Security Architect

Percona is experiencing significant growth and as we continue to mature our security organization, the new Information Systems Architect will help us solidify processes and influence the organization. At the same time, we are transitioning to a more software-based organization; the Information Systems Architect will have the opportunity to increase the security team's interactions with engineering. This role will also have the ability to take the lead in increasing the overall security posture of all Percona staff.

The mission of the Information Systems Architect is to ensure the overall security of all information, especially customer information, that Percona handles. This is accomplished by managing our Security Operations team of Security Engineers, working closely with our Legal and Compliance team, as well as developing, maintaining, and often running, best practice industry standard security practices and procedures across all Percona.

**What You Will Do**:

- Manage highly technical staff on Percona's Information Security team, keep them focused on the most important activities, maximizing their technical talent and professional development. Participate in the larger IT department management team.
- Oversight and development of our Security Incident, Problem, and Change processes. Develop realistic practices to ensure we are following through and prioritizing the most important tasks. Ensure good relationships with related Percona teams with clear communication on the biggest Security risks so that company-wide resources are as efficient as possible dealing with Security needs
- Deep involvement in our compliance and certification initiatives. Ensure the Security technical aspect is properly reflected in new policies and represented in audits. Special focus on ISO 27001 compliance.
- Enhance our Risk / Security Event identification methodologies and tools. Strike the proper balance with manual reviews, tests and audits, with software tooling. Ensure our events / risks properly connect to our Incident/Problem processes and we can sustainably keep up with our requirements. Manage our risk acceptance process.
- Improve our Security communication posture to Percona staff, customers, and our broader Percona user community. This can include, but is not limited to, Training, Blog posts, Presentations, Sales calls, etc.
- Partner with the rest of the IT Department and our Engineering teams to develop best practices and policies around Software Development lifecycles

**What You Have Done**:

- 5+ years Information Security experience
- 1-2+ years Team management
- Strong English communication verbal, written and making presentations. Enthusiastic about documentation. Great at bridging the gap between technical and business audiences.
- Experience with and comfort performing Project Management and Business (Security) Analysis roles.
- Experience working on at least one of the following privacy and certification standards ISO, SOC 2, PCI, HIPAA, GDPR, CCPA, etc.

**What Will Make You Stand Out**:

- Security Engineering technical background.
- Experience with containerization, orchestration tools, Docker, Kubernetes, etc. a plus.
- Experience wearing many hats in a small/medium-sized organization.
- US/Americas time zonesITIL/ITSM experience / familiarity.
- Experience with organization wide Identity Access Management systems.
- Security Certifications: CISSP / CISM

Percona is a respected thought leader in the open source community. We provide services and software for MySQL, MongoDB, PostgreSQL and MariaDB to open source users globally.

Percona is remote-only and globally dispersed; we have colleagues in more than 40 countries. We offer a collaborative, highly-engaged culture where your ideas are welcome and your voice is heard. The growth and development of our staff is a top priority; we provide funding for training, certifications, conferences and more.

Discover what it means to work with some of the smartest people in the industry, who also know how to have fun and are always willing to lend a helping hand. We offer flexible hours, the ability to work remotely and the amazing experience of working with a multinational team of experts.