Staff Security Compliance Analyst
Tokyo, Japan
Okta
Okta's Workforce and Customer Identity Clouds enable secure access, authentication, and automation—putting identity at the heart of business security and growth.Get to know Okta
Okta is The World’s Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth.
At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences.
Join our team! We’re building a world where Identity belongs to you.
The Security Compliance team’s mission is to strengthen Okta’s position as the leading Identity-as-a-Service solution through a security-first approach to compliance. We are looking for someone with a strong compliance background and experience in the technical implementation of security controls from ISMAP, IRAP Protected, SOC2, ISO 27001, and other international frameworks. The right candidate will have participated in a mature ISMS program, delivered ISMAP compliance, and will play a key role in providing customers with confidence in Okta’s leadership in the identity space. As a Staff Security Compliance Analyst, you will support security initiatives by engaging various process owners in the design, documentation, implementation, monitoring of the appropriate controls in our computing environments, and demonstrating those controls to external auditors. In addition you will plan and lead the private sector compliance initiatives.
The ideal candidate will have hands-on experience with the technical implementation of ISMAP, SOC2 and ISO controls in a cloud-based environment using tools such as Salesforce, Okta, ServiceNow, JIRA and others. This position requires a unique set of skills including project management, and an eye towards future standards and regulations that will impact our customers. If you’re a self-starter who wants to make a difference in global cloud security, we want you on board.
Job Duties and Responsibilities:
- Participate in Security Compliance Assessments of the company’s computing environment, with focus on security controls
- Facilitate Okta’s ISMAP compliance assessment
- Interpret requirements across multiple compliance frameworks
- Collaborate to manage and maintain common controls framework for Okta
- Scheduling compliance walkthroughs
- Ensuring consistent operations and communications across compliance teams
- Ensuring visibility into key compliance projects through reporting and metrics
- Analyze gaps between current status and future compliance framework needs
- Perform controls testing and develop recommendations based on confirmed observations
- Work with process and control owners to help them understand the audit results, identify remediation options, and prioritize their closure
- As needed, develop appropriate security documentation, including system security plans, information security policies, and risk assessment procedures
- Assess security impact on changes to the systems and applications
- Identify opportunities for improvement within the Compliance program and build plans to address them
Knowledge, Skills, and Abilities:
- 5-7+ years of experience in Information Technology or similar, preferably in a Security Governance, Risk, or Compliance (GRC) focused role
- Comprehensive understanding of IT Security practices and the Governance, Risk, and Compliance lifecycle
- Bi-Lingual (English, Japanese)
- Experience at ISMAP compliant organization(s), or performing ISMAP assessments
- Familiarity with Japanese cybersecurity laws and regulations
- Knowledge in IT security frameworks and best practices, such as NIST publications, FedRAMP, ISO 27001, CCM, IRAP Protected, ISMAP, BSI-C5, TISAX, SOX, HIPAA, ENS, HDS, and SOC2 Trust Principles and Criteria
- Understanding of IT methodologies, such as software development lifecycle and operations
- Strong analytical and problem-solving skills and the ability to “think-out-of-the-box”
- Strong oral, written and presentation communication skills
- Able to work independently or with a team
- Bachelor’s degree or higher in Computer Science, Management Information Systems or Accounting, or equivalent experience
#LI-BF1
What you can look forward to as a Full-Time Okta employee!
- Amazing Benefits
- Making Social Impact
- Fostering Diversity, Equity, Inclusion and Belonging at Okta
Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Okta today! https://www.okta.com/company/careers/.
Some roles may require travel to one of our office locations for in-person onboarding.
Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws.
If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation.
Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy at https://www.okta.com/privacy-policy/.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Business Intelligence Cloud Compliance Computer Science FedRAMP Governance HIPAA ISMS ISO 27001 Jira Monitoring NIST Okta Privacy Risk assessment SDLC SOC 2 SOX System Security Plan TISAX
Perks/benefits: Flex hours
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.