Staff Security Analyst, Business Technology

Get to know Okta

Okta is The World’s Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth. 

At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences. 

Join our team! We’re building a world where Identity belongs to you.

Business Technology Team

The Business Technology Team is vital to Okta’s mission to “Accelerate Okta’s Scale and Growth.” As a key team member, you’ll thrive in a dynamic environment where collaboration, accountability, and delivering business outcomes are at the forefront. We’re looking for motivated individuals energized by solving complex challenges, shaping the future of technology, and making a tangible impact on Okta’s success.  

 

Staff Security Analyst, Business Technology

We seek a detail-oriented and motivated Staff Security Analyst, Business Technology focusing on security to join our Engineering Services team. This role is critical in bridging the gap between technical teams and business stakeholders, ensuring that security remains a cornerstone of our SaaS, cloud, productivity, and endpoint applications. The Product Analyst will evaluate business needs, define technical and security requirements, and drive improvements in our security programs. The ideal candidate is passionate about technology, skilled in communication, and experienced in implementing security best practices. A robust background in security sustainability practices and infrastructure rollout. This role is critical in guiding the engineering team through changes, deploying scanning tools across CI/CD pipelines, coordinating security incident responses, and driving the automation of security processes. The ideal candidate will possess expertise in cloud security (AWS, Azure, GCP) with hands-on experience in infrastructure buildoutst, metrics creation, and dashboard development to ensure comprehensive security development lifecycle (SDL) coverage and measurable business outcomes. 

This role requires travel to our San Francisco, CA, or Chicago, IL, office for in-person onboarding during the first week of employment. If reasonable accommodation is needed to participate in the job application, interview process, or onboarding, please use this Form to request an accommodation.

 

What you’ll be doing 

• Evaluate business processes, anticipate requirements, and identify areas for improvement.
• Define technical, business, and security requirements for projects and systems.
• Translate complex technical requirements into functional specifications and user stories.
• Help teams maintain focus and alignment with project goals, ensuring adherence to agreed deliverables and minimizing deviations from scope.
• Educate teams on security practices and ensure adherence to security policies.
• Identify and track key metrics to measure the success of security programs.
• Help develop and maintain incident response playbooks and ensure alignment with organizational goals
• Develop runbooks, procedure manuals, and other documentation to support cross-training and operational readiness.

 

What you’ll bring to the role

• 3-5 years of experience in a product management or analyst role, ideally with a focus on security.
• Strong understanding of security fundamentals and frameworks (e.g., NIST, ISO 27001, CIS).
• Experience with modern DevOps practices and toolchains.
• Prior involvement in driving security transformation initiatives and sustainability programs.
• Demonstrated ability to create meaningful metrics and dashboards using business intelligence tools (e.g., Splunk, Grafana, or equivalent).
• Ability to translate technical insights into actionable business recommendations.
• Excellent communication skills, with the ability to convey complex security concepts to technical and non-technical stakeholders.

Key Responsibilities:

Translating Requirements into Actionable Milestones:

• Translate business requirements into actionable technical milestones, ensuring security initiatives align with organizational objectives and timelines.

• Infrastructure & VPC Rollout:
• Lead and manage the rollout of secure infrastructure projects, including networking deployments, ensuring best practices in security sustainability.
• Provide continuous oversight and a clear line of sight for DevOps or SRE  teams regarding infrastructure changes and security posture updates.

 

• Security Tools & CI/CD Integration:
• Deploy and maintain infrastructure and code scanning tools across environments, integrating security controls within CI/CD pipelines to ensure automated vulnerability assessments and compliance.
• Collaborate with DevOps teams to ensure the seamless integration of security tools that enhance the efficiency and effectiveness of the development process.

 

• Security Incident Response & Coordination:
• Act as a key coordinator for security incident response, ensuring rapid, practical remediation actions and clear communication with internal teams.
• Participate in the security champion programs and tabletop exercises to test team readiness.

 

• Metrics, Dashboards, & Reporting:
• Design, develop, and maintain dashboards and key performance metrics to measure business outcomes and track security posture improvements.
• Ensure that SDL processes are fully covered (100%) and continuously monitored, providing actionable insights to leadership and stakeholders.

 

• Automation & Process Optimization:
• Identify opportunities for automation within security workflows, leading initiatives to streamline processes and improve systematic risk management.  
• Collaborate across teams to implement scalable and repeatable security measures that drive operational excellence.

 

 

#LI-CM1
#LI-Hybrid

Below is the annual base salary range for candidates located in California, Colorado, New York and Washington. Your actual base salary will depend on factors such as your skills, qualifications, experience, and work location. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program please visit: https://rewards.okta.com/us.   

The annual base salary range for this position for candidates located in California (excluding San Francisco Bay Area), Colorado, New York, and Washington is between:$151,000—$227,000 USD

What you can look forward to as a Full-Time Okta employee!

• Amazing Benefits
• Making Social Impact
• Fostering Diversity, Equity, Inclusion and Belonging at Okta 

Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Okta today! https://www.okta.com/company/careers/.

Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to participate in the job application, interview process, or onboarding please use this Form to request an accommodation.

Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy at https://www.okta.com/privacy-policy/.