Senior Information Security Analyst

About the team:

The Information Security (InfoSec) organization advances the overall state of security at Rubrik through critical initiatives and coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams at Rubrik to develop secure software and protect data and systems with appropriate security controls. Information Security also develops systems to monitor and respond to attacks against our systems, provides awareness education to teams on security best practices for data protection, and ensures data sharing relationships with third parties in order to securely protect Rubrik information.

About the role:

We are seeking an experienced and dedicated Senior Information Security Analyst to join our dynamic security and governance team. In this role, you will be responsible for performing comprehensive data governance and security reviews during the Software Development Lifecycle (SDLC) of new products and features, ensuring robust protection of sensitive information. You will manage and cultivate strong partnerships across diverse internal groups including Legal, Engineering, Product, and IT. Additionally, you will serve as a key point of contact supporting our Security Operations Center (SOC) to respond promptly to security incidents, providing your expertise on data governance and security perspectives, and helping ensure thorough implementation of organizational policies aligned with industry best practice frameworks.

The ideal candidate brings extensive experience in information security or data governance, substantial knowledge of industry standards and frameworks (such as the NIST Framework), exceptional communication abilities, and a proven capacity to effectively manage stakeholder relations.

What You'll Do:

• • Perform timely and effective data governance and information security reviews during the Software Development Lifecycle (SDLC) for new products, services, and features.
• Manage metadata effectively, documenting data lineage, definitions, and ownership to ensure clarity, consistency, and traceability
• Conduct routine audits and assessments to monitor data governance adherence and to identify gaps in data management processes and controls
• Proactively manage relationships and maintain clear communication with multiple internal stakeholders including Legal, Engineering, Product, and IT teams to facilitate compliance with data governance standards and best practices.
• Serve as a subject matter expert and trusted partner for the Security Operations Center (SOC), providing strategic guidance, support, and collaboration on incident response activities from a data security and governance perspective.
• Support training and awareness programs to educate employees on best data governance practices, policies, tools, and their role in maintaining the integrity and security of information
• Participate actively in developing, updating, and maintaining documentation, policies, procedures, and guidelines related to information security and governance.
• Identify and escalate data governance and security risks to appropriate Risk Management team and leadership along with clear, actionable recommendations.

Experience You'll Need:

• Bachelor's or Master's degree in Information Security, Data Analytics, Management Information Science, or a related discipline.
• Minimum 3–5 years of relevant professional experience in an information security, data security, or data governance role.
• Strong technical background and practical knowledge of data security principles and standard frameworks (including experience with NIST frameworks).
• Exceptional presentation, reporting, and documentation skills.
• Excellent verbal and written communication skills, with a demonstrated ability to clearly explain complex concepts to stakeholders across different business areas and technical levels.
• Project management capabilities, including the ability to successfully lead and coordinate governance projects across functional areas and teams
• Proven capacity to adapt quickly within a dynamic business setting, maintaining professionalism under pressure.

Preferred Qualifications:

• Industry-recognized certifications is a plus (e.g., CISSP, CISM, CDPSE, Security+).
• Proficiency in data governance frameworks, models, and tools (e.g., data dictionaries, metadata management tools).
• In-depth understanding of relevant regulations (e.g., GDPR, CCPA, HIPAA) and compliance obligations
• Prior experience collaborating with or working on incident response teams within SOC environments is preferred.
• Strong analytical, critical-thinking, and problem-solving skills, particularly with complex datasets and data issues.
• Familiarity or experience implementing and managing data and information security solutions within cloud environments.

Join Us in Securing the World's Data

Rubrik (NYSE: RBRK) is on a mission to secure the world's data. With Zero Trust Data Security, we help organizations achieve business resilience against cyberattacks, malicious insiders, and operational disruptions. Rubrik Security Cloud, powered by machine learning, secures data across enterprise, cloud, and SaaS applications. We help organizations uphold data integrity, deliver data availability that withstands adverse conditions, continuously monitor data risks and threats, and restore businesses with their data when infrastructure is attacked.

Inclusion @ Rubrik

At Rubrik, we are dedicated to fostering a culture where people from all backgrounds are valued, feel they belong, and believe they can succeed. Our commitment to inclusion is at the heart of our mission to secure the world's data.

Our goal is to hire and promote the best talent, regardless of background. We continually review our hiring practices to ensure fairness and strive to create an environment where every employee has equal access to opportunities for growth and excellence. We believe in empowering everyone to bring their authentic selves to work and achieve their fullest potential.

Our inclusion strategy focuses on three core areas of our business and culture:

• Our Company: We are committed to building a merit-based organization that offers equal access to growth and success for all employees globally. Your potential is limitless here.
• Our Culture: We strive to create an inclusive atmosphere where individuals from all backgrounds feel a strong sense of belonging, can thrive, and do their best work. Your contributions help us innovate and break boundaries.
• Our Communities: We are dedicated to expanding our engagement with the communities we operate in, creating opportunities for underrepresented talent and driving greater innovation for our clients. Your impact extends beyond Rubrik, contributing to safer and stronger communities.

Equal Opportunity Employer/Veterans/Disabled

Rubrik is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

Rubrik provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Rubrik complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please contact us at if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

---