About the role: Splunk Global Security (SGS) is growing our Security Trust Office and Risk Management program, and we are looking for a Security Risk Senior Analyst. In this role you will oversee a team of security risk analysts who perform risk assessments and analysis of Splunk information systems, networks, and related processes. You will develop risk assessment plans and oversee the execution of those plans. You will perform quality assurance of the assessments and develop remediation strategies to mitigate the identified risks. Responsibilities include:
Lead teams and efforts to ensure effective execution of periodic risk assessments and drive integration of remediation efforts with the risk management process
Proven ability to lead small teams dedicated to the performance of risk management and assessment responsibilities.
Develops and provides appropriate guidance on solutions to mitigate risks and enhance system security
Build and facilitate technical risk assessment exercises
Conduct ongoing security assessments to ensure appropriate risks are adequately mitigated
Maintain strong cross company working relationships with individuals and business units
Prepare and present risk findings to technical audiences within Splunk
Focus on developing and improving security processes, assisting in metrics development, both within the technology and business organizations
Researching and interpreting industry standards, along with interpreting impact of requirements from governing authorities
Qualifications:
Bachelor's degree or equivalent work experience required
Security or Risk-related certifications such as CISSP, CRISC, CISM, CISSP, CISA, etc.
8+ years of professional experience with technical risk management, audit and/or compliance
2+ years of professional experience managing/supervising remote teams of 2 - 4 junior team members
Experience with Splunk products is a plus!
Excellent written and verbal communication skills
Experience communicating your ideas through presentations and reports
Knowledge of Risk Management and Control Auditing principles
Technical knowledge of security principles around Network Security, Perimeter Security, Data Security, End User System security etc.
Experience with regulatory compliance, including risk management frameworks (e.g., NIST CSF/RMF, ISO2700x/31000) preferred
Experience working with collaboration and ticketing systems such as Jira, Confluence, ServiceNow
We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.
Beware of fraud agents! do not pay money to get a job
MNCJobsIndia.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.