Join us as we pursue our disruptive new vision to make machine data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we're committed to our work, customers, having fun and most importantly to each other's success. Learn more about Splunk careers and how you can become a part of our journey!
The Customer Trust Analyst will report to the Senior Manager, Due Diligence and is part of the Risk and Information Protection (RIP) team in the Splunk Global Security (SGS) group. You will oversee quality SGS responses to customer assessments/questionnaires as part of the RFP process or customer's annual audit requirements. You will also provide contract support for customer and partner contracts and actively check - and reconcile - existing RFP responses in the Splunk RFP application for accuracy.
You will oversee quality SGS responses to customer assessments/questionnaires as part of the RFP process or customer's annual audit requirements within the corresponding SLA
Be able to maintain, update, and improve upon the RFP Application with frequently asked questions related to Splunk's overall security posture and process to provide standardized responses to all customers
You are able to respond quickly with a customer-service focused resolution to contract negotiations, review redlines, and suggest alternative language to satisfy vendor. Assist with contract calls as an SGS authority.
Advertise and train internal customers on the SGS RFP process
Host onsite customer visits
Work cross-functionally with other groups across the organization.
Be an excellent partner with divisions such as various business units, sales, IT, and security to ensure information provided to clients is accurate and gaps are addressed as appropriate.
Be highly knowledgeable on Splunk security policies and controls and obtain an in-depth knowledge of security controls specific to each of Splunk's products and service offerings
Understand audit processes and controls
You must have at least 5 years of applicable work experience, including 1-2 years working in information security and 1-2 years working in an IT audit function.
Bachelor's degree required (or equivalent certified education and experience).
Functional knowledge of common information security controls, security frameworks and standards (e.g., ISO 27001, ISO 27018, SOC 1 / SSAE 16 & 18, SOC 2, NIST CSF, HIPAA, PCI-DSS, COBIT, CSA CCM, SIG) and ability to glean significance from findings identified in these reports and various deliverables.
Superb attention to detail, project management and organizational skills.
Good interpersonal, written, and oral communication skills.
Ability to effectively communicate to all levels of the organization, including senior management, business partners and third parties.
Ensure that risks are promptly and clearly articulated, and escalated appropriately.
You must be team oriented, self-motivated, and able to work without supervision.
Ability to multitask, balance, and prioritize work in a dynamic environment.
Travel requirements < />
At least one of the following IT security certifications is required: CISSP, CRISC, CISM, CISA, CCSK, GIAC, CCNA Security, CSX, and CTPRP.
Eligible to work in the United States without company sponsorship
We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.
For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records.