Splunk is here to build a safer and more resilient digital world. The world's leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. While customers love our technology, it's our people that make Splunk stand out as an amazing career destination and why we've won so many awards as a best place to work. If you become a Splunker, we want your whole, authentic self, what we call your "million data points". So bring your work experience, problem-solving skills and talent, of course, but also bring your joy, your passion and all the things that make you, you.
Role Summary
Splunk Global Security (SGS) is growing our Security Trust Office and Risk Management program, and we are looking for a Principal Security Risk Analyst. You will develop risk assessment plans and oversee the execution of those plans. You will perform quality assurance of the assessments and develop remediation strategies to mitigate the identified risks. You will serve as a risk management expert who partners with engineering and business teams across Splunk to design solutions that will mitigate critical product and business related technical risks. Maintaining positive relationships with technical leaders across Splunk is fundamental to the success of this role. You have experience in an engineering capacity, such as cybersecurity, software or architecture engineering, applying your background to drive the reduction of risk across Splunk.
What you'll get to do Lead teams and efforts to ensure effective execution of risk assessments and drive integration of remediation efforts with the risk management processProven ability to lead small teams dedicated to the performance of risk management and assessment responsibilitiesDevelops and provides appropriate guidance on solutions to mitigate risks and enhance system securityBuild and facilitate technical risk assessment exercisesConduct ongoing security assessments to ensure appropriate risks are adequately mitigatedMaintain strong cross company working relationships with individuals and business unitsPrepare and present risk findings to technical and business audiences within SplunkFocus on developing and improving security processes, assisting in metrics development, both within the technology and business organizationsResearching and interpreting industry standards, along with interpreting impact of requirements from governing authorities Must-have Qualifications Bachelor's degree or equivalent work experience required10+ years of professional experience with technical risk management, audit and/or compliance2+ years of professional experience managing/supervising remote teams of 2 - 4 junior team membersSecurity or Risk-related certifications such as CISSP, CRISC, CISM, CISSP, CISA, etc.Experience with regulatory compliance, including risk management frameworks (e.g., NIST CSF/RMF, ISO2700x/31000)Knowledge and experience pertaining to:AWS, Azure and GCP cloud security and infrastructureSoftware as a Service (SaaS) applicationsCI/CD pipeline tools (such as Github, etc.)DAST/SAST Security toolsData Analysis: Skilled in analyzing large datasets to identify patterns, trends, and anomalies related to security risks, providing actionable insights that drive decision-making.Jira Management Automation: Advanced knowledge in automating Jira workflows, issue tracking, and integrations to streamline risk management processes and enhance team efficiency.Kanban Work Styles: Proficient in implementing and optimizing Kanban methodologies for managing tasks, prioritizing work, and improving workflow visibility within the team.Experience with Splunk products is a plus! Splunk Advanced Reporting and Dashboarding: Expertise in creating complex queries, visualizations, and custom dashboards that provide deep insights into security risks and trends.Excellent written and verbal communication skillsExperience communicating your ideas through presentations and reports Splunk is an Equal Opportunity Employer
At Splunk, we believe creating a culture of belonging isn't just the right thing to do; it's also the smart thing. We prioritize diversity, equity, inclusion, and belonging to ensure our employees are supported to bring their best, most authentic selves to work where they can thrive. Qualified applicants receive consideration for employment without regard to race, religion, color, national origin, ancestry, sex, gender, gender identity, gender expression, sexual orientation, marital status, age, physical or mental disability or medical condition, genetic information, veteran status, or any other consideration made unlawful by federal, state, or local laws. We consider qualified applicants with criminal histories, consistent with legal requirements.
Note:
Base Pay Range
SF Bay Area, Seattle Metro, and New York City Metro Area
Base Pay Range: $181,200.00 - 249,150.00 per year
California (excludes SF Bay Area), Washington (excludes Seattle Metro), Washington DC Metro, and Massachusetts
Base Pay Range: $163,080.00 - 224,235.00 per year
All other cities and states excluding California, Washington, Massachusetts, New York City Metro Area and Washington DC Metro Area.
Base Pay Range: $144,960.00 - 199,320.00 per year
Splunk provides flexibility and choice in the working arrangement for most roles, including remote and/or in-office roles. We have a market-based pay structure which varies by location. Please note that the base pay range is a guideline and for candidates who receive an offer, the base pay will vary based on factors such as work location as set out above, as well as the knowledge, skills and experience of the candidate. In addition to base pay, this role is eligible for incentive compensation and may be eligible for equity or long-term cash awards.
Benefits are an important part of Splunk's Total Rewards package. This role is eligible for a competitive benefits package which includes medical, dental, vision, a 401(k) plan and match, paid time off and much more! Learn more about our comprehensive benefits and wellbeing offering at https://splunkbenefits.com .