Product Security Analyst

As the global leader in high-speed connectivity, Ciena is committed to a people-first approach. Our teams enjoy a culture focused on prioritizing a flexible work environment that empowers individual growth, well-being, and belonging. We’re a technology company that leads with our humanity—driving our business priorities alongside meaningful social, community, and societal impact.

Blue Planet, a division of Ciena, delivers intelligent automation software that helps service providers and enterprises modernise IT and network operations. As a Product Security Specialist within the Common Services team, this role plays a critical part in protecting Blue Planet’s software portfolio by embedding security throughout the secure software development lifecycle (SDLC). This position offers the opportunity to influence product security at scale while partnering with engineering teams building market‑leading automation platforms.

How you will make an impact:
• Partner with Security Champions across product teams to strengthen secure development practices.
• Drive the integration and automation of security tooling as part of a shift‑left security strategy.
• Review security scan results and provide clear guidance on risk and business impact.
• Assess emerging vulnerabilities and support mitigation and remediation efforts.
• Advocate for product security best practices across the Blue Planet engineering organisation.

The must haves:
• 2+ years of experience in application or product security roles.
• Strong knowledge of web application security, including Open Web Application Security Project (OWASP) Top Ten risks.
• Proven experience with secure development practices, testing methods, and threat modelling.
• Hands‑on experience with security tooling such as Software Composition Analysis (SCA), Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and fuzz testing.
• Ability to communicate security risks and recommendations to both technical and non‑technical audiences.

Nice to haves:
• Experience performing penetration testing of web applications.
• Experience working with open‑source software ecosystems.
• Exposure to securing artificial intelligence (AI) agents or AI‑enabled systems.
• Development experience using Java, Go, Python, or other high‑level programming languages.
• Industry‑recognised security certifications such as GIAC, Certified Ethical Hacker (C|EH), or Offensive Security Certified Professional (OSCP).

#LI-FA

At Ciena, we are committed to building and fostering an environment in which our employees feel respected, valued, and heard.  Ciena values the diversity of its workforce and respects its employees as individuals. We do not tolerate any form of discrimination.

Ciena is an Equal Opportunity Employer, including disability and protected veteran status.

If contacted in relation to a job opportunity, please advise Ciena of any accommodation measures you may require.