Incident Response and Security Operations Manager
Santa Clara, CA
Full Time Senior-level / Expert USD 128K - 184K
Couchbase
Every day we tackle new and exciting challenges to empower developers to build modern cloud, mobile, and edge applications that deliver a premium user experience. Couchbase delivers unmatched performance, scalability, flexibility and financial value across cloud, on premises, hybrid, mobile and edge deployments. The database market is undergoing a generational shift and is one of the largest market opportunities in enterprise software due to big trends like the need for digital transformation, acceleration to the cloud and innovation at the edge. Join Couchbase to be a part of a greater change. Here you’ll have the opportunity to learn and grow with some of the most innovative, passionate and humble individuals in the database industry.
Location: This position is preferably working out of our headquarters office in Santa Clara, CA (Hybrid).
Couchbase is seeking an exceptional security engineer to lead our security operations program. You will play a critical role in defining, building, managing, and maturing Couchbase’s capability to perform Threat Analysis, Threat Hunting, Forensics Analysis, Incident Response, Data Loss Prevention, Vulnerability Management, Penetration Testing, and Security Monitoring. This is a highly visible position and will play a key role in strengthening Couchbase’s security posture. The ideal candidate will have a strong hands-on technical background, exceptional leadership skills, and a proven ability to drive security initiatives that align with organizational goals.
Roles and Responsibilities:
- Monitor and analyze vulnerabilities across company assets to detect potential threats. Responsible for detection, containment, mitigation, and protection activities to safeguard against real time threats.
- Perform regular risk assessments, vulnerability scans, and exposure from security incidents. Implement solid incident management processes to quickly resolve incidents while collaborating with the respective stakeholders across the company.
- Responsible for architecture review, design, and implementation of all security controls in the corporate and cloud environments.
- Review, refine and mature existing security processes and tools, including but not limited to SIEM, DLP, vulnerability management, email security, end point security, penetration testing, threat hunting, threat analysis, security monitoring, and security incident response.
- Document and create baseline configurations across corporate systems and security tools.
- Partner with leaders across the Corp IT, GRC, Product Development, Cloud SRE and Legal teams to ensure that security and privacy initiatives are completed to specifications, industry standards and regulatory requirements.
- Stay abreast of the latest cybersecurity trends, threats, and vulnerabilities; adjust security strategies accordingly.
Skills:
- Bachelor’s degree in computer science, Engineering, or Mathematics.
- 8+ years of relevant experience in information security with demonstrated experience building and managing a Security Operations Center (SOC).
- Must have deep hands-on experience with security in public cloud platforms (AWS, Azure, GCP), Networking (Firewalls, Switches, Access Points, etc.), Operating Systems (Linux, Mac, Windows), Software Development, IAM, Key Management, Encryption, SIEM (Splunk, Rapid 7, Alienvault, etc.), DLP (Checkpoint, Proofpoint, Symantec, etc), Email Security (Abnormal Security, Mimecast, etc.), and Endpoint Security (SentinelOne, CrowdStrike, etc.)
- Deep knowledge of network design, firewalls, switches, routers, DNS, Certs, VPN, server infrastructure, virtualization, and data centers.
- Strong understanding and knowledge of security standards/frameworks such as NIST, ISO 27001, SSAE 18, PCI, HIPAA, CIS, COBIT, OWASP etc.
- Preferable certifications such as CISSP, CISM, CISA.
- Excellent collaboration and interpersonal skills. Must be able to communicate with all levels including influencing executive leadership.
- Strong oral, written, reporting and presentation skills. Strong emphasis on process documentation.
- Generous Time Off Program - Flexibility to care for you and your family
- Wellness Benefits - A variety of world class medical plans to choose from, along with dental, vision, life insurance, and employee assistance programs*
- Financial Planning - RSU equity program*, ESPP program*, Retirement program* and Business Travel Insurance
- Career Growth - Be valued, Create value approach
- Fun Perks - A Monthly Lifestyle Spending Account credit, an ergonomic and comfortable in-office / WFH setup. Food & Snacks for in-office employees.
- And much more!
News and Press Releases
Couchbase Capella
Couchbase Blog
Investors Disclaimer: Couchbase is committed to being an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Join an impact initiative group and experience the amazing feeling of Couchbase can-do culture. By using this website and submitting your information, you acknowledge our Candidate Privacy Notice and understand your personal information may be processed in accordance with our Candidate Privacy Notice following guidelines in your country of application.
Tags: AlienVault AWS Azure CISA CISM CISSP Cloud COBIT Computer Science CrowdStrike DNS Encryption Endpoint security Firewalls Forensics GCP HIPAA IAM Incident response ISO 27001 Linux Mathematics Monitoring NIST OWASP Pentesting Privacy Risk assessment SIEM SOC Splunk VPN Vulnerabilities Vulnerability management Vulnerability scans Windows
Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Flexible spending account Flex vacation Health care Insurance Salary bonus Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Cybersecurity Analyst jobs
- Open Senior Cybersecurity Engineer jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Security Consultant jobs
- Open Security Operations Analyst jobs
- Open Information Security Architect jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security Clearance-related jobs
- Open Security assessment-related jobs
- Open EDR-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open DevSecOps-related jobs