Director, Insider Threat

Get to know Okta

Okta is The World’s Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth. 

At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences. 

Join our team! We’re building a world where Identity belongs to you.

The Okta Security team’s mission is to strengthen Okta’s position as the leading Identity-as-a-Service solution through identifying and resolving risks to the employees, product, and most importantly, our customers. With the ever-increasing pace of cloud application adoption, companies are struggling to find ways to accurately assess risk and act at the speed of their business.

In addition to driving security in our Corporate environment and Okta service, the Security team is deeply entrenched in the Okta business. As such, we contribute to product roadmaps, branding, research and other strategic aspects of our operations. We work across multiple functions, business partners and the research community. We are an engineering-focused team that seeks to stay on the cutting edge of security technology and the threat landscape.

The Role

We are seeking a highly experienced senior leader to spearhead the development and implementation of a comprehensive insider threat program tailored to Okta’s unique position as the world’s leading independent identity provider. 

We are not looking for a deeply technical candidate - this role is less about bits and bytes and more about analyzing potential threats, assessing our internal processes and existing defenses, and improving our personnel security posture. You will work closely with internal stakeholders across the organization to identify potential insider threats, review and enhance internal processes, and recommend proactive measures to safeguard our people, assets and reputation.

The successful candidate will report directly to the VP of Cyber Defense in Okta’s Security team. 

Core responsibilities include:

• Design, implement, and lead a comprehensive insider threat program that aligns with the company’s culture, risk profile, and regulatory requirements
• Collaborate and coordinate with key business units (eg. HR, Legal, IT, Security) to gather insights, assess potential risks, and integrate insider threat awareness into the company culture
• Provide risk assessments of relevant threats and vulnerabilities. Analyze the effectiveness of internal processes and controls  and oversee the implementation of enhancements to mitigate and detect insider threats
• Work with our Security Culture team to develop and deliver insider threat awareness training to employees, ensuring they understand their role in protecting Okta
• Lead the response to insider threat incidents, including investigation coordination, impact assessment, and recommendation of corrective actions
• Maintain documentation and reporting for all insider threat program activities. Ensure the program complies with relevant laws, regulations, and industry standards
• Stay abreast of the latest trends and best practices in insider threat management
• Regularly review and update the insider threat program to address evolving risks and business needs.

What does it take?

You’re a team player. You have great communications skills and a thirst for knowledge. You understand the motivations of malicious actors and how they seek to target and recruit insiders. You’re experienced and passionate about building insider threat programs and you’re excited at the prospect of doing so in a company that protects millions of users’ online lives every day. You’re security-minded but also pragmatic, and have a demonstrated ability to weigh and measure risk appropriately. You’re calm under pressure and have a good internal compass for taking calculated risks. 

You’re a leader. People want to work with you and for you. You know what it takes to build a world-class insider threat program and you’re passionate about helping make ours stronger.  

Requirements

• A degree in a relevant field would be beneficial but is not required. We value real-world experience and demonstrable skills in insider threat management, internal or security investigations, corporate security, or risk management
• Minimum of 8 years of relevant experience, with a proven track record of successfully building and implementing insider threat programs or related security initiatives
• Ability to handle sensitive information with a high degree of integrity and discretion

#LI-LR1

What you can look forward to as an Okta employee!

• Amazing Benefits
• Making Social Impact
• Fostering Diversity, Equity, Inclusion and Belonging at Okta 

Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Okta today! https://www.okta.com/company/careers/.

Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to participate in the job application or interview process, please use this Form to request an accommodation.

Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy at https://www.okta.com/privacy-policy/.