Job Description

About the role: Splunk Global Security (SGS) is growing our Security Trust Office and Risk Management program, and we are looking for a Security Risk Analyst. In this role you will perform risk assessments and analysis of Splunk information systems, networks, and related processes. You will record, track and monitor risks and work directly with technical and managerial staff to communicate the results of assessments. The primary goal of the Security Risk Analyst is to inform and support our internal partners and empower them to make informed decisions in order to manage the risk in alignment with their business objectives and risk appetite. Responsibilities include:

• Conduct ongoing security assessments to ensure appropriate risks are adequately mitigated
• Maintain strong cross company working relationships with individuals and business units
• Perform technical risk assessment exercises
• Prepare and present risk findings to technical audiences within Splunk
• Researching and interpreting industry standards, along with interpreting impact of requirements from governing authorities

Qualifications:

• Bachelor\'s degree or equivalent work experience required
• Security or Risk-related certifications such as CISSP, CRISC, CISM, CISSP, CISA, etc.
• 4-6+ years of professional experience with technical risk management, audit and/or compliance
• Experience with Splunk products is a plus!
• Excellent written and verbal communication skills
• Experience with regulatory compliance, including risk management frameworks (e.g., NIST CSF/RMF, ISO2700x/31000) preferred
• Experience working with collaboration and ticketing systems such as Jira, Confluence, ServiceNow

We value diversity, equity, and inclusion at Splunk and are an equal employment opportunity employer. Qualified applicants receive consideration for employment without regard to race, religion, color, national origin, ancestry, sex, gender, gender identity, gender expression, sexual orientation, marital status, age, physical or mental disability or medical condition, genetic information, veteran status, or any other consideration made unlawful by federal, state, or local laws. We consider qualified applicants with criminal histories, consistent with legal requirements.