SOC Analyst

Employer
Ciena Corporation
Location
Baltimore, MD
Posted
Apr 05, 2021
Closes
Apr 09, 2021
Ref
1885663556
Function
Analyst
Hours
Full Time
Since 1992, Ciena has been driven by a relentless pursuit of network innovation. We believe in a network that grows smarter, more agile, and more responsive every day. This means that when you digitally interact in your world - picking up the phone, streaming video, texting a friend or loved one - your interactions are being enabled by Ciena technologies. Ciena makes your social / entertainment / business existence REAL.What will you do at Ciena?In this role, the Security Operations Center (SOC) analyst will support the Ciena Incident Response Team (CIRT) monitoring and responding to security events. The SOC will perform tasks including monitoring, research, classification and analysis of security events that occur on the network or endpoint. This may require working extra hours on an as needed basis.The SOC Analyst will be expected to detect and respond to information security incidents, develop, maintain, and follow procedures for security event alerting, and participate in security investigations. He/she needs to have hands-on experience with email, endpoint, and network threat detection and remediation in a SOC environment.The SOC Analyst should have familiarity with the principles of network and endpoint security, current threat and attack trends, a basic understanding of the OSI model, and have a working knowledge of defense in depth strategies.The SOC Analyst will be responsible for various activities within the security incident response lifecycle including detection, analysis, containment, eradication, recovery, and incident post-mortem reviews. The SOC analyst will be expected to thoroughly document their investigations and response actions within the SEIM and ticketing platform.The SOC Analyst will assist with development of new security alerts and tuning existing alerts for improving detection accuracy. The SOC Analyst will also be responsible for performing vulnerability and threat intelligence research as well as reviewing threat intelligence reports from our security partners.Operations:Monitor SIEM, EDR, and other security tools for detection and identification of security eventsDocument security investigations in a clear and consistent mannerDevelop new use cases for security alertsTune existing use cases to improve accuracyTune endpoint and network security tools as neededPerform threat hunting to identify potential security threatsPerform vulnerability and threat intelligence researchReview threat intelligence reportsAbility to work after hours if neededIncident Response:Perform security anomaly and incident detectionInvestigate, contain, and resolve security anomalies and eventsPerform threat attributionIdentification of likely threat vector for security incidentsQualifying Experience and Attributes:Ability to read, write, speak and understand the English language to communicate with employees, customers, suppliers, in person, on the phone, and by written communications in a clear, straight-forward, and professional mannerExperience working with multiple SIEM, EDR, Log Aggregators, and Incident Response Management solutionsStrong technical knowledge of Networking, Operating Systems and enterprise integrationsFirm understanding of the security incident lifecycleThorough understanding of TCP/IPUnderstand IDS / IPS rules to identify and/or prevent malicious activityBasic knowledge of forensic methodologies and best practices to investigate intrusions, preserve evidence and coordinate a unified security responseBasic knowledge of malware analysisBasic understanding of SQLUnderstanding of Packet Analysis (PCAP) and Packet Analysist softwarePreferred Experience and Attributes:Bachelor's degree in Cybersecurity, Computer Engineering, Information Technology or related field.Candidate will possess ability to be a successful self-starterUnderstanding of Advanced Persistent ThreatsExperience with Python, PowerShell, and API programming is a plusUnderstanding of the VERIS and MITRE ATT frameworks is a plus#LI-CNAboutCienaCienais a network strategy and technology companywith apassion to provide an experience, to you and our customers that is as rewarding as the outcome.We attract the best and brightest- those with outstanding talent, motivation, and the right attitude to contribute to our success. Our culture balances our openness and informality with professionalism and trust and is built on the foundation of our core values: Customer First, Integrity, Velocity, Innovation, and Outstanding People.Ciena enables everyone to have a voice and a network that supports them while on the journey to discovering theirpassion and purpose. We trusteach individualto do what they can to reach their full potential and make an impact on the business, whenever, wherever they are in the world.With Ciena's highly innovative, forward-thinking businesspractices, we reward people for pushing the boundaries.Unlock your potential at Ciena!Being You @ CienaAs part of our commitment to diversity and inclusion, we want to foster an environment that values and respects all individual's strengths, perspectives, ideas, and ability to meet the needs of our customers globally. Ciena values the diversity of its workforce and respects its employees as individuals, regardless of race, ethnicity, religion, gender, age, national origin, disability, sexual orientation, veteran or marital status or any other category protected by applicable law. We do not tolerate any form of discrimination.Cienais also committed to compliance with all fair employment practices regarding citizenship and immigration status.If contacted in relation to a job opportunity, you should advise Ciena in a timely fashion of the specific accommodation measuresrequiredforyou to be assessed in a fair and equitable manner.