Information Security - Senior Assurance Analyst


Elastic is a search company built on a free and open heritage. Anyone can use Elastic products and solutions to get started quickly and frictionlessly. Elastic offers three solutions for enterprise search, observability, and security, built on one technology stack that can be deployed anywhere. From finding documents to monitoring infrastructure to hunting for threats, Elastic makes data usable in real time and at scale. Thousands of organizations worldwide, including Cisco, eBay, Goldman Sachs, Microsoft, The Mayo Clinic, NASA, The New York Times, Wikipedia, and Verizon, use Elastic to power mission-critical systems. Founded in 2012, Elastic is a distributed company with Elasticians around the globe and is publicly traded on the NYSE under the symbol ESTC. Learn more at

We’re always on the search for amazing people. People who have deep passion for what they do and are masters at their craft. Right now we are looking for a Security Assurance Analyst to join our Information Security (InfoSec) team.

The InfoSec team leads the strategy, policy, and programs for information security company-wide. The team’s responsibilities include risk management, implementing a holistic security program, driving compliance initiatives and certifications, recommending and implementing security controls, preventing and detecting security threats, and managing incident response. All of this in an intentionally distributed company that was built in the Cloud and encourages thinking differently about how we achieve security objectives.

  • Do you want to be in a role that significantly supports the overall success of the company?
  • Are you passionate about helping an organization establish and maintain a certification program?
  • Do you balance a customer service mindset and a drive to get things done, with the ability to scale, automate and improve operational processes?

This could be your dream job, and we'd love to meet you!

What you will be doing:

  • Supporting Elastic’s governance and compliance program to deliver customer trust at scale
  • Evaluating, and continuously improving the Elastic control environment and operational Governance and Compliance processes
  • Striving for a modern compliance and audit experience, powered by data, automation and metrics
  • Working alongside fast paced engineering teams who use practices like Infrastructure-as-Code, Compliance-as-Code, DevOps and Site Reliability Engineering (SRE)

What you've done:

  • Supported a company-wide compliance certification program in a cloud native company, working with some or all of SOC2, ISO 27001, HIPAA, PCI and FedRAMP
  • Developed meaningful policies, standards, and controls in a single framework that were communicated in an approachable manner
  • Educated teams, customers, auditors, and internal end users on an organization's control environment in a way that each audience understands

And have these qualifications:

  • Knowledge of some of NIST 800-53, ISO 27001/27002, PCI DSS, Sarbanes-Oxley, and SOC standards
  • Demonstrated ability to innovate and think creatively about achieving security objectives
  • Have a clear understanding of cloud computing services/deployment architecture
  • Security & compliance certifications like CISSP, CISM, CISA, PCIP, ISA/QSA are a plus
  • Experience with using the Elastic stack is a plus

Additional Information - We Take Care of Our People

As a distributed company, diversity drives our identity. Whether you’re looking to launch a new career or grow an existing one, Elastic is the type of company where you can balance great work with great life. Your age is only a number. It doesn’t matter if you’re just out of college or your children are; we need you for what you can do.

We strive to have parity of benefits across regions and while regulations differ from place to place, we believe taking care of our people is the right thing to do.

  • Competitive pay based on the work you do here and not your previous salary
  • Health coverage for you and your family in many locations
  • Ability to craft your calendar with flexible locations and schedules for many roles
  • Generous number of vacation days each year
  • Double your charitable giving - We match up to $1500 (or local currency equivalent)
  • Up to 40 hours each year to use toward volunteer projects you love
  • Embracing parenthood with minimum of 16 weeks of parental leave

Different people approach problems differently. We need that. Elastic is committed to diversity as well as inclusion. We are an equal opportunity employer and committed to the principles of affirmative action. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status or any other basis protected by federal, state or local law, ordinance or regulation. If you require any reasonable accessibility support, please complete our Candidate Accessibility Request Form.

Please see here for our Privacy Statement.

Learn about Elastic's Culture

Notify Me of Open Positions

Sign in with your social account to receive emails when Elastic posts open positions you might be interested in:

Powered By Ongig