Digital Forensics And Incident Response Analyst

As the global leader in high-speed connectivity, Ciena is committed to a people-first approach. Our teams enjoy a culture focused on prioritizing a flexible work environment that empowers individual growth, well-being, and belonging. We’re a technology company that leads with our humanity—driving our business priorities alongside meaningful social, community, and societal impact.

Are you passionate about defending against cyber threats and driving proactive security measures? Join Cienas Security team—a dynamic group of skilled professionals dedicated to protecting against cybercrime. With increasing challenges in the cybersecurity landscape, we’re growing and tackling exciting work to safeguard our organization.

How You Will Contribute

• Lead detection, containment, eradication, and recovery phases of cybersecurity incidents in collaboration with the SOC and cross-functional teams.
• Coordinate and facilitate the Extended Security Incident Response Team (ESIRT) during high-severity incidents.
• Perform host forensic analysis on Windows systems and conduct network forensics using logs from firewalls, NetFlow, packet captures, and intrusion detection systems.
• Design and lead regular Tabletop Exercises (TTXs) to test and improve incident response capabilities.
• Conduct proactive threat-hunting activities to identify risks, vulnerabilities, and indicators of compromise (IOCs).
• Collaborate with SOC, Security Architecture, and IT teams to refine detection mechanisms and enhance response processes.
• Continuously improve incident response playbooks, procedures, and threat-hunting methodologies.
  
  

The Must Haves

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or equivalent experience.
• 3-5+ years of experience in cybersecurity, with a focus on incident response and threat hunting.
• Strong knowledge of incident response methodologies, threat-hunting techniques, and cybersecurity tools (e.g., SIEM, EDR, forensic tools).
• Familiarity with digital forensics and Windows-based artifacts.
• Strong understanding of attacker Tactics, Techniques, and Procedures (TTPs).
• Ability to work effectively in a fast-paced, 24/7/365 environment, including participating in on-call rotations.
  
  

Nice to Haves

• Relevant certifications in Digital Forensics and Incident Response (DFIR).
• Experience in DFIR consulting or IR within a global organization.
• Proficiency in scripting and automation tools (e.g., Python, PowerShell).
• Experience designing and leading Tabletop Exercises (TTXs).
• Strong analytical, communication, and organizational skills.
  
  

Not ready to apply? Join our Talent Community to get relevant job alerts straight to your inbox.

At Ciena, we are committed to building and fostering an environment in which our employees feel respected, valued, and heard. Ciena values the diversity of its workforce and respects its employees as individuals. We do not tolerate any form of discrimination.

Ciena is an Equal Opportunity Employer, including disability and protected veteran status.

If contacted in relation to a job opportunity, please advise Ciena of any accommodation measures you may require.

---