Director, Security Operations at Culture Amp

Security, Melbourne melbourne
Description
Posted 2 months ago

Who we are

What do Slack, Kind and Salesforce have in common? They use Culture Amp every day to make their workplaces better and grow highly engaged employees. They also make up a community of over 3,000 organizations from around the globe who stand together to change the world of work.

We are a remote-friendly organisation with offices in Melbourne, San Francisco, New York, and London, Culture Amp isn’t just for fast-growing startups - we’re for every organization that wants to put culture first. By making it easy to collect, understand, and act on employee feedback, we enable People teams to make better decisions, demonstrate impact, and turn company culture into a competitive edge.

It’s what makes us the world’s leading people and culture platform. 

The Opportunity at Culture Amp 

We are looking for an innovative and experienced individual to uplift and manage ongoing security operations at Culture Amp, implementing and enforcing efficient and lightweight SecOps practices, and building a matching threat detection & response capability to support the needs of an exciting fast-growth company

This role will work with the VP Security in building out a core security operations practice, which will partner and support internal teams to develop a distributed security capability, and continuously improve and manage process, tools, and capabilities in line with the growth of the company. 

This position requires not only leadership and influence skills but also the ability to work with multiple stakeholders and sustain change. It requires deep technical expertise and the ability to mentor others in driving objectives to completion.

Culture Amp leverages a modern stack (AWS, Kubernetes, Fargate) and utilizes Continuous Delivery pipelines to deliver hundreds of changes per day. The current security tech stack includes AWS (Guard Duty, Security Hub), CloudTrail, BetterCloud, ThreatStack, Nessus, Signal Sciences, CrowdStrike, Splunk, and G-Suite Security Centre.

A Day in the Life, The Good, The Bad, The Ambiguous

  • Establish and maintain the right team and processes to continually deliver security operations across the company
  • Coach and lead team members, nurture talent to develop a broad skillset relevant to their career development
  • Directly contribute to the development and execution of a multiyear roadmap for the overall security program, including adoption of new tools, techniques and technologies, based on a clear understanding and articulation of their value and impact
  • Establish and maintain operational SOPs for all responsible areas and technologies
  • Establish, maintain and report metrics to accurately track the current state of defenses, protections and performance
  • Work with and manage third party service partners as needed on risk assessments, vulnerability scans, penetration testing, incident management, managed SIEM, IDS/IPS, Data Loss Prevention (DLP), and threat intelligence
  • Manage the consolidation of large sets of data specific to threats and vulnerabilities to develop meaningful metrics and apply accurate risk weighting and prioritization
  • Oversee and coordinate remediation efforts of identified cybersecurity vulnerabilities
  • Provide incident response leadership when analysis confirms actionable incident
  • Investigate, document, and report on operational security issues and emerging trends
  • Collaborate and coordinate with the Risk and Compliance team on technical / cyber risk assessments
  • Support and participate in the development, automation, execution and monitoring of security operations controls in support of the security program, including the writing of needed documentation such as standards, procedures and guides

What You Bring To Our Camp

As the Security Operations Director, your mission will be to oversee security operations and incident responsive activities for a highly technical and agile technology company where innovation and speed to market are key to business success.

  • Significant (circa 10 years plus) experience in cyber security with a consultative/operational skill set
  • Experience developing and managing security operations processes and procedures while continuously seeking to make relevant and practical improvements to each
  • Ability to handle a number of simultaneous tasks while demonstrating ownership to drive tasks and issues to completion
  • Ability to distil complex issues and feedback into communications that are meaningful and actionable for a variety of audiences including peers, internal stakeholders, management, and external third parties
  • Experience in cloud environments (AWS preferred), Linux containers, orchestration systems (Kubernetes) and abstraction layers (Fargate preferred)
  • Strong people leadership experience, and the ability to inspire, develop and support members of the team.

If you are passionate about next generation security operations and incident response, and thrive in a modern and fast paced environment, then we’d welcome the opportunity to speak with you!