Security Risk and Compliance Program Manager; Insider Threat

Location: Remote, United States

Employment Type: Full Time

Location Type: Remote

Department: Engineering

Compensation: $213.2K – $250.5K
• Offers Equity

Overview

We’re not just building better tech. We’re rewriting how data moves and what the world can do with it. With Confluent, data doesn’t sit still. Our platform puts information in motion, streaming in near real-time so companies can react faster, build smarter, and deliver experiences as dynamic as the world around them.

One Confluent. One Team. One Data Streaming Platform.

We are seeking a highly experienced and technically proficient Staff Risk & Compliance Program Manager (Insider Threat) to join our Trust & Security organization. In this critical role, you'll be responsible for defining, driving, and executing the strategy for our organization's Insider Threat program, including technical control implementation, detection & response processes, risk mitigation, employee training & awareness and so on.

You will work cross-functionally with security, engineering, corporate IT, legal, human resource, and other business units to build and mature a best-in-class, proactive insider threat program that protects Confluent’s most sensitive assets and customer data while promoting a positive workplace culture.

Strategy and

Roadmap:

Define and drive the multi-year technical roadmap for the Insider Threat program, focusing on advanced detection methods, behavioral analytics, technical countermeasures, and integration with existing security and IT infrastructure.

Technical Program Leadership: Lead the planning, execution, and delivery of complex, multi-functional technical projects within the Insider Threat domain, ensuring programs are delivered on time, within budget, and to a high standard of quality.

Engineering Partnership: Act as the primary liaison between Trust & Security and key partners and stakeholders. Translate operational needs and intelligence into clear technical requirements and specifications for engineering implementation.

Detection & Analytics: Drive the selection, deployment, and optimization of technical tools and platforms such as DLP, endpoint security platform, to identify, score, and alert on anomalous or high-risk user behavior.

Policy and Compliance: Partner with Legal and HR to ensure all technical controls and monitoring capabilities are compliant with global privacy laws, company policies, and ethical guidelines.

Process Improvement: Establish and refine the technical incident response and mitigation processes for insider threats, ensuring seamless handoffs, clear roles/responsibilities, and rapid containment. Develop metrics and dashboards to track program effectiveness and technical control performance.

Employee Trainings & Awareness: Develop training content, ensure employees understand the expectations of Acceptable User Policy.

• Experience: 8+ years of experience in security program management, with at least 5 years dedicated to Insider Threat, Corporate Security, or Data Loss Prevention (DLP) programs.
• Technical
  
  Skills:
  
  Deep technical understanding of security controls, network architecture, endpoint security, cloud environments (e.g., AWS, Azure, GCP), and UEBA or similar advanced detection technologies.
• Identity & Access Management: Experience evaluating & implementing identity & access management tools, endpoint security platforms, data loss prevention tools.
• Forensic & Legal: Familiarity with forensic analysis techniques and legal hold processes related to electronic evidence.
• Program Management
  
  Skills:
  
  Strong project management and organizational skills.
• Analytical & Problem-Solving: Exceptional analytical and problem-solving skills, with a data-driven approach to decision-making.
• Program
  
  Experience:
  
  Experience in running long-term, complex security programs that deliver iterative improvements and risk reduction.
• Communication &
  
  Collaboration:
  
  Excellent written and verbal communication skills. The ability to influence and lead without direct authority. Detail-oriented with a strong analytical mindset. Ability to articulate complex technical concepts and program statuses to executive-level audiences and technical teams.

Ready to build what's next? Let’s get in motion.

Come As You Are

Belonging isn’t a perk here. It’s the baseline. We work across time zones and backgrounds, knowing the best ideas come from different perspectives. We make space for everyone to lead, grow, and challenge what’s possible.

We’re proud to be an equal opportunity workplace. Employment decisions are based on job-related criteria, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other classification protected by law.