confluent - Senior Trust & Assurance Program Manager

• Drive execution of customer trust engagements and interactions to provide context about Confluent's security and compliance posture and negotiate security terms when necessary • Propose and partner with product, engineering, and security teams to design security and compliance solutions and frameworks to meet customer requirements • Coach and mentor field and security staff on customer security needs and requirements • Be a subject matter expert for the company around customer security assurance, and develop and demonstrate POVs on important existing and emerging regulatory positions impacting cloud service adoption • Build and scale key internal capabilities and programs required to drive customer enablement interactions • Maintain relations with internal teams such as Sales, CSG, Product, Engineering and Legal to drive and enable programs required to build trust with customers • Bachelor’s degree required plus a minimum of 8 years’ experience in Information Security and Compliance • Customer-facing experience at a cloud provider or consulting firm • Experience at a cloud or SaaS provider or as a customer of a cloud or SaaS provider with complex & demanding security and compliance requirements • Experience with a combination of the following: ISO 27001, HITRUST, SOC2, CSA, NIST, etc. • Architectural familiarity across multiple security domains (e.g., identity and access management, data protection, network security, cloud infrastructure) with the ability to synthesize across domains and recommend practical solutions to complex customer security problems • Proven experience independently managing customer trust and assurance engagements end-to-end — from initial scoping and security questionnaires through assessment completion and negotiation — with minimal supervision. • Understanding of digital sovereignty requirements relevant to Cloud adoption • WHAT GIVES YOU AN EDGE: • Current Security CISSP, CIPP, CISA, CISM, or equivalent certification completed • Excellent verbal and written communication, organizational, and planning skills • Knowledge and understanding of GDPR, SOC2, ISO 27001, HIPAA, HITRUST, CSA, NIST, C5, and other regulatory security and privacy standards in APAC (such as OSPAR, IRAP) • Experience with industry (Financial Services, Public Sector, etc.) specific regulatory requirements impacting cloud adoption such as GDPR, and other APAC security, privacy and compliance standards and regulations (e.g. from Financial Services regulators such as APRA, MAS, RBI, FSA, OJK, HKMA, etc.) • Prior experience reviewing and negotiating security clauses within customer contracts a plus • Demonstrated ability to assess the broader risk implications of customer security engagements, and to proactively structure work in a way that reduces risk exposure for both the customer and Confluent. • Familiarity with emerging AI/ML security and governance considerations, including data pipeline security, model risk, and evolving regulatory expectations around AI in cloud environments. • Ability to work and lead programs independently • Experience working with distributed teams and other cross-functional stakeholders • READY TO BUILD WHAT'S NEXT? LET’S GET IN MOTION. • COME AS YOU ARE • Belonging isn’t a perk here. It’s the baseline. We work across time zones and backgrounds, knowing the best ideas come from different perspectives. And we make space for everyone to lead, grow, and challenge what’s possible.