Technical Security Program Manager - Incident Response (US Remote Available)

Security and Risk Management San Francisco, California Austin, Texas Seattle, Washington McLean, Virginia San Jose, California Boulder, Colorado

About Splunk

Splunk is the leader in big data, machine learning analytics with a significant presence in the cybersecurity market. Join us as we pursue our disruptive new vision to make machine data accessible, usable, and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun, and most importantly to each other’s success. Learn more about Splunk careers and how you can become a part of our journey!


We are seeking a Technical Security Program Manager to join our Splunk Global Security team. In this role, you will provide operational support, and work alongside the Service Owner to develop and execute a strategy to optimize service delivery for a scalable solution. The key to your success lies in partnering with your stakeholders, and intra-function coordination, understand requirements, deliver and maintain solutions and services in alignment with service investments, and measuring and reporting on the health of the service.


  • Lead and track remediation efforts sourced from incident response activities and triage analysis
  • Work with business constituents to drive standardization and implementation of logging requirements
  • Implement technical security controls in alignment with compliance requirements
  • Work with Service Owners to develop a service roadmap
  • Scale and accelerate maturity across multiple service offerings
  • Coordination of medium and long-term efforts to support the implementation of the service roadmap
  • Develop and maintain service performance metrics and KPIs
  • Financial management of service delivery that includes communicating operational budget requirements for department-level planning and associated procurement activities
  • Gather requirements for sophisticated projects in order to help build new, more efficient wing-to-wing processes
  • Work multi-functionally with teams to improve standard security practices
  • Manage demand intake, triage, and prioritization of service requests
  • Work with service owners on capacity planning and delivery
  • Define and manage dependencies on external teams to successfully deliver the services by getting alignment on commitments
  • Partner with the Splunk compliance team to provide evidence to auditors that demonstrate the efficacy of security controls
  • Pursue operational strategies to scale service capabilities


  • Demonstrable understanding of common principles and terminology surrounding the incident response lifecycle, defensive security, and threat intelligence
  • Ability to utilize multiple forms of program management depending on need such as Agile, Scrum, RUP, Waterfall, etc.
  • Work through all major phases of a program's lifecycle including, strategy creation, execution, delivery, and implementation.
  • Define plans, achievements, scope, charters, and influence partners throughout the project to completion.
  • Drive continuous improvement and identify the need for automation when vital
  • Ability to build and support the team's roadmap by breaking the work down into objectives and key results in order to drive metrics and reporting.
  • Understanding and implement capacity planning and resource allocation
  • Understanding of data source onboarding and data management in Splunk
  • Experience with service management and process engineering
  • Experience using a data-driven approach to track service performance and influence decision making
  • Experience operating security solutions
  • Ability to communicate clearly with other teams that cultivate an environment of continuous improvement, transparency, and collaboration.
  • 5+ years of experience in Technical Program Management and cybersecurity experience with a B.A./B.S. Degree; 3 years of experience with a Master’s; or equivalent work experience
  • You are eligible to work in the United States without company sponsorship

We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.

For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records.

Thank you for your interest in Splunk!