Director, Security Operations

## About the Role The Director, Security Operations role at Lastpass is a critical position that involves leading the strategy, operations, and continuous evolution of the company's Security Operations. As a key member of the security team, you will own the direction for how Lastpass detects, responds to, and recovers from security incidents. Your expertise will translate threat intelligence into a mature, high-performing program that shapes the company's security posture and protects customer trust. The Security Operations team is the frontline of Lastpass's security, responsible for detecting threats, leading investigations, and driving incident response across the full technology estate. As Director, you will partner closely with the CISO, Platform and Software Engineering, Cloud Security, Cyber Defence team, GRC, Legal, and Communications teams to ensure seamless coordination and effective response to security incidents. Lastpass is committed to fostering a culture of collaboration, continuous improvement, and innovation, making this an exciting opportunity for a motivated and experienced security professional.

## What You Will Do - Own and drive the strategy, roadmap, and maturation of Lastpass's Security Operations function, translating the threat landscape into a multi-year program plan that scales with the business - Lead all response operations across the full incident lifecycle, from detection and triage through containment, eradication, recovery, and post-incident review - Build, develop, and retain a high-performing team of analysts and engineers, setting clear performance expectations, career development pathways, and a culture of operational excellence - Partner with the CISO, Legal, and Communications to manage high-severity incidents, coordinating executive response and fulfilling regulatory notification obligations - Define and own detection and response program metrics, SLAs, and reporting frameworks, providing the CISO and board with clear, evidence-based visibility into program maturity and risk posture - Champion the integration of AI-assisted triage, automation pipelines, and Detection-as-Code methodologies to reduce analyst toil and drive down mean-time-to-respond - Establish and maintain strategic relationships with external partners, including threat intelligence providers, industry CERTs, and law enforcement as needed - Collaborate with cross-functional teams to ensure alignment and effective implementation of security operations strategies - Stay up-to-date with the latest security trends, threats, and technologies, applying this knowledge to continuously improve Lastpass's security posture

## What We Are Looking For - 8+ years of experience in security operations, incident response, or a related field, with a proven track record of leadership and strategic planning - Strong technical skills, including expertise in threat intelligence, security analytics, and incident response methodologies - Experience with AI-assisted security tools and automation technologies, such as Detection-as-Code and SOAR platforms - Excellent communication and collaboration skills, with the ability to work effectively with technical and non-technical stakeholders - Strong understanding of security frameworks, regulations, and standards, such as NIST, ISO 27001, and PCI-DSS - Experience with security information and event management (SIEM) systems, threat intelligence platforms, and incident response tools - Strong analytical and problem-solving skills, with the ability to analyze complex security data and develop effective response strategies - Experience managing and developing high-performing teams, with a focus on career development and operational excellence

## Nice to Have - Experience with cloud-based security technologies, such as AWS Security Hub and Google Cloud Security Command Center - Knowledge of programming languages, such as Python, Java, or C++, and experience with automation frameworks like Ansible or SaltStack - Experience with data analytics and visualization tools, such as Tableau or Power BI, and the ability to develop and present complex security data insights - Certifications, such as CISSP, CISM, or CEH, and experience with security certifications like CompTIA Security+

## Benefits and Perks - Competitive salary and benefits package, with a focus on overall compensation and well-being - Opportunity to work with a global, remote team and contribute to a cutting-edge security operations program - Access to the latest security technologies and tools, with a focus on innovation and continuous learning - Flexible work arrangements, including remote work options and flexible hours - Professional development opportunities, including training, certifications, and conference attendance - Collaborative and dynamic work environment, with a focus on teamwork and open communication - Recognition and reward programs, including bonuses and stock options

- Tip: Develop a strong understanding of security frameworks and regulations, such as NIST and ISO 27001, to demonstrate your expertise in security operations.

• Ensure you have experience with AI-assisted security tools and automation technologies, such as Detection-as-Code and SOAR platforms, to stay competitive in the job market.
• Highlight your ability to communicate complex security concepts to non-technical stakeholders, and provide examples of effective collaboration with cross-functional teams.
• Be prepared to discuss your experience with security information and event management (SIEM) systems, threat intelligence platforms, and incident response tools.
• Emphasize your analytical and problem-solving skills, and provide examples of how you've developed and implemented effective response strategies to security incidents.
• Consider obtaining certifications like CISSP, CISM, or CEH to demonstrate your expertise and commitment to the field.
• Research Lastpass's company culture and values, and be prepared to discuss how your skills and experience align with their mission and goals.