Staff Security Risk and Compliance Program Manager (Insider Threat)

Job description

**Location:**
Remote, United States
**Employment Type:**
FullTime
**Location Type:**
Remote
**Department**
Engineering
**Compensation:**
$213.2K – $250.5K • Offers Equity
_At Confluent, we are committed to providing competitive pay and benefits that are in line with industry standards.

We analyze and carefully consider several factors when determining compensation, including work history, education, professional experience, and location.

The actual pay may vary depending on your skills, qualifications, experience, and work location.

In addition, Confluent offers a wide range of employee benefits.

To learn more about our benefits click_ here (https://confluentbenefits.com) _._
**Overview**
We’re not just building better tech.

We’re rewriting how data moves and what the world can do with it.

With Confluent, data doesn’t sit still.

Our platform puts information in motion, streaming in near real-time so companies can react faster, build smarter, and deliver experiences as dynamic as the world around them.
It takes a certain kind of person to join this team.

Those who ask hard questions, give honest feedback, and show up for each other.

No egos, no solo acts.

Just smart, curious humans pushing toward something bigger, together.
One Confluent.

One Team.

One Data Streaming Platform.
**About the Role:**
We are seeking a highly experienced and technically proficient **Staff Risk & Compliance Program Manager (Insider Threat)** to join our Trust & Security organization.

In this critical role, you'll be responsible for defining, driving, and executing the strategy for our organization's Insider Threat program, including technical control implementation, detection & response processes, risk mitigation, employee training & awareness and so on.

You will work cross-functionally with security, engineering, corporate IT, legal, human resource, and other business units to build and mature a best-in-class, proactive insider threat program that protects Confluent’s most sensitive assets and customer data while promoting a positive workplace culture.
**What You Will Do:**
**Strategy and Roadmap:** Define and drive the multi-year technical roadmap for the Insider Threat program, focusing on advanced detection methods, behavioral analytics, technical countermeasures, and integration with existing security and IT infrastructure.
**Technical Program Leadership:** Lead the planning, execution, and delivery of complex, multi-functional technical projects within the Insider Threat domain, ensuring programs are delivered on time, within budget, and to a high standard of quality.
**Engineering Partnership:** Act as the primary liaison between Trust & Security and key partners and stakeholders.

Translate operational needs and intelligence into clear technical requirements and specifications for engineering implementation.
**Detection & Analytics:** Drive the selection, deployment, and optimization of technical tools and platforms such as DLP, endpoint security platform, to identify, score, and alert on anomalous or high-risk user behavior.
**Policy and Compliance:** Partner with Legal and HR to ensure all technical controls and monitoring capabilities are compliant with global privacy laws, company policies, and ethical guidelines.
**Process Improvement:** Establish and refine the technical incident response and mitigation processes for insider threats, ensuring seamless handoffs, clear roles/responsibilities, and rapid containment.

Develop metrics and dashboards to track program effectiveness & and technical control performance.
**Employee Trainings & Awareness:** Develop training content, ensure employees understand the expectations of Acceptable User Policy.
**What You Will Bring:**
+ **Experience:** 8+ years of experience in security program management, with at least 5 years dedicated to Insider Threat, Corporate Security, or Data Loss Prevention (DLP) programs.
+ **Technical Skills** :
+ Deep technical understanding of security controls, network architecture, endpoint security, cloud environments (e.g., AWS, Azure, GCP), and User and Entity Behavior Analytics (UEBA) or similar advanced detection technologies.
+ Have experience with evaluating & implementing identity & access management tools, endpoint security platforms, data loss prevention tools.
+ Familiarity with forensic analysis techniques and legal hold processes related to electronic evidence.
+ **Program Management Skills:**
+ Strong project management and organizational skills.
+ Exceptional analytical and problem-solving skills, with a data-driven approach to decision-making.
+ Experience in running long-term, complex security programs that deliver iterative improvements and risk reduction.
+ **Communication and Collaboration skills** :
+ Excellent written and verbal communication skills.

The ability to influence and lead without direct authority.

Detail-oriented with a strong analytical mindset.
+ Excellent ability to articulate complex technical concepts and program statuses to executive-level audiences and technical teams.
**Ready to build what's next?

Let’s get in motion.**
**Come As You Are**
Belonging isn’t a perk here.

It’s the baseline.

We work across time zones and backgrounds, knowing the best ideas come from different perspectives.

And we make space for everyone to lead, grow, and challenge what’s possible.
We’re proud to be an equal opportunity workplace.

Employment decisions are based on job-related criteria, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other classification protected by law.

Required Skill Profession

Other General