Manager Security Operations

Job Description

At Couchbase, big things happen. Every day, we re translating vision into reality by tackling new and exciting challenges head-on. This is a breakthrough stage in our company, where the enthusiasm of our employees and leadership team is infectious and growing. You ll have the opportunity to learn new skills, grow your career, and work with the smartest, most passionate people in the industry.Couchbase is seeking an information security manager to lead our security operations program. You will play a critical role in defining, building, managing and maintaining Couchbase s capability to perform Threat Analysis, Threat Hunting, Forensics Analysis, Data Loss Prevention, Vulnerability Management, Penetration Testing, Security Monitoring and Incident Response. This is a highly visible position and will play a key role in strengthening Couchbase s security posture.Key Responsibilities:
• Partner with leaders across the Product Development, Cloud SRE, Corp IT, GRC and Legal teams to ensure that security and privacy initiatives are completed to specifications, industry standards and regulatory requirements.
• Review and refine existing security processes, including vulnerability management, penetration testing, threat hunting, threat analysis, security monitoring, DLP and security incident response.
• Responsible for architecture review, design and implementation of all security controls in the cloud environments.
• Monitor and analyze vulnerabilities across company assets to detect potential threats. Responsible for detection, containment, mitigation and protection activities to safeguard against real time threats.
• Perform risk assessment and exposure from security incidents. Implement solid incident management processes to quickly resolve incidents while collaborating with the respective stakeholders across the company.
• Develop and promote a security-by-design mindset across the development organization and collaborate with the development teams to ingrain it into secure SDLC lifecycle.
• Review and recommend best practices to enhance product and application security. Work with devops teams to incorporate appropriate levels of security in the build, release, CD/CD phases.
• Document and create baseline configurations. Implement SIEM, DLP and End point security.
Qualifications:
• Bachelors degree in Computer Science, Engineering, or Mathematics.
• 10+ years of relevant experience in information security with demonstrated experience building and managing a Security Operations Center (SOC).
• Strong understanding and knowledge of security standards/frameworks such as NIST, ISO 27001, SSAE 18, PCI, HIPAA, CIS, COBIT, OWASP etc.
• Preferable certifications such as CISSP, CISM, CISA.
• Strong hands-on experience with security in public cloud platforms (AWS, Azure, GCP), Networking, Operating Systems, Software Development, IAM, Key Management, Encryption, SIEM, DLP and Endpoint Security.
• Excellent collaboration and interpersonal skills. Must be able to communicate with all levels including influencing executive leadership.
• Strong oral, written, reporting and presentation skills. Lives and breathes in documentation.
#LI-RemoteUS#LI- AS2About CouchbaseAt Couchbase, we believe data is at the heart of the enterprise. We empower developers and architects to build, deploy, and run their most mission-critical applications. Couchbase delivers a high-performance, flexible and scalable modern database that runs across the data center and any cloud. Many of the world s largest enterprises rely on Couchbase to power the core applications their businesses depend on.As a 2021 Bay Area Best Places to Work winner, Couchbase recognizes the need for time off when you need it. Enjoy unlimited time off (DTO), matching 401K contributions, ESPP and many other amazing benefits . See more of our recent awards to learn what makes Couchbase such a great company to work at.Learn more about Couchbase and our technical capabilities:* Compare Couchbase vs. MongoDB* Compare Couchbase vs. Oracle* Browse the Developer PortalCouchbase is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.By using this website and submitting your information, you acknowledge our Candidate Privacy Notice and understand your personal information may be processed in accordance our Candidate Privacy Notice.,

Keyskills :
data loss preventionsecurity operations centerenvironmental impact assessment