Senior Security Analyst, Vendor Assurance

See more jobs from Okta Inc

over 2 years old

This job is no longer active

The Security Assurance team’s mission is to strengthen Okta’s position as the leading Identity-as-a-Service solution through identifying and resolving risks to the employees, product, and most importantly, our customers.  With the ever-increasing pace of cloud application adoption, companies are struggling to find ways to accurately assess risk and act at the speed of their business.  As our Senior Security Analyst, you will support the risk review of Okta vendors and have a significant impact on how Okta manages supplier risk as the company grows. 

This position requires a unique set of skills including project management, the ability to communicate with both internal business units and external vendors, read & understand penetration test and compliance reports, and ensure business needs are met through secure deployments.  If you’re a self-starter who wants to make a difference in global cloud security, we want you on board.

Job Duties and Responsibilities:

  • Obtain and review security documentation for Okta’s vendors, conduct risk-based evaluations
  • Work with all relevant internal business units and stakeholders on how to minimize risk, identify remediation options and prioritize resolution
  • Assess security impact of changes to internal systems and applications due to vendor integrations, developing  appropriate security controls, documentation and policy in coordination with internal audit, governance and corporate security requirements
  • Able to streamline and standardize security review of vendors who provide complex enterprise solutions with multiple integrations as business needs and use cases evolve 
  • Support offensive security engineers with conducting penetration tests of high risk vendors and tracking resolution of findings in accordance with risk policy
  • Drive improvements to standardized processes to maximize efficiency
  • Perform other IT security related tasks as assigned in support of the Security Assurance team

Minimum Required Knowledge, Skills, and Abilities:

  • Business or technical degree (BS) or applicable work experience
  • 2+ years relevant experience that demonstrate understanding of SOC2 and ISO security controls
  • Strong writing and speaking skills, including project management experience
  • Fundamental knowledge of Cloud Security 

Helpful Certifications / Skills:

  • CCSK, CISA, CISSP or ISC2 associate
  • Consulting background
  • Technical knowledge a plus

 

Okta is an Equal Opportunity Employer.

Okta is rethinking the traditional work environment, providing our employees with the flexibility to be their most creative and successful versions of themselves, no matter where they are located.  We enable a flexible approach to work, meaning for roles where it makes sense, you can work from the office, or from home, regardless of where you live.  Okta invests in the best technologies and provides flexible benefits and collaborative work environments/experiences, empowering employees to work productively in a setting that best and uniquely suits their needs.  Find your place at Okta https://www.okta.com/company/careers/. 

By submitting an application, you agree to the retention of your personal data for consideration for a future position at Okta.  More details about Okta’s privacy practices can be found at: https://www.okta.com/privacy-policy.