Staff Analyst, Third Party Risk Management

Get to know Okta

Okta is The World’s Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth.

At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences.

Join our team! We’re building a world where Identity belongs to you.

The Security Governance, Risk & Compliance (GRC) team’s mission is to strengthen Okta’s position as the leading Identity-as-a-Service solution through proactively identifying and mitigating risks to our employees, our product, and most importantly, our customers.

The ideal candidate will possess extensive experience in designing, implementing, and managing a Third Party risk management framework. This role will be responsible for the ongoing implementation, management, and monitoring of the Third Party Risk Management program designed to ensure third party risks are identified, tracked through closure, and reported while enabling the business to meet its objectives.

Key Responsibilities:

• Implement and manage a comprehensive third party risk management program aligned with the company's goals and objectives.
• Establish and implement a third party performance monitoring program.
• Develop and maintain strong relationships with global cross functional stakeholders and third party suppliers.
• Conduct Third Party security assessments and make recommendations to management regarding third party risks.
• Develop data analytics capabilities and perform analysis to evaluate and improve operational metrics / reporting for the team.
• Work with Third Parties and internal stakeholders to provide actionable Third Party guidance and drive remediation in alignment with Okta security standards.
• Build automation and workflows, where possible, to promote efficiencies.
• Develop appropriate security risk assessment procedures as needed.
• Assist in the development of an enhanced view of third party risks into the technical and integration footprint of the third party ecosystem.
• Support ad hoc projects including program enhancements, security initiatives, and other GRC functions.

Qualifications:

• 7+ years of security assessment experience.
• 7+ years of working experience conducting security assessments on Third Parties across regulations and common industry frameworks including but not limited to ISO 27001, PCI, NIST or other global relevant security frameworks.
• Strong ability to analyze and interpret common security industry certifications and reports (SOC, ISO, NIST).
• Ability to effectively communicate with both internal and external customers, and ensure security requirements are understood and business needs are prioritized appropriately.
• Knowledge of GRC and TPRM solutions.
• Deep understanding of foundational security principles, standard methodologies (ie logging, data handling, authorization, authentication).
• Excellent verbal, written, and interpersonal skills.
• Comfortable with ambiguity and adaptable to fast changing environments.
• Willing to stay up to date with the latest information in the third party risk management space.
• BA/BS degree, or equivalent experience.

What you can look forward to as a Full-Time Okta employee!

• Amazing Benefits
• Making Social Impact
• Developing Talent and Fostering Connection + Community at Okta

Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Okta today! https://www.okta.com/company/careers/.

Some roles may require travel to one of our office locations for in-person onboarding.

Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws.

If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation.

Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy at https://www.okta.com/privacy-policy/.