Office of the CISO Trust Lead, EMEA

The Office of the CISO (OCISO) is part of Confluent's Trust and Security organization and its mission is to earn and retain trust by championing Confluent's security, privacy, resilience, and compliance positions, thereby accelerating customer adoption and use of our platform and products. We are looking for an individual who will partner with Confluent's customers to ensure that we build the most trustworthy platform that meets security, compliance, and privacy requirements. Success in this role will be finding the best solution not only with the current technologies and practices we currently have on hand, but defining new opportunities for product development, customer engagement strategy, audit and access transparency, and field enablement. While this role will engage with leadership frequently, we also expect the individual in this role to roll up their sleeves to get things done. The OCISO Trust Lead will "lead by influence", and oversee and drive trust (security, privacy, resilience and compliance) related customer engagements and interactions. The EMEA OCISO Trust Lead will partner cross-functionally with Sales, Customer Solutions Group, Product, Engineering and Legal teams to provide assurance to customers on Confluent's security and compliance posture, enable contract reviews and negotiations, and drive externally facing communications with customers. This position is a remote position based in the UK. What You Will Do:

• Partner with Confluent's GTM teams to lead and drive critical customer interactions and programs to provide context about Confluent's security and compliance posture and negotiate security terms when necessary
• Propose and partner with product, engineering, and security teams to design security solutions and frameworks to meet customer requirements
• Coach and mentor field and security staff on customer security needs and requirements
• Be a subject matter expert for the company around customer security assurance, and develop and demonstrate POVs on important existing and emerging regulatory positions impacting cloud service adoption
• Build and scale key internal capabilities and programs required to drive customer enablement interactions
• Maintain relations with internal teams such as Sales, CSG, Product, Engineering and Legal to drive and enable programs required to build trust with customers
  
  Bachelor's degree required plus a minimum of 10 years' experience in Information Security and Compliance
• Experience at a cloud or SaaS provider or as a customer of a cloud or SaaS provider with complex & demanding security and compliance requirements
• Experience with a combination of the following: ISO 27001, HIPAA, HITRUST, CSA, NIST, C5, etc.
• Experience with industry (Financial Services, Public Sector, etc.) specific regulatory requirements impacting cloud adoption such as GDPR, DORA, NIS2 and other EU security, privacy and compliance standards and regulations (e.g. from Financial Services regulators such as PRA, BaFin, etc.)
What Gives You an Edge:
• Current Security CISSP, CISA, CISM, or equivalent certification completed
• Excellent verbal and written communication, organizational, and planning skills
• Knowledge and understanding of GDPR, SOC2, ISO 27001, HIPAA, HITRUST, FedRAMP, CSA, NIST, C5, Cyber Essentials, and other regulatory standards
• Prior experience reviewing and negotiating security clauses within customer contracts a plus
• Ability to work and lead programs independently
• Experience working with distributed teams and other cross-functional stakeholders
  
  With Confluent, organisations can harness the full power of continuously flowing data to innovate and win in the modern digital world. We have a purpose that drives us to do better every day - we're creating an entirely new category within data infrastructure - data streaming. This technology will allow every organisation to create experiences and use the power of data in ways that profoundly impact the way we all live. This impact is our purpose and drives us to do better every day., Click HERE (https://www.confluent.io/legal/confluent-candidate-privacy-notice/) to review our Candidate Privacy Notice which describes how and when Confluent, Inc., and its group companies, collects, uses, and shares certain personal information of California job applicants and prospective employees.