Senior Information Security Risk and Compliance Expert - Shaping the Future of Search AI at Elastic

Unlock Your Potential as a Senior Security Risk and Compliance Professional at Elastic

Elastic, the pioneering Search AI Company, is revolutionizing the way businesses and people find answers in real-time, leveraging all their data at scale. With a presence in over 50% of the Fortune 500, Elastic's comprehensive, cloud-based solutions for search, security, and observability are at the forefront of enabling organizations to deliver on the promise of AI. We're on a mission to empower amazing people who are passionate about their craft and are masters in their field.

About Us and Our InfoSec Team

Our Information Security (InfoSec) team is the backbone of our security posture, leading the strategy, policy, and programs for information security across the company. We're a globally distributed team that thrives on thinking differently to achieve our critical information security objectives. If you're passionate about maintaining and communicating a strong security posture and want to be in an InfoSec role that directly supports the overall success of the team and the company, we want to hear from you!

Key Responsibilities: Shaping Elastic's Security and Compliance Landscape

• Supporting and Maturing Governance and Compliance Programs: You'll play a pivotal role in delivering customer trust at scale by supporting and maturing Elastic's governance and compliance program.
• Leading Audit and Certification Processes: Take the lead in audit and certification processes, ensuring compliance with stringent requirements for cloud services, including SOC2, ISO 27001, PCI, FedRAMP, UK CE+, and TISAX.
• Modernizing Governance and Audit Experience: Strive for a modern governance and audit experience powered by data, automation, and metrics, making our processes more efficient and effective.
• Building a Creative Governance Approach: Develop a governance approach that is creative, relevant, practical, and aligned with how Elastic operates as a fast-growing organization.

What You Bring to the Table

• Experience in Compliance Audits and Certifications: You have a proven track record of leading compliance audits and certification processes in a cloud-native company, with experience working with cross-functional teams.
• Autonomy and Attention to Detail: You possess a high degree of autonomy, combining the ability to prioritize and coordinate with a strong attention to detail, ensuring that our compliance requirements are met with precision.
• Interpreting Sophisticated Compliance Requirements: You're adept at interpreting complex compliance requirements and communicating them in understandable language to various stakeholders.
• Experience in a Growing SaaS Company: Bonus points if you have experience in a growing SaaS company, understanding the unique challenges and opportunities that come with rapid growth.

Essential and Preferred Qualifications

To succeed in this role, you'll need:

• Experience in information security, compliance, or a related field, with a focus on cloud-native technologies.
• A strong understanding of compliance frameworks and regulations, including SOC2, ISO 27001, PCI, FedRAMP, UK CE+, and TISAX.
• Excellent communication and interpersonal skills, with the ability to work effectively with cross-functional teams.
• A high degree of autonomy and self-motivation, with the ability to prioritize tasks and manage multiple projects simultaneously.

Skills and Competencies Required for Success

To excel in this role, you'll need to possess:

• Strong Analytical and Problem-Solving Skills: The ability to analyze complex compliance requirements and develop effective solutions.
• Excellent Communication Skills: The ability to communicate complex information to various stakeholders, both technical and non-technical.
• Project Management Skills: The ability to manage multiple projects simultaneously, prioritizing tasks and ensuring timely completion.
• Collaboration and Teamwork: The ability to work effectively with cross-functional teams, building strong relationships and driving collaborative outcomes.

Career Growth Opportunities and Learning Benefits

At Elastic, we're committed to helping you grow professionally and personally. As a Senior Security Risk and Compliance professional, you'll have the opportunity to:

• Develop your skills in information security, compliance, and cloud-native technologies.
• Work on complex and challenging projects that impact the company's overall security posture.
• Collaborate with cross-functional teams, building strong relationships and driving collaborative outcomes.
• Take advantage of our training and development programs, designed to help you stay ahead of the curve in your field.

Work Environment and Company Culture Highlights

At Elastic, we pride ourselves on our inclusive and diverse culture. As a distributed company, we offer:

• Flexible Locations and Schedules: Work from anywhere, at any time, as long as you're meeting your commitments and delivering results.
• Competitive Pay and Benefits: We offer competitive pay, health coverage, and other benefits that support your overall well-being.
• Generous Vacation Time and Paid Holidays: Take time off to recharge and relax, with generous vacation time and paid holidays.
• Opportunities for Growth and Development: We're committed to helping you grow professionally and personally, with training and development programs, mentorship opportunities, and more.

Compensation, Perks, and Benefits

We offer a comprehensive compensation package that includes:

• Competitive Salary: A competitive salary that reflects your skills, experience, and qualifications.
• Health Coverage and Vision Insurance: Health coverage and vision insurance for you and your family.
• 401(k) / Retirement Plan: A 401(k) / retirement plan to help you plan for your future.
• Flexible Locations and Schedules: Flexible locations and schedules that support your work-life balance.
• Generous Vacation Time and Paid Holidays: Generous vacation time and paid holidays to help you recharge and relax.

Join Our Team and Shape the Future of Search AI

If you're a motivated and experienced Senior Security Risk and Compliance professional looking to make a real impact, we want to hear from you! Apply now and let's discuss how you can become a vital part of our success story.

Elastic is an equal opportunity/affirmative action employer committed to diversity, equity, and inclusion. We welcome individuals with disabilities and strive to create an accessible and inclusive experience for all individuals.

To request an accommodation during the application or recruiting process, please email [email protected]. We will reply to your request within 24 business hours of submission.

Applicants have rights under Federal Employment Laws. View posters linked below: Family and Medical Leave Act (FMLA) Poster; Pay Transparency Nondiscrimination Provision Poster; Employee Polygraph Protection Act (EPPA) Poster and Know Your Rights (Poster)

Elasticsearch develops and distributes encryption software and technology that is subject to U.S. export controls and licensing requirements for individuals who are located in or are nationals of certain sanctioned countries and regions.

Please see here for our Privacy Statement.