Job Description :
Cloudera is looking for an Incident Response and Threat Intelligence leader with expertise in multiple domains to join a unique, blended team of security professionals.
Cloudera Security team helps our customers to unlock the power of any data, by striving to build and maintain secure products.
Our mission is to make data analytics more secure by bringing security into design, development, testing, and running secure data solutions in multi and hybrid clouds.
Additionally, we are responding to existing or emerging threats by striving to keep ahead of our adversaries and focusing on protecting our customers' data by securing our products and underlying services.
As a member of the Cloudera engineering organization, the Security Team provides essential security operations and services, is directly engaged in assuring security in the development, release, and QA processes, and offers consultative and advisory services to enable the business to function while reducing risk.
Manage a team of Incident Response and Threat Intelligence professionals
Continuously improve and maintain an Incident Response and Threat Intelligence program for Cloudera, including developing relevant runbooks for expected incident types and conducting tabletop exercises regularly to test the runbooks and prepare involved parties.
Develop and monitor threat intelligence sources to ensure Cloudera has relevant information on threats and threat trends that can impact Cloudera and its customers
Work with other security leaders to add to or modify the current information security program to mitigate these threats.
Develop capabilities, including both in-house and with third-party resources, to investigate and respond to potential cybersecurity incidents, from initial investigation through to full recovery and root cause analysis, including providing communication updates to all concerned stakeholders
Establish proactive relationships with relevant law enforcement, legal, and IR consulting firms for use should they be needed in an incident.
Enhance and maintain the Cloudera Bug bounty program
Coordinate and manage pen testing, red team exercises, 3rd party testing, and all other technical security evaluation engagement, including analysis of report findings to determine if changes are needed to the information security program.
Identify and research new potential threats using public and private information, open-source intelligence, and other research techniques.
Enable decision-making in crises
Assign and manage tasks for the team, including monitoring team performance
Give frequent feedback and coaching to your team members.
Knowledge and Skills
6-8 years of information security experience, of which at least 2-4 years in a role performing the duties of incident response and threat intelligence lead and team manager
Highly skilled in the technical aspects of information security, including systems, network, and application security tools and processes
Experience in developing an IT / TI program in alignment with a recognized security framework (ISO, NIST, etc.)
Experience managing and building incident response / threat intelligence organizations and functions
Experience hiring and mentoring staff in the performance of incident response / threat intelligence functions
Experience in the handling of actual breaches and incidents, including briefings with senior leaders and coordination with external parties
Recognized security certification (CISSP, CISM, etc)
Bachelor's degree in computer science or related discipline or equivalent work experience