Product Cyber Security Analyst Hybrid

Why Join Ribbon Communications?

At Ribbon Communications, we're not just building innovative products; we're shaping the future of secure communications. Join our dynamic and passionate global team and be part of a leader committed to providing cutting-edge solutions to the telecommunications industry.

As a Security Technical Expert, you will have the opportunity to work alongside talented professionals in either our Ottawa or Israel office, helping ensure the highest standards of security across our products and services. We believe in fostering an environment where your expertise will thrive and your contributions will have a direct impact on the security and success of our solutions.

Position Overview

We are seeking a highly skilled Product Cyber Security Analyst to join our security team. In this role, you will be at the forefront of ensuring the security of our products and services, working directly with product development teams (both hardware and software). You will play a critical part in assessing security risks, recommending security measures, and providing support to both internal teams and customers.

Additionally, you will monitor and report on security incidents, vulnerabilities, and compliance issues, ensuring that Ribbon’s security posture remains strong and up to date.

Key Responsibilities

Provide Security Support

• Offer technical guidance on security best practices, standards, and policies to product development teams (H/W & S/W).
• Act as a security consultant to resolve complex issues.

Risk Assessment & Vulnerability Management

• Collaborate with product teams to perform technical risk assessments.
• Identify and help remediate security vulnerabilities.

Ensure Compliance with Security Posture

• Review and approve security plans for each product release.
• Conduct threat modeling to identify and mitigate potential threats.
• Perform security audits and review security artifacts (e.g., scans, defects, penetration test reports).
• Assist with security testing efforts and serve as a security consultant to testing teams.

Customer Engagements

• Support customer‑facing teams with RFPs, audits, security questionnaires, contract renewals, and analysis of customer‑reported security findings.
• Provide expert assistance during customer security reviews and deep‑dive assessments.

Ongoing Security Research

• Stay current on security trends, emerging threats, and technologies to continuously enhance security practices across the organization.

Risk & Solution Recommendations

• Identify potential security risks in new and existing products and services.
• Propose actionable and scalable security solutions.

Qualifications & Skills

Education

• Bachelor’s degree in Computer Science, Information Security, or a related field.

Experience

• Minimum 3 years of experience in security‑related roles such as security analyst, security engineer, or security consultant.

Security Knowledge

• Strong understanding of security frameworks, standards, and best practices (ISO 27001, NIST, CIS, OWASP).
• In‑depth knowledge of:
  • PKI / X.509
  • Identity Management
  • Centralized authentication (RADIUS, LDAP, TACACS+, SAML, OAuth, OpenID)
• Experience with Linux and OS hardening.
• Familiarity with virtualized and cloud‑based architectures, including:
  • VNF / CNF
  • DevOps / DevSecOps
  • Public cloud environments

Security Testing & Threat Modeling

• Experience with penetration testing, vulnerability scanning, and risk analysis.
• Knowledge of threat modeling methodologies such as STRIDE, OCTAVE, PASTA, VAST, and Attack Trees.

Communication & Collaboration

• Excellent written and verbal communication skills.
• Ability to explain complex security concepts to both technical and non‑technical audiences.
• Ability to work independently while collaborating effectively with global cross‑functional teams.

Certifications (Preferred)

• CISSP, CISM, CEH, OSCP, or similar security certifications.

Why Ribbon?

Ribbon Communications offers an exciting and collaborative work environment where your skills are valued and your ideas make a meaningful impact. We provide opportunities for professional growth, competitive compensation, and a strong commitment to work‑life balance. Join us and be part of a global team dedicated to driving security innovation in the telecommunications industry.