Software Architect - Cloud Security, Capella
Couchbase
Every day we tackle new and exciting challenges to empower developers to build modern cloud, mobile, and edge applications that deliver a premium user experience. Couchbase delivers unmatched performance, scalability, flexibility and financial value across cloud, on premises, hybrid, mobile and edge deployments. The database market is undergoing a generational shift and is one of the largest market opportunities in enterprise software due to big trends like the need for digital transformation, acceleration to the cloud and innovation at the edge. Join Couchbase to be a part of a greater change. Here you’ll have the opportunity to learn and grow with some of the most innovative, passionate and humble individuals in the database industry.
Software Architect - Cloud Security for Capella
This position will be part of the Capella engineering team that builds and operates our cutting-edge DBaaS service across all three major cloud providers. This will be a highly visible role that will be responsible for driving the architecture and leading implementation of systems pertaining to authentication, role and attribute based access control, data encryption, and network security. The candidate will also role model secure development best practices . In Capella we are the custodians of our customers' data, and systems and operational security are paramount in everything we do. This position will have a critical role in building a cutting edge DBaaS platform available on all three major cloud providers that securely power some of the most demanding applications of our customers. They will collaborate closely with stakeholders across the organization including engineering, product management and Infosec.
Broadly, the job encompasses the following:
- Software Development: Responsible for design and implementation of interfaces and systems within Capella that pertain to user authentication and authorization, secure data management, network security, and implementing security best practices on all the three major cloud platforms.
- Cloud Security: Capella supports AWS, GCP and Azure. The role would be responsible for spearheading the development of components that interface with platform specific IAM, key management and other services to implement account and data isolation in a multi-tenant architecture.
- Architecture and Reviews: Responsible for the security architecture, design, and code reviews of new features and initiatives. The candidate will drive the implementation of secure architecture best practices and information safeguards as applicable in the target cloud environment such as key management, encryption, data privacy, authentication, IAM and enforcement of principle of least privilege.
- Thread modeling and risk assessment: Conduct threat modeling and risk assessment during design phases of new components and features.
- Technical leadership: Drive and lead secure development lifecycle practices across the engineering team. Contribute to security incident detection and response plans and disaster recovery plans and procedures.
Required Qualifications:
- Minimum of 10 years of experience in software development with at least 5 years of experience in building distributed systems on the cloud.
- At least 3 year of hands-on development experience in Golang.
- Demonstrable hands-on work experience in one or more of the following with in-depth knowledge of various protocols, specifications and techniques - Single Sign-On, Role based and attribute based access control, data encryption schemes with secure key handling on the cloud, cloud network security such as peered VPC links, Private Links, firewall configuration and ACLs.
- Expert in one or more of AWS, GCP and Azure offerings and security reference architectures. Relevant certifications are helpful but not mandatory.
- Experience with designing and managing large scale distributed systems in the cloud with clear security boundaries.
- Ability to communicate clearly and drive consensus with stakeholders across the organization.
- Generous Time Off Program - Flexibility to care for you and your family
- Wellness Benefits - A variety of world class medical plans to choose from, along with dental, vision, life insurance, and employee assistance programs*
- Financial Planning - RSU equity program*, ESPP program*, Retirement program* and Business Travel Insurance
- Career Growth - Be valued, Create value approach
- Fun Perks - An ergonomic and comfortable in-office / WFH setup. Food & Snacks for in-office employees.
- And much more!