment that empowers individual growth, well-being, and belonging. We're a technology company that leads with our humanity—driving our business priorities alongside meaningful social,...
-
Senior Security Incident Response Analyst
4 days ago
Manila, National Capital Region, Philippines Five9 Full time ₱1,200,000 - ₱2,400,000 per yearJoin us in bringing joy to customer experience. Five9 is a leading provider of cloud contact center software, bringing the power of cloud innovation to customers worldwide.Living our values everyday results in our team-first culture and enables us to innovate, grow, and thrive while enjoying the journey together. We celebrate diversity and foster an...
-
Incident Response Specialist
3 weeks ago
Manila, National Capital Region, Philippines QBE Insurance Group Full timeIncident Response Specialist page is loadedIncident Response SpecialistApply locations PHI - Manila time type Full time posted on Posted Yesterday job requisition id 341283Primary DetailsTime Type: Full timeWorker Type: EmployeeIncident Response Specialist, Group CyberReporting to the GSOC Lead, the Incident Response Specialist will be a key member of our...
-
Cybersecurity Incident Response Analyst
2 days ago
Manila, National Capital Region, Philippines SGL Manila (Shared Service Center), Inc. Full time $70,000 - $120,000 per yearTechnical Skills and Experience:Practical experience with email system security, including phishing prevention, spam filtering, and email security protocols.At least 2 years of experience with security incident monitoring, with the ability to identify and assess significant security events.Familiarity with security information and event management (SIEM)...
-
Incident Response Senior Associate
4 weeks ago
Manila, National Capital Region, Philippines DTCC Full timeAre you ready to make an impact at DTCC?Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We're committed to helping our employees grow and succeed. We believe that you have the skills and...
-
Incident Response Senior Associate
2 hours ago
Manila, National Capital Region, Philippines The Depository Trust & Clearing Corporation (DTCC) Full time ₱1,200,000 - ₱2,400,000 per yearAre you ready to make an impact at DTCC?Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We're committed to helping our employees grow and succeed. We believe that you have the skills and...
-
Incident Response Senior Associate
4 days ago
Manila, National Capital Region, Philippines Depository Trust & Clearing Corporation Full time ₱900,000 - ₱1,200,000 per yearAre you ready to make an impact at DTCC?Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We're committed to helping our employees grow and succeed. We believe that you have the skills and...
-
Computer Security Incident Response Team
4 days ago
Manila, National Capital Region, Philippines Ascendion Full time ₱900,000 - ₱1,200,000 per yearOn a day-to-day basis, you will assist with, identify and respond to incidents as well as proactively propose improvements for how to reduce risk and potential future incidents.Receiving and monitoring incident information from our managed security services and other sources.Reviewing the collected incident data and confirming or rejecting incidents based on...
-
Incident Manager
4 days ago
Manila, National Capital Region, Philippines TENTEN Partners Full time ₱4,200,000 per yearJoin us in partnership with a leading financial institution to hire anIncident Managerresponsible for safeguarding mission-critical systems and ensuring seamless operations.You will serve as thecentral point of contact for managing major incidents, leading high-pressure recovery efforts across cross-functional teams. Your leadership will ensure rapid...