Senior SOC Analyst
6 days ago
As the global leader in high-speed connectivity, Ciena is committed to a people-first approach. Our teams enjoy a culture focused on prioritizing a flexible work environment that empowers individual growth, well-being, and belonging. We're a technology company that leads with our humanity—driving our business priorities alongside meaningful social, community, and societal impact.
The Security Organization
The Security team at Ciena is a tightly knit group of skilled professionals who share the same passion for defending against cyber criminals. With the increase in volume and sophistication of cyber-crime, we are growing and have tons of exciting work planned.
Your Role
In this role, the Senior SOC Analyst will respond to and actively monitor for security events. The analyst will perform tasks including monitoring, research, classification, and analysis of security events that occur on the network or endpoint. This may require working extra hours on an as needed basis.
You will be expected to detect and respond to information security incidents, develop, maintain, and follow procedures for security event alerting, and participate in security investigations. You need to have hands-on experience with email, endpoint, network threat detection, remediation, and threat hunting.
You should have familiarity with the principles of network and endpoint security, current threat and attack trends, a basic understanding of the OSI model, and have a working knowledge of defense in depth strategies.
You will be responsible for various activities within the security incident response lifecycle including detection, analysis, containment, eradication, recovery, and incident post-mortem reviews. You will be expected to thoroughly document their investigations and response actions within the SIEM and ticketing platform.
You will assist with development of new security alerts and tuning existing alerts for improving detection accuracy. You will also be responsible for performing proactive threat hunting, vulnerability, and threat intelligence research as well as reviewing threat intelligence reports from our security partners.
Operations:
- Monitor SIEM, EDR, and other security tools for detection and identification of security events
- Document security investigations in a clear and consistent manner
- Develop new use cases for security alerts
- Tune existing use cases to improve accuracy
- Tune endpoint and network security tools as needed
- Perform threat hunting to identify potential security threats
- Perform vulnerability and threat intelligence research
- Review threat intelligence reports
- Ability to work after hours if needed
Security Event Response:
- Perform security anomaly and event detection
- Investigate, contain, and resolve security anomalies and events
- Perform threat attribution
- Identification of likely threat vector for security events and incidents
Minimum Qualifications:
- Ability to read, write, speak and understand the English language to communicate with employees, customers, suppliers, in person, on the phone, and by written communications in a clear, straightforward, and professional manner
- Experience working with multiple SIEM, EDR, Log Aggregators, and Incident Response Management solutions
- Strong technical knowledge of Networking, Operating Systems, and enterprise integrations
- Firm understanding of the security incident lifecycle
- Thorough understanding of TCP/IP
- Understand IDS / IPS rules to identify and/or prevent malicious activity
- Basic knowledge of forensic methodologies and best practices to investigate intrusions, preserve evidence and coordinate a unified security response
- Ability to proactively perform threat hunting to identify undetected security events
- Basic knowledge of malware analysis
- Basic understanding of SQL
- Understanding of Packet Analysis (PCAP) and Packet Analysist software
Preferred Qualifications:
- Bachelor's degree in Cybersecurity, Computer Engineering, Information Technology, or related field.
- Candidate will possess ability to be a successful self-starter
- Understanding of Advanced Persistent Threats
- Experience with Python, PowerShell, and API programming is a plus
- Understanding of the VERIS and MITRE ATT&CK frameworks is a plus
#LI-SM
Not ready to apply? Join our Talent Community to get relevant job alerts straight to your inbox.
At Ciena, we are committed to building and fostering an environment in which our employees feel respected, valued, and heard. Ciena values the diversity of its workforce and respects its employees as individuals. We do not tolerate any form of discrimination.
Ciena is an Equal Opportunity Employer, including disability and protected veteran status.
If contacted in relation to a job opportunity, please advise Ciena of any accommodation measures you may require.
-
SOC Analyst Level 2
2 weeks ago
, , Philippines Analog Devices, Inc. Full timeWe are looking for a self -driven, and detail-oriented L2 SOC Analyst to join our ADI Cybersecurity team. In this role, you will investigate complex threats, hunt for anomalies, and play a critical part in protecting our digital ecosystem. If you are passionate about cybersecurity and you thrive in fast-paced environments this is your opportunity to make a...
-
Soc Analyst
3 weeks ago
, Metro Manila, Philippines Buscojobs Full timeJob Description LeapXpert is seeking a dedicated SOC Analyst to join our global cybersecurity team. Based in the Philippines, this role is part of our 24/7 monitoring operations, ensuring the security and stability of our IT environment round-the-clock. In addition to core SOC responsibilities, the analyst will support helpdesk queue management, making this...
-
Senior SOC Analyst
2 weeks ago
, Metro Manila, Philippines Ciena Full timeCiena is a global leader in high-speed connectivity, committed to a people-first approach. Our teams enjoy a culture focused on prioritizing a flexible work environment that empowers individual growth, well-being, and belonging. The Security team at Ciena is a tightly knit group of skilled professionals who share the same passion for defending against cyber...
-
SOC Security Analyst III
2 weeks ago
, Metro Manila, Philippines BlueVoyant Full timeLocation: Hybrid in the Philippines Office 50% of the time The shift will be Monday – Friday, 8 AM – 5 PM PHL BlueVoyant is looking for Security Operations Center (SOC) Security Analyst III to help our global customers manage their IT security. You will be part of a fast-paced team that helps customers to reduce the impact of security incidents and...
-
SOC Analyst
3 weeks ago
, , Philippines Thrive Full timeThrive is an innovative technology solutions provider focused on Cyber Security, Hybrid Cloud, Global Network Management, Disaster Recovery and traditional Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon NextGen services help us stand out among our peers. Thrive is on the look-out for individuals who...
-
SOC Analyst
3 weeks ago
, , Philippines InfoHedge Technologies LLC Full timeAbout Us Thrive is an innovative technology solutions provider focused on Cyber Security, Hybrid Cloud, Global Network Management, Disaster Recovery and traditional Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon NextGen services help us stand out among our peers. Thrive is on the look-out for...
-
Senior Security Analyst
1 week ago
, Metro Manila, Philippines QBE Insurance Full timeSenior Security Analyst QBE Insurance is seeking a highly skilled Senior Security Analyst to join our Global Security Operations Centre based in the Philippines. Reporting to the Global Security Operations Centre Lead, the Senior Security Analyst will be a key member of our rapidly growing Global team. Key Responsibilities Act as the shift lead for Level One...
-
Soc 2 Senior Auditor
3 weeks ago
, Pampanga, Philippines Buscojobs Full timeSoc 2 Senior Auditor Philippines jobs in Porac Posted today Job Description QUALIFICATIONS Graduate of Bachelor of Science in Accountancy/ Accounting Related Courses Good communication skills (oral and written), including the ability to write audit reports in a clear and concise manner Strong analytical skills Detailed oriented and conscientious Strong...
-
Soc L2 Security Analyst
3 weeks ago
, Metro Manila, Philippines Buscojobs Full timeJob Description - Information Security Analyst (Multiple Listings) Posted 1 day ago • Job Viewed Tap Again To Close This advertisement includes multiple postings for Information Security Analyst roles. The content below consolidates the responsibilities and qualifications as stated in the original listing blocks. Note: Some postings indicate regional...
-
It Senior Cybersecurity Analyst
3 weeks ago
, Metro Manila, Philippines Buscojobs Full timeResponsibilities : Monitor various security tools to identify potential incidents, network intrusions, and malware events, etc., to ensure the confidentiality, integrity, and availability of R1’s architecture and information systems are protected. Generate trouble tickets and perform initial validation and triage to determine whether incidents are...