Senior Technology Compliance Analyst-Public Sector (US Remote) - 29858

Splunk is here to build a safer and more resilient digital world. The world's leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable.

While customers love our technology, it's our people that make Splunk stand out as an amazing career destination and why we've won so many awards as a best place to work.

If you become a Splunker, we want your whole, authentic self, what we call your "million data points". So bring your work experience, problem-solving skills and talent, of course, but also bring your joy, your passion and all the things that make you, you.

Role : That’s a cool job! I want it! Splunk is looking for a motivated Senior Analyst who is passionate about delivering technology assurance, advisory, compliance and risk management services to the company.

This position builds consultative, partnership relationships with business owners to drive risk mitigation, process gaps, maturity and internal controls management.

You are a detail oriented, analytical, upbeat and creative leader and someone who thrives in a dynamic environment. This position reviews the maturity and effectiveness of key technologies, infrastructure, systems, processes to ensure that internal controls are in place to address key risks.

The position may require willingness and ability to travel (domestic and international) for approximately 10 to 20% of the time.

Responsibilities : I want to and can do that!

• You will own the planning and execution of technology and security assessments within Splunk's Operations / Engineering / Technology areas.
• You will ensure proper identification and mitigation of risks / processes / internal control gaps that have potential operational, financial, strategic and compliance risk implications.
• You will engage with multi-functional partners on new and ongoing business transformation projects for analyzing problems, assessing risk, developing improvement opportunities and / or corrective actions, building consensus and supporting implementation of remediation solutions.
• You will own the follow up on committed action plans to ensure appropriate and timely mitigation of identified risks.
• Hands on experience in assessing risks and controls in technology processes, cloud applications, cloud infrastructure, ERP systems, IDM tools, security solutions, Vul Management tools, encryption technologies, service management and operations platforms etc.

Requirements : I’ve already done that or have that!

• 5 or more years of experience with implementing and auditing controls from industry and regulatory frameworks and standards specific to Public Sector areas of Cloud Compliance - FedRAMP, DISA SRG, NIST 800-53r4 / 5, CMMC, DFARs or the RMF Process.
• Bachelor or Master's Degree in Information Systems, Computer Science, Information Technology or equivalent.
• Hands on knowledge of reviewing common IT & Engineering technologies including OS, databases, network infrastructure, application security, Linux / Windows system security, networking, mobile device security, cloud technologies and applications (IaaS, SaaS, PaaS environments, etc.).
• Technical knowledge pertaining to containerization cloud concepts and implementations is a plus.
• Strong leadership, communication, presentation and interpersonal skills to be able to interact with technical, non-technical colleagues and management.
• Proficient in systems / technology As-Is vs. To-Be analysis.
• Essential that you are a team-player.
• Highly motivated, enthusiastic, efficient and works independently to multitask and lead workload to timely completion.
• Experience in international company operations and proficiency in foreign language a plus.
• Familiar with Enterprise Risk Management (ERM) concepts a plus.
• Unquestionable integrity and credibility.
• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future

Education : Got it!

• Bachelor’s degree preferably in Technology, Engineering, Business or equivalent.
• Professional certifications e.g. CISSP, CEH, CIPP, CISM, PMP, CISA are a plus.
• Demonstrated skill in MS Excel, Word and Presentation with a general understanding of data analysis techniques.
22 days ago