Staff Identity Assurance Analyst

Full Time
9 months ago

Get to know Okta

Okta is The World’s Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth. At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences. Join our team! We’re building a world where Identity belongs to you.

The Security Compliance team’s mission is to strengthen Okta’s position as the leading Identity-as-a-Service solution through a security-first approach to compliance.  We are looking for someone with a strong identity and access management background and experience in the technical implementation of Identity related controls.  The right candidate will have a strong working knowledge of identity best practices, and have participated in a mature Identity Management.   As a Staff Identity Assurance Analyst, you will support various identity and access management initiatives by engaging various process owners in the design, documentation, implementation, monitoring of the appropriate identity controls.  In addition you will support the maintenance of the User Access Recertification program and work to operationalize next-generation identity governance platforms.

The ideal candidate will have hands-on experience with the technical implementation of identity and access management controls, including but not limited to user access recertifications, privileged access certifications, role/attribute based access controls, and separations of in a cloud-based environment using tools such as Salesforce, Okta, ServiceNow, JIRA and others.  This position requires a unique set of skills including project management, and an eye towards future standards and regulations that will impact our customers.  If you’re a self-starter who wants to make a difference in global cloud security, we want you on board.

 

Job Duties and Responsibilities:

  • Maintain the Okta User Access Recertification program
  • Work with system owners and managers to ensure the timely delivery of user access recertifications
  • Ensure User Access Recertifications are in alignment with domestic and international security compliance frameworks
  • Work closely with Identity Management Team on the strategic and operational implementation of the Okta Identity Governance platform
  • Validate role based access groups
  • Maintain Identity entitlement catalog
  • Validate effectiveness and design of identity and access management controls
  • Work with process and control owners to help them understand the identity and access management processes, and their role in maintaining secure identities
  • Work with the Security Team in identifying security gaps as reported by internal and external customers
  • As needed, develop appropriate security documentation, including system security plans, information security policies, and risk assessment procedures
  • Assess security impact on changes to the systems and applications
  • Identify opportunities for improvement within the Compliance program and build plans to address them. 

 

Minimum REQUIRED Knowledge, Skills, and Abilities:

  • Bachelor’s degree or higher in Computer Science, Management Information Systems or Accounting, or equivalent experience
  • Comprehensive understanding of Identity & Access Management principles (e.g.: SSO, ADFS, MFA, Privileged Access Management RBAC/ABAC, PKI, etc.)
  • Comprehensive understanding of  Identity Governance practices such as joiner/mover/leaver processes, separation of duties, least privilege, user access recertification.
  • Knowledge or experience managing IAM tools and processes.
  • Comprehensive understanding of IT Security practices and the Governance, Risk, and Compliance lifecycle
  • In-depth knowledge of security requirements of Sarbanes-Oxley and IT General Controls
  • In-depth knowledge in IT security frameworks and best practices, such as NIST-800 publications, FedRAMP, ISO 27001, CCM, and SOC2 Trust Principles and Criteria
  • Understanding of IT methodologies, such as software development lifecycle and operations
  • Strong analytical and problem-solving skills and the ability to “think-out-of-the-box”
  • Strong oral, written and presentation communication skills
  • Able to work independently or with a team

 

Helpful Certifications / Skills:

  • Certified Information System Auditor (CISA)
  • Certified Information Systems Security Professional (CISSP)
  • Certificate of Cloud Security Knowledge (CCSK)
  • Familiarity with JIRA and Okta
  • Technical background

What you can look forward to as an Okta employee!

  • Amazing Benefits
  • Making Social Impact
  • Fostering Diversity, Equity, Inclusion and Belonging at Okta 

Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Okta today! https://www.okta.com/company/careers/.

Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to participate in the job application or interview process, please use this Form to request an accommodation.

Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy at https://www.okta.com/privacy-policy/.