Sr. Analyst - Technology Risk, Advisory & Assurance

Finance & Accounting San Jose, California San Francisco, California

Join us as we pursue our disruptive new vision to make machine data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun and most importantly to each other’s success. Learn more about Splunk careers and how you can become a part of our journey!

Role: That’s a cool job! I want it!

Splunk is looking for a motivated Senior Analyst who is passionate about delivering technology assurance, advisory, compliance and risk management services to the company. This position builds consultative, partnership relationships with business owners to drive risk mitigation, process gaps, maturity and internal controls management. You are a detail oriented, analytical, upbeat and creative leader and someone who thrives in a dynamic environment. This position reviews the maturity and effectiveness of key technologies, infrastructure, systems, processes to ensure that internal controls are in place to address key risks. You will be based at Splunk’s San Jose / San Francisco office and be a member of the Splunk Assurance, Advisory, Risk and Compliance (SpAARC) team. The position may require willingness and ability to travel (domestic and international) for approximately 10 to 20% of the time.

Responsibilities: I want to and can do that!

  • You will own the planning and execution of technology and security assessments within Splunk's Operations / Engineering / Technology areas.
  • You will ensure proper identification and mitigation of risks / processes / internal control gaps that have potential operational, financial, strategic and compliance risk implications.
  • You will engage with multi-functional partners on new and ongoing business transformation projects for analyzing problems, assessing risk, developing improvement opportunities and/or corrective actions, building consensus and supporting implementation of remediation solutions.
  • You will own the follow up on committed action plans to ensure appropriate and timely mitigation of identified risks.
  • Hands on experience in assessing risks and controls in technology processes, cloud applications, cloud infrastructure, ERP systems, IDM tools, security solutions, Vul Management tools, encryption technologies, service management and operations platforms etc.

Requirements: I’ve already done that or have that!

  • Bachelor or Master's Degree in Information Systems, Computer Science, Information Technology or equivalent.
  • Hands on knowledge of reviewing common IT & Engineering technologies including OS, databases, network infrastructure, application security, Linux/Windows system security, networking, mobile device security, cloud technologies and applications (IaaS, SaaS, PaaS environments, etc.).
  • Experience with implementing and auditing controls from industry and regulatory frameworks and standards (e.g., NIST, SOC, ISO, PCI-DSS, FedRAMP, OWASP, ITIL, etc.).
  • Strong leadership, communication, presentation and interpersonal skills to be able to interact with technical, non-technical colleagues and management.
  • Proficient in systems / technology “As-Is vs. To-Be” analysis.
  • Essential that you are a team-player with high EQ.
  • Highly motivated, enthusiastic, efficient and works independently to multitask and lead workload to timely completion.
  • Experience in international company operations and proficiency in foreign language a plus.
  • Familiar with Enterprise Risk Management (ERM) concepts a plus.
  • Unquestionable integrity and credibility.

Education: Got it!

  • Bachelor’s degree preferably in Technology, Engineering, Business or equivalent.
  • Professional certifications e.g. CISSP, CEH, CIPP, CISM, PMP, CISA are a plus.
  • Demonstrated skill in MS Excel, Word and Presentation with a general understanding of data analysis techniques.

We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.

For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records.

Thank you for your interest in Splunk!