CISO & Executive Reporting and Metrics Analyst

As the global leader in high-speed connectivity, Ciena is committed to a people-first approach. Our teams enjoy a culture focused on prioritizing a flexible work environment that empowers individual growth, well-being, and belonging. We’re a technology company that leads with our humanity—driving our business priorities alongside meaningful social, community, and societal impact.

How You Will Contribute

As the CISO & Executive Metrics and Reporting Analyst, you will directly work with the Chief Information Security Officer (CISO) and play a pivotal role in shaping and communicating the security posture of the organization. You will be responsible for developing and managing a comprehensive security metrics and reporting framework that supports executive decision-making and regulatory compliance.

Key Responsibilities:

Develop and Manage Security Metrics & Reporting Framework

• Architect, automate, and continuously refine security metrics, KPIs, and KRIs mapped to enterprise security objectives and leading standards (NIST, ISO 27001).

• Design scalable, modular reporting pipelines for ingesting, transforming, and storing security telemetry from SIEM (Splunk), cloud platforms, and SaaS APIs.
• Build and optimize ETL processes for data normalization and enrichment, using Python, SQL, and workflow automation tools.

​Data Engineering and Dashboard Development

• Develop and maintain robust data pipelines leveraging Snowflake, secure cloud storages, and orchestration frameworks (e.g., Airflow, Prefect, custom Python scripts).

• Design, implement, and support real-time and historical dashboards using Power BI, Tableau, and custom apps (React, JavaScript).
• Automate metric computation and update logic for coverage, risk exposure, threat trends, and regulatory mapping.

Advanced Analytics & Executive Reporting

• Analyze large, complex security data sets for actionable insights, trend detection, and anomaly identification; apply statistical and data science techniques as needed.

• Deliver technical and business-facing reports, data visualizations, and presentations to CISO, risk committee, and executive leadership.
• Translate technical findings into concise recommendations and actionable outcomes for varied audiences.

​

Risk Management and Compliance Automation

• Develop and automate risk quantification, exposure analysis, residual risk calculation, and regulatory mapping using scripting and data tools.
• Monitor risk tolerance/appetite, support governance and control effectiveness assessments, and track audit metrics for compliance readiness.
• Integrate reporting outputs with workflow automation platforms (e.g., n8n, Airflow) to streamline processes and alerts.

​

• Partner with IT, risk, and business teams to align platform data sources, schema, reporting logic, and visualization requirements.
• Drive improvements to reporting and metrics workflows by leveraging latest Python libraries, data connectors, and automation toolkits.
• Implement CI/CD for Python scripts and app releases, and proactively track latest industry solutions in metric frameworks and data security.

​

Stay Current & Elevate Programme Maturity

• Stay abreast of emerging cybersecurity analytics, metrics standards, regulatory mandates, and open-source reporting tools.

• Experiment with new workflow automation approaches (Python, Node.js, n8n, React apps) to drive scaling and rapid adaptation to changing threat and compliance environments.

​

The Must Haves

• Education: Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field. A Master’s degree is a plus.
• Experience:
  • Experience: 5+ years in cybersecurity metrics/analyst or engineering roles, including data pipeline development, dashboarding, and technical reporting. 
  • Technical Skills:
    • Python development for metrics automation, reporting generators, and ETL pipelines for ETL orchestration
    • Advanced SQL and experience with Snowflake, cloud data warehouses, and database design
    • Eager to work on new cutting edge technologies and workflow automation solutions.
    • Integration with security tools using REST API, log and telemetry aggregation to build data pipeline.
    • Visualization/dashboards in Power BI, Tableau; basic to advanced React app development for web-based reporting.
    • Familiar with secure cloud data architectures, DevOps automation principles
  • Industry Knowledge: Familiarity with NIST, ISO 27001, CIS, and compliance frameworks; experience mapping controls to metrics. 
  • Analytical & Communication Skills: Advanced data analysis/statistics; clear, accurate presentation and communication of technical reports to non-technical leadership; attention to detail and business alignment. 
  • Soft Skills: Collaboration across technical and business teams; proactive in process improvement, consensus building, and adapting to rapid industry changes. 
  • Adaptability & Teamwork: Agile with respect to new technologies, threat trends, and organizational changes, strong team contributor and process evangelist. 

Assets

• Relevant certifications such as CISSP, CISM, or CRISC.
• Experience working in cross-functional teams and influencing stakeholders.
• Strategic thinking and adaptability to evolving security threats and technologies.
• Strong attention to detail and a proactive approach to problem-solving.
• Passion for continuous improvement and innovation in cybersecurity reporting.

Not ready to apply? Join our Talent Community to get relevant job alerts straight to your inbox.

At Ciena, we are committed to building and fostering an environment in which our employees feel respected, valued, and heard.  Ciena values the diversity of its workforce and respects its employees as individuals. We do not tolerate any form of discrimination.

Ciena is an Equal Opportunity Employer, including disability and protected veteran status.

If contacted in relation to a job opportunity, please advise Ciena of any accommodation measures you may require.