Data Security & Privacy Strategist
Join us as we pursue our vision to make machine data accessible, usable, and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we are committed to our work, our customers, having fun, and most importantly, to each other's success. Learn more about Splunk careers and how you can become a part of our team. Job Description: That's a cool job! I want it! We seek an experienced and highly motivated Privacy Analyst to support and mature Splunk's data protection initiatives globally. This role presents an exciting opportunity to be a key player in Splunk's incident response program, influence product and services development, and craft policy and practices inside a data analytics company. This role works with the Law & Global Affairs Director, Data Protection, Security & IT, and will help ensure that Splunk's contractual, legal, and regulatory obligations to protect data are in place. In this role, you will support our Security and Incident Response programs, including tracking incidents, assisting in refining, and building out our enterprise-wide efforts, and leading the charge on incident response global developments. If you are a diligent and dedicated critical thinker who can work independently and collaboratively, we are looking for someone like you to join our collegial and dynamic team! Splunk is headquartered in the San Francisco Bay Area; this position is based in the Washington, DC Metro area. Personal Characteristics and Skills: How can I succeed at Splunk? The successful candidate will: Apply an analytical/business minded approach to legal issues focused on security and data protection; Have a passion for data protection; Communicate clearly and concisely, adapting to the needs of different organizations; Express complex ideas in easily understandable terms; Prioritize and drive multiple initiatives to conclusion independently and in a timely manner; Demonstrate EQ skills in the face of challenges and be creative in finding solutions; Work closely with a broad range of colleagues in the US and globally to facilitate a coordinated team approach; Maintain a sense of humor and camaraderie within the Data Protection Team and with our business partners across Splunk. Responsibilities: I want and can do that! The successful candidate will: Serve as a main point of contact in the Data Protection Team's Incident Response Program; Facilitate and coordinate the Data Protection Team's Incident Response dashboards, templates and playbooks; Standardize, operationalize and coordinate Security and Incident Response processes for efficiency; Identify training opportunities and develop data security training materials; Support daily operations for Splunk's global incident response team and manage security events globally; Work with our attorneys to build Splunk's practices globally to ensure ongoing compliance with applicable data protection laws, policies, guidelines, and processes. Requirements: I've already done that or have that! Candidates must have: At least 5-10 years participating in and managing cyber security incidents, including investigation, identification of potential legal issues, and communications to internal and external Customers and Partners; Strong experience in building mission critical projects from inception and to enterprise scale; Bachelor's degree in Information Systems, Information Technology, or related field; 1-3 years of experience working in industries such as law, IP protection, fraud, compliance, or related fields; Proficiency in the requirements of key data protection compliance programs in the EU and US (eg, GDPR, CCPA, HIPAA, FedRAMP, PCI-DSS); Strong interest in emerging data and cloud technologies, network infrastructure, analytic tools and, cyber security best practices; Familiarity with new technologies, network and cyber security, infrastructure resiliency, cloud computing, and cloud security; Excellent collaboration, organizational, interpersonal, and project management skills; Strong written and verbal communication skills with demonstrated experience engaging a wide range of organizational partners; Ability to engage successfully with stakeholders in various business functions at Splunk; Proficiency in Google Docs, Sheets, Slides, Microsoft Word, Excel, and PowerPoint; Prior experience with OneTrust or similar privacy tools and platforms; One or more of the following certifications: CISSP, SANS GCIH, GCIA, GNFA, GREM; Capacity to handle other responsibilities as needed. We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying. This position will be based in the Washington, DC Metro area. For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records. (Colorado only*) Minimum base salary of $110,000.00. You may also be eligible for incentive pay + equity + benefits.*Note: Disclosure per sb19-085 (8-5-201 et seq). Thank you for your interest in Splunk!