**About Splunk**: We have a disruptive new vision to make machine data accessible, usable, and valuable to everyone. Our engineers are passionate about our products and our customers demand more of it. At Splunk, we're committed to our people, customers and having fun at work! Splunk is an industry leader in the "Data to Everything" platform and is well-positioned to extend the lead with our bold new vision.
If you thrive on leading and scaling security teams to keep up with a rapidly growing business, and empowering development teams to build security into every product we ship, we want to talk to you. We have an expanding portfolio of products and are simultaneously embarking on a journey to "Cloud First" delivery of all our services, so it is critical that we have effective processes to identify, fix, and prevent security defects in all our products.
**About The Role**:
We are looking for a manager to lead our DevSecOps team, tasked with raising the security bar across every Splunk product and environment. The team's responsibilities include: vulnerability remediation, vulnerability triage and remediation automation and partnering with our Application Security and Penetration Testing team to "shift left" with security. This role presents the opportunity to build and grow a team of highly skilled security engineers who interact and collaborate with a large number of developers, architects, and product managers across the company. As the leader of the team, you will be responsible for mentoring and developing the careers of each team member, and focusing resources on the areas that best improve the company's security posture, decrease security risk, and protect our customers and their data.
You will be part of an organization that, beyond reviewing, testing, and hardening Splunk products, invests heavily in a broad culture of security across Splunk Global Security. DevSecOps is complex and context-specific and, as such, requires every member to understand how security is achieved in their area. Splunk is a fast-growing, dynamic environment where priorities can shift quickly. In order to succeed, you should have the ability to boldly prioritize, communicate with clarity, and be committed to empowering your team and the teams we support to carry out the mission collectively.
**Key Responsibilities**:
- Design and implement secure software development processes and practices
- Work closely with developers to integrate security testing into the development process
- Manage the remediation of security vulnerabilities
- Develop and maintain security policies, procedures, and standards
- Collaborate with partners across the organization to ensure that security requirements are met
- Stay up-to-date with the latest security threats, and technologies
**Requirements**:
- Bachelor's degree in Computer Science or related field
- demonstrated ability in DevSecOps or related role
- Solid grasp of security principles and practices
- Experience with security testing tools and techniques
- Knowledge of regulatory requirements and compliance frameworks
- Excellent communication and collaboration skills
- Experience leading and developing teams
- Ability to work in a fast-paced environment and lead multiple projects simultaneously
- Certifications such as CISSP, CISM, or similar are a plus
If you are a proactive problem-solver who thrives in a fast-paced, dynamic environment, and are passionate about security, this could be the perfect role for you.
For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records.
