Join us as we pursue our disruptive new vision to enable the world to turn data into doing. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we're committed to our work, customers, having fun and most significantly to each other's success. Learn more about Splunk careers and how you can become a part of our journey!
Our Security Strategist team is a global-level group within the Field Solutions and Strategists at Splunk, and we provide expert assistance to our field teams in the subject area of Information Security. In this role you will focus mainly on envisioning, building, and maintaining field-driven, security focused content for use by our customers and partners. Some of these solutions will eventually become part of our official product offerings. While this role will focus on leading a team that focuses on delivery of new field solutions, each individual on our team contributes in a number of other functional areas. These include Splunk security evangelism, technical enablement, and working directly with Splunk customers and prospects to implement sophisticated security use cases. You will work cross-functionally, supporting sales, sales engineering, customer success, partners, Security marketing, and Security product management, among others.
This global role can be located anywhere in the U.S. near a Splunk office. At least 20% travel should be expected when it is safe to do so. You will be building solutions for use across all of our customers and partners, globally.
This role is very much a "player-coach" type of role: The successful candidate will not only be able to lead a team delivering security solutions, but will also dig in and write code along with the team on a regular basis.
Participate with other Security leaders at Splunk to help make important decisions about the future of our security products.
Represent the Global Security Strategists within meetings with other functions, and on "all-hands" type presentations.
Gather, report, analyze performance metrics across team members and the team as a whole, focusing on business impact, individuals enabled, solutions downloaded, etc.
Hire the right individuals to continue our expansion and fit into our culture.
Handle the day-to-day aspects of running the team including team meetings, 1:1 meetings, and maintaining/enhancing career development paths for team members.
Provide expert industry knowledge in a meeting with customer execs.
You are also expected to mentor your team in the following types of activities, and occasionally perform them yourself:
Write code to onboard or manipulate a particularly interesting security-relevant data source, or to build an entire add-on or improvement to our core or premium products.
Co-author an immersive hands-on workshop to teach our customers about insider threat, adversary hunting, or other popular topics.
Work with an external or internal partner to up level their app or technical add on and build parts of our next-generation CTF and workshop platform.
Provide expert industry knowledge internally to Splunk security-minded teams.
Help a technical sales resource execute a specific portion of a particularly challenging evaluation, with your hands on the keyboard.
Present at an external security conference or an internal event on a Splunk-relevant topic.
Contribute a blog post to our external blog site detailing solutions that have been built by you.
Craft a deep-dive workshop with customers to evaluate their various compliance needs, SOC maturity, or efficiency in using our products.
Help craft the direction of Splunk's security business through decisions about organic product roadmap or inorganic acquisition.
File enhancement or bug reports about issues you have found in our products.
These are just a few examples - but representative of our typical cadence! A flexible and creative approach is absolutely required in this position. You will be expected to give team members guidance and support, and run interference for them as needed, but there should be very little need to hand-hold team members day-to-day.
Eight+ years of experience within the security industry, preferably as a practitioner, but a track record of success with a security or security-focused vendor is acceptable. Deep experience with the following are mandatory: Splunk core technology, recent hands-on integrating popular security solutions and moderate to expert level Python skill and web development.
Strong executive level presence and polish both internally and externally.
Demonstrated leadership of cross-functional teams tasked with full lifecycle support.
Up-to-date understanding of current trends in the security market.
Familiarity with modern SDLC methodologies (version control using git, CI/CD pipelines, application security standard methodologies) DevSecOps practitioner a plus.
Familiarity with cloud-native serverless architectures.
Expert understanding of a particular security related subject area, like APT, fraud, endpoint, compliance frameworks, etc.
Familiarity with common security data sources and their use for basic and advanced detection methods, including Cloud-based data sources and products and their purposes in supporting risk reduction in an organization.
Familiarity with competing SIEM and UEBA technologies, and with complementary technologies to Splunk.
Familiarity with SOAR solutions and how to develop code appropriate for them.
Experience with industry frameworks like ATT&CK, CIS20, LMKC.
CISSP, GCIH, GSEC, GCIA or equivalent experience.
Portfolio of public-facing materials: repositories, whitepapers, blogs, presentations, training materials that you have authored.
Ability to communicate concisely and accurately with no fear of public speaking to audiences large and small.
Ability to work remotely and across multiple time zones with a minimum of daily supervision. Self-starter is absolutely essential.
Ability to travel 20% within the US and Canada.
Bachelor's degree in something related to technology, Masters or equivalent a plus.
We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which you are applying.