Ciena

Senior Analyst, Security GRCT & Customer Audit

PayCompetitive
LocationRemote
Employment typeFull-Time

This job is now closed

Apply to similar jobs

  • Job Description

      Req#: R023718

      Ciena is committed to our people-first philosophy. Our teams enjoy a culture focused on prioritizing a personalized and flexible work environment that empowers an individual’s passions, growth, wellbeing and belonging. We’re a technology company that leads with our humanity—driving our business priorities alongside meaningful social, community, and societal impact.

      ROLE OVERVIEW: Senior Analyst - Cyber Security Governance, Risk, Compliance Readiness, & Customer Trust

      The Cyber Security organization at Ciena is a group of skilled professionals who share the same passion for defending against cyber criminals. With the increase in volume and sophistication of cyber-crime, we are growing and have tons of exciting work planned. We are dedicated to driving the security mission of Ciena throughout the enterprise; Do the Right Things (and Do Them Well), Protect the Company (From Evolving Threats), and to Build Trust (in Our Products and Program).

      The Cyber Security Sr. Analyst Compliance Readiness & Customer Audit will have specific focus in facilitating customer-based audits and compliance initiatives to aid our top customers in understanding our security posture, and ensure we meet our contractual requirements .

      The Sr. Analyst of Cyber Security Compliance Readiness & Customer Audit will work collaboratively with the Cyber Security Governance, Risk, Compliance Readiness, and Trust (GRCT) functional leads, as well as directly with customers, to prepare audit artifacts and control narratives to present to Ciena customers.

      PRIMARY RESPONSIBILITIE S :

      • Assist with the Prepare, Build, Collect, Consolidate and Present audit related artifacts, such as control narratives, screenshots, policy & procedural documents, and other evidence for customer audits.

      • Build reasonable and appropriate cyber security terms for customer agreements; act as the security SME for review/ redlines of these agreements.

      • Respond to security related questionnaires/risk assessments or general security inquiries for existing customers as well as prospects.

      • Program Management upcoming customer audits by preparing materials, aligning requirements from stakeholders, and effectively managing time, resources, and artifacts in advance of a customer assessment.

      • Act as security SME for all customer audits and internal audits

      • Identify and drive process/tool improvements aimed at increasing process efficiency

      • Work c ollectively within the cyber security team, as well as with other business stakeholders, to leverage updates to key project initiatives to build Unified Control Framework Control Narratives.

      • Build strong inter-group/cross functional relationships, at various levels in the organization, while identifying opportunities for process improvement related to our Security Program at large

      • Work within the cyber security team holistically to help identify key security risks, customer contractual or compliance requirements, governance needs, or other security impacts as necessary

      • Completion of special projects/requests as required

      • Keeping abreast of internal and external security risks and threats, and communicating those appropriately ; both internally as well as by assisting with external communication drafting (with appropriate stakeholders )

      • Managing internal and external relationships effectively

      • Advocating for, and participating in, efforts to enhance the program both for operational efficiency as well as to improve the risk posture of the organization

      • Being a champion for security and modeling behaviors consistent with cybersecurity best practices

      • Representing the best interests of Ciena

      ADDITIONAL RESPONSIBILITIES:

      • Flex responsibilities to assist Cyber Security GRCT team as appropriate in the following areas:

      • Assist with Security Risk Management activities such as internal risk reviews, risk register updates and maintenance, and Third-Party Risk Management reviews.

      • Aid in the management of Risk Treatment plans and execution with necessary stakeholders

      • Interpret and manage customer contractual requirements as they relate to implementation of Cyber Security controls.

      • Support the building of Cyber Security related collateral, such as white papers, presentations, and content libraries of security information

      • Support the design and implementation of enterprise Cyber Security Policies and Standards


      SKILLS

      • Familiarity with cyber security industry standards and principles, such as CIA Triad, NIST Cybersecurity Framework, ISO 27001, SOC 2 Type 2, and others.

      • Ability to relay technical information to non-technical audiences

      • Ability to read and interpret legal language/ contract language and relay security requirements within legally reasonable and sound language

      • Must be detail-oriented, organized, and self-driven

      • Exceptional customer service skills

      • Ability to work in a team environment, often under time constraints

      • Business acumen and strategic thinking

      • Comfortable in presence of and/or presenting to executives

      • High level of professional maturity and well-developed business skills


      EXPERIENCE

      • Associate Degree , Bachelor’s Degree , or equivalent

      • Cyber Security related certifications preferred, such as CompTIA Security+, CRISC, CISM, CISSP, or others.

      • 5-10 years’ experience in Cyber Security Compliance Readiness, Audit, or equivalent work experience

      • Experience with Agile principles as well as Agile tooling such as Jira, Azure Dev Ops, etc.

      • Experience working within GRC Tools such as LogicGate , ServiceNow, HighBond , Archer, etc. a plus.

      #LI-REMOTE #LI-BS1

      At Ciena, we are committed to building and fostering an environment in which our employees feel respected, valued, and heard. Ciena values the diversity of its workforce and respects its employees as individuals. We do not tolerate any form of discrimination.

      If contacted in relation to a job opportunity, please advise Ciena of any accommodation measures you may require.

  • About the company

      Ciena Corporation is an American telecommunications networking equipment and software services supplier based in Hanover, Maryland.

Notice

Talentify is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.

Talentify provides reasonable accommodations to qualified applicants with disabilities, including disabled veterans. Request assistance at accessibility@talentify.io or 407-000-0000.

Federal law requires every new hire to complete Form I-9 and present proof of identity and U.S. work eligibility.

An Automated Employment Decision Tool (AEDT) will score your job-related skills and responses. Bias-audit & data-use details: www.talentify.io/bias-audit-report. NYC applicants may request an alternative process or accommodation at aedt@talentify.io or 407-000-0000.

Other job opportunities

remote senior it audit jobs
remote senior security compliance analyst
senior investment analyst contract jobs remote
remote senior customer success manager jobs
chief information security officer remote jobs
More information about Ciena