GET TO KNOW OKTA

Okta is The World’s Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth.
At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences.
Join our team! We’re building a world where Identity belongs to you.
The Okta Security team’s mission is to strengthen Okta’s position as the leading Identity-as-a-Service solutions through identifying and resolving risks to the employees, product, and most importantly, our customers. With the ever-increasing pace of cloud application adoption, companies are struggling to find ways to accurately assess risk and act at the speed of their business.
The Staff Asset Management Analyst is a key member of the Okta Security team and an essential collaborator with our broader Engineering organization. Reporting to the Senior Manager of Asset Management, this role will play a key role in executing the Asset Management Program’s strategy. The Asset Management Program is a crucial pillar of the security organizations’ imperative to reduce the threats to Okta’s infrastructure and applications. You’ll be an integral part of building and sustaining strong and effective relationships across Okta with our Engineering, Product and Business Technology counterparts.

What You and Your Team Will Do

• Assist in the execution of a strategic enterprise-wide program for managing assets across Okta, ensuring IT assets are properly inventoried for effective governance and decision-making.
• Define, deploy, maintain and configure various asset discovery processes depending on the nature of assets.
• Design and manage deployment of a comprehensive asset inventory management system.
• Enhance asset tagging processes to improve the way assets are labeled, tracked and assigned ownership across Okta.
• Participate in asset lifecycle management.
• Assist infrastructure owners in designing and implementing proper asset decommissioning (EoL) processes.
• Identify, design, and deploy technology and process controls to either stop shadow IT sprawling, guide users towards enterprise sanctioned IT services or structurally turn shadow IT services to approved and secure infrastructure.
• Assess new and existing discovery scan technologies to determine potential value and risk to the enterprise and ensure risk beyond defined thresholds is appropriately treated.
• Investigate asset management compliance findings present within the environment, and coordinate remediation efforts in collaboration with other IT teams and subject matter experts.
• Support monitoring and responding to security inquiries, requests, and incidents as part of supporting the business through sound and timely cybersecurity response.
• Support audit, governance, risk and compliance teams regarding various asset management related regulatory compliance and industry best practices including PCI, ISO 27001/27017/27018 , NIST SP 800-53, SOC 2 and FedRAMP.
• Participate in other special projects or strategic initiatives at the direction of the Security team.

Your Background

• 10+ years of multifaceted cyber security experience in a technology-centric company.
• Experience in building and innovating an infrastructure and end user asset management program.
• Experience defining projects, including goals, resourcing, activities, targets, and milestones, and producing good effort estimations.
• Experience with commercial or open-source asset management solutions regarding at least one of these spaces: IaaS-based Assets, Web Applications, User Endpoint Management and MDM.
• Experience in building systems and solutions within a highly regulated environment.
• Solid understanding of security best practices in cloud environments.
• Knowledge of at least one of AWS, GCP and/or Azure.

Who you are

• You have a deep focus on execution, follow-through, accountability, and results.
• You have a growth mindset; You thrive on challenge, you see learnings and opportunities, not failures.
• You enjoy working with cross-functional teams and have exceptional stakeholder management skills.
• You surround yourself with high energy, thriving teams to achieve quality outcomes.

Qualifications:

• Bachelor’s degree in Computer Science, Computer Engineering, or equivalent experience.

LI-Remote

• Assist in the execution of a strategic enterprise-wide program for managing assets across Okta, ensuring IT assets are properly inventoried for effective governance and decision-making.
• Define, deploy, maintain and configure various asset discovery processes depending on the nature of assets.
• Design and manage deployment of a comprehensive asset inventory management system.
• Enhance asset tagging processes to improve the way assets are labeled, tracked and assigned ownership across Okta.
• Participate in asset lifecycle management.
• Assist infrastructure owners in designing and implementing proper asset decommissioning (EoL) processes.
• Identify, design, and deploy technology and process controls to either stop shadow IT sprawling, guide users towards enterprise sanctioned IT services or structurally turn shadow IT services to approved and secure infrastructure.
• Assess new and existing discovery scan technologies to determine potential value and risk to the enterprise and ensure risk beyond defined thresholds is appropriately treated.
• Investigate asset management compliance findings present within the environment, and coordinate remediation efforts in collaboration with other IT teams and subject matter experts.
• Support monitoring and responding to security inquiries, requests, and incidents as part of supporting the business through sound and timely cybersecurity response.
• Support audit, governance, risk and compliance teams regarding various asset management related regulatory compliance and industry best practices including PCI, ISO 27001/27017/27018 , NIST SP 800-53, SOC 2 and FedRAMP.
• Participate in other special projects or strategic initiatives at the direction of the Security team