Senior Information Security Analyst at Elastic

Elastic, the Search AI Company, enables everyone to find the answers they need in real time, using all their data, at scale — unleashing the potential of businesses and people. The Elastic Search AI Platform, used by more than 50% of the Fortune 500, brings together the precision of search and the intelligence of AI to enable everyone to accelerate the results that matter. By taking advantage of all structured and unstructured data — securing and protecting private information more effectively — Elastic’s complete, cloud-based solutions for search, security, and observability help organizations deliver on the promise of AI.

What is The Role

We’re always on the search for amazing people. People who have a real passion for what they do and are masters at their craft. We are looking for a Senior Information Security Analyst with a legal background to join our team in Information Security (InfoSec). The InfoSec team leads the strategy, policy, and programs for information security company-wide. Our responsibilities include risk management, implementing a comprehensive security program, driving compliance initiatives, recommending and implementing security controls, preventing and detecting security threats, and handling incident response. We do all of this in a globally distributed company, thinking differently about how we best achieve critical information security objectives.

• Do you combine an academic or professional background in contract law with a passion for Information Security?

• Do you want to be in an InfoSec role that directly supports the overall success of a growing team and the company?

This could be your dream job, and wed love to meet you!

What You Will Be Doing

• Supporting and maturing Elastic’s governance and compliance program, specifically in the areas of Customer Trust and Third-Party Risk Management (TPRM)

• Providing Information Security expertise and knowledge of the control environment to the Elastic legal team to support contract negotiations and due diligence processes.

• Building and maturing a TPRM approach that is creative, relevant, and aligned with how Elastic operates.

What You Bring

• Legal expertise, with experience reviewing, analysing, and proposing contract terms; ideally in a software or technology services context.

• A high degree of autonomy, combining the ability to prioritize and coordinate with a strong attention to detail.

Bonus Points

• Bonus points for experience operating and improving 3rd Party Risk Management processes, as a consumer or provider of cloud services.

• Double Bonus points if you have the experience above in a growing SaaS company!