Senior SOC Analyst
4 days ago
As the global leader in high-speed connectivity, Ciena is committed to a people-first approach. Our teams enjoy a culture focused on prioritizing a flexible work environment that empowers individual growth, well-being, and belonging. We're a technology company that leads with our humanity—driving our business priorities alongside meaningful social, community, and societal impact.
The Security Organization
The Security team at Ciena is a tightly knit group of skilled professionals who share the same passion for defending against cyber criminals. With the increase in volume and sophistication of cyber-crime, we are growing and have tons of exciting work planned.
Your Role
In this role, the Senior SOC Analyst will respond to and actively monitor for security events. The analyst will perform tasks including monitoring, research, classification, and analysis of security events that occur on the network or endpoint. This may require working extra hours on an as needed basis.
You will be expected to detect and respond to information security incidents, develop, maintain, and follow procedures for security event alerting, and participate in security investigations. You need to have hands-on experience with email, endpoint, network threat detection, remediation, and threat hunting.
You should have familiarity with the principles of network and endpoint security, current threat and attack trends, a basic understanding of the OSI model, and have a working knowledge of defense in depth strategies.
You will be responsible for various activities within the security incident response lifecycle including detection, analysis, containment, eradication, recovery, and incident post-mortem reviews. You will be expected to thoroughly document their investigations and response actions within the SIEM and ticketing platform.
You will assist with development of new security alerts and tuning existing alerts for improving detection accuracy. You will also be responsible for performing proactive threat hunting, vulnerability, and threat intelligence research as well as reviewing threat intelligence reports from our security partners.
Operations
- Monitor SIEM, EDR, and other security tools for detection and identification of security events
- Document security investigations in a clear and consistent manner
- Develop new use cases for security alerts
- Tune existing use cases to improve accuracy
- Tune endpoint and network security tools as needed
- Perform threat hunting to identify potential security threats
- Perform vulnerability and threat intelligence research
- Review threat intelligence reports
- Ability to work after hours if needed
Security Event Response
- Perform security anomaly and event detection
- Investigate, contain, and resolve security anomalies and events
- Perform threat attribution
- Identification of likely threat vector for security events and incidents
Minimum Qualifications
- Ability to read, write, speak and understand the English language to communicate with employees, customers, suppliers, in person, on the phone, and by written communications in a clear, straightforward, and professional manner
- Experience working with multiple SIEM, EDR, Log Aggregators, and Incident Response Management solutions
- Strong technical knowledge of Networking, Operating Systems, and enterprise integrations
- Firm understanding of the security incident lifecycle
- Thorough understanding of TCP/IP
- Understand IDS / IPS rules to identify and/or prevent malicious activity
- Basic knowledge of forensic methodologies and best practices to investigate intrusions, preserve evidence and coordinate a unified security response
- Ability to proactively perform threat hunting to identify undetected security events
- Basic knowledge of malware analysis
- Basic understanding of SQL
- Understanding of Packet Analysis (PCAP) and Packet Analysist software
Preferred Qualifications
- Bachelor's degree in Cybersecurity, Computer Engineering, Information Technology, or related field.
- Candidate will possess ability to be a successful self-starter
- Understanding of Advanced Persistent Threats
- Experience with Python, PowerShell, and API programming is a plus
- Understanding of the VERIS and MITRE ATT&CK frameworks is a plus
Not ready to apply?
Join our Talent Community to get relevant job alerts straight to your inbox.
At Ciena, we are committed to building and fostering an environment in which our employees feel respected, valued, and heard. Ciena values the diversity of its workforce and respects its employees as individuals. We do not tolerate any form of discrimination.
Ciena is an Equal Opportunity Employer, including disability and protected veteran status.
If contacted in relation to a job opportunity, please advise Ciena of any accommodation measures you may require.
-
Practice Lead – Microsoft SOC
4 days ago
Manila, National Capital Region, Philippines Agileit IT consultancy Full time ₱1,500,000 - ₱2,500,000 per yearPractice Lead – Microsoft SOCBased either Manila or CebuPosition OverviewWe are seeking an experienced and visionary Practice Lead to establish, develop, and lead our Multi-Tenant Microsoft Security Operations Center (SOC) practice. The Practice Lead will oversee the design, implementation, and operation of the MSSC and Microsoft SOC services, leveraging...
