About the role:
Splunk Global Security (SGS) is growing our Security Trust Office and Risk Management program, and we are looking for a Security Risk Analyst. In this role you will perform risk assessments and analysis of Splunk information systems, networks, and related processes. You will record, track and monitor risks and work directly with technical and managerial staff to communicate the results of assessments. The primary goal of the Security Risk Analyst is to inform and support our internal partners and empower them to make informed decisions in order to manage the risk in alignment with their business objectives and risk appetite.
Responsibilities include:
- Conduct ongoing security assessments to ensure appropriate risks are adequately mitigated
- Maintain strong cross company working relationships with individuals and business units
- Perform technical risk assessment exercises
- Prepare and present risk findings to technical audiences within Splunk
- Researching and interpreting industry standards, along with interpreting impact of requirements from governing authorities
Qualifications:
- Bachelor's degree or equivalent work experience required
- Security or Risk-related certifications such as CISSP, CRISC, CISM, CISSP, CISA, etc.
- 4-6+ years of professional experience with technical risk management, audit and/or compliance
- Experience with Splunk products is a plus!
- Excellent written and verbal communication skills
- Experience with regulatory compliance, including risk management frameworks (e.g., NIST CSF/RMF, ISO2700x/31000) preferred
- Experience working with collaboration and ticketing systems such as Jira, Confluence, ServiceNow
We value diversity, equity, and inclusion at Splunk and are an equal employment opportunity employer. Qualified applicants receive consideration for employment without regard to race, religion, color, national origin, ancestry, sex, gender, gender identity, gender expression, sexual orientation, marital status, age, physical or mental disability or medical condition, genetic information, veteran status, or any other consideration made unlawful by federal, state, or local laws. We consider qualified applicants with criminal histories, consistent with legal requirements.
Splunk does not discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Please click here to review Splunk’s Pay Transparency Nondiscrimination Provision.
Splunk is committed to the health and safety of our employees and customers. We comply with local, state/territory, and federal regulations to prevent the spread of COVID-19 in the countries in which we operate. Splunk provides reasonable medical, religious, or other legally required accommodations for eligible employees.
Splunk is also committed to providing access to all individuals who are seeking information from our website. Any individual using assistive technology (such as a screen reader, Braille reader, etc.) who experiences difficulty accessing information on any part of Splunk’s website should send comments to accessiblecareers@splunk.com. Please include the nature of the accessibility problem and your e-mail or contact address. If the accessibility problem involves a particular page, the message should include the URL of that page.
Splunk doesn't accept unsolicited agency resumes and won't pay fees to any third-party agency or firm that doesn't have a signed agreement with Splunk.
DIVE DEEPER
Find out what makes Splunk such a great place to work
Splunkers are encouraged and empowered to be Innovative, passionate, disruptive, open and fun.
Our benefits are designed to support your physical, financial, emotional and mental wellbeing.
Intern with people you want to hang out with, even outside the office.
Learn about Splunk’s commitment to creating a culture of belonging.