-
SOC Manager
1 week ago
Manila, National Capital Region, Philippines HS Hiring Solutions Inc Full time ₱1,200,000 - ₱3,600,000 per yearJob Summary:The SOC Lead is a senior-level cybersecurity professional responsible for leading and managing the Security Operations Center (SOC).The SOC Lead ensures the effectiveness of threat monitoring, detection, and incident response operations. They lead and coordinate the full lifecycle of Incident Management and Crisis Response, ensuring swift...
-
SOC Senior Manager
1 week ago
Manila, National Capital Region, Philippines HS Hiring Solutions Inc Full time ₱1,500,000 - ₱3,000,000 per yearJob Summary:Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets).Required Experience:Minimum 10 years of professional experience in cybersecurity or related fields.At least 2 years in a senior SOC or leadership role.Professional & Technical Skills:In-depth knowledge...
-
SOC Analyst
1 week ago
Manila, National Capital Region, Philippines Vurke Inc. (Pvt) Ltd. Full time ₱600,000 - ₱1,200,000 per yearRole summaryMonitor, triage, and investigate security alerts. Execute playbooks, reduce false positives, and escalate incidents.Key responsibilitiesMonitor SIEM alerts and triage events per SOPs and SLAsPerform basic threat hunting and tune detections with the senior teamCollect and preserve logs, artifacts, and evidence for investigationsCreate tickets,...
-
Senior Security Analyst
9 hours ago
Manila, National Capital Region, Philippines QBE Insurance Group Full time ₱60,000 - ₱120,000 per yearPrimary DetailsTime Type: Full timeWorker Type: EmployeeWe are seeking a highly skilled and motivated Senior Security Analyst to join our Global Security Operations Centre based in the Philippines. Reporting to the Global Security Operations Centre Lead, the Senior Security Analyst will be a key member of our rapidly growing Global team. This role is...
-
SOC Manager
2 days ago
Manila, National Capital Region, Philippines Stark Asia Solutions, Inc Full time ₱1,080,000 - ₱1,800,000 per yearRequired ExperienceMinimum 8 years of professional experience in cybersecurity or related fields.At least 2 years in a senior SOC or leadership role.In-depth knowledge of SIEM platforms (e.g., Splunk, QRadar, Google SecOps, Sentinel).Strong experience with EDR/XDR, IDS/IPS, firewalls, threat intelligence platforms, and cloud security.Familiarity with the...
-
Senior Analyst, Cyber Security Operations
2 weeks ago
Manila, National Capital Region, Philippines Melco Resorts & Entertainment Full time ₱1,200,000 - ₱2,400,000 per yearREQ12454 Senior Analyst, Cyber Security Operations (Open)Position SummaryThe Senior Analyst, Cyber Security Operations acts as a critical escalation point within the Cyber Security Operations Center (CSOC) team. He/she is responsible for advanced analysis, incident handling, and in-depth investigations of security events. The analyst serves as a mentor to...
-
Security Operations Center Analyst
2 days ago
Manila, National Capital Region, Philippines Throne Solutions Full time ₱900,000 - ₱1,200,000 per yearJob Title: SOC Analyst (L3)Location:Manila, PhilippinesEmployment Type:Full-time, Onsite/HybridAbout Throne SolutionsThrone Solutions partners with global enterprises to deliver cutting-edge IT and cybersecurity services. We are expanding our Security Operations team inManila, Philippines, and seeking an experiencedSOC Analyst (Level 3)to lead advanced...
-
Governance Analyst
2 days ago
Manila, National Capital Region, Philippines Private Advertiser Full time ₱300,000 - ₱600,000 per yearAs an IT Governance Analyst, you will support governance, compliance, and security-related initiatives within the IT department. Reporting to the Senior Director of Information Systems, this role is ideal for a detail-oriented and analytical professional who wants to grow into a Governance and Compliance Lead. You will start by assisting with SOC 2 audits,...
-
Senior Security Incident Response Analyst
4 days ago
Manila, National Capital Region, Philippines Five9 Full time ₱900,000 - ₱1,200,000 per yearJoin us in bringing joy to customer experience. Five9 is a leading provider of cloud contact center software, bringing the power of cloud innovation to customers worldwide.Living our values everyday results in our team-first culture and enables us to innovate, grow, and thrive while enjoying the journey together. We celebrate diversity and foster an...