Senior Corporate Counsel - Cybersecurity

Get to know Okta

Okta is The World's Identity Company. We free everyone to safely use any technology, anywhere, on any device or app. Our flexible and neutral products, Okta Platform and Auth0 Platform, provide secure access, authentication, and automation, placing identity at the core of business security and growth.

At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we're looking for lifelong learners and people who can make us better with their unique experiences.

Join our team! We're building a world where Identity belongs to you.

Accelerate your career by joining Okta, the World's Identity Provider, as a member of our Cybersecurity & Privacy Legal team. We free everyone to safely use any technology - anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth.

As Senior Corporate Counsel - Cybersecurity, you will lead the cybersecurity legal team, helping build a scalable global cybersecurity practice. You will apply your experience when providing legal guidance on cybersecurity and privacy issues and drafting and negotiating information security exhibits, data processing addenda and related commercial documents with some of the biggest names across every industry that trust Okta to help their organizations work faster, boost revenue, and stay secure.

You will work on cutting‑edge projects in a cloud‑first, SaaS environment where you can apply your experience providing strong legal support to help Okta deliver world‑class products to our thousands of global customers.

• Lead a team of talented, high‑performing cybersecurity legal professionals and serve as a point of escalation to provide cybersecurity legal expertise and guidance to executives, cross‑functional leaders and other stakeholders throughout the organization.
• Advise, draft and negotiate cybersecurity and privacy terms associated with outbound cloud service Master Subscription Agreements, Information Security Exhibits, Data Processing Addendums and other documentation related to sales transactions, while partnering closely with Okta's Commercial Legal team.
• Provide day‑to‑day legal support surrounding cybersecurity and privacy‑related contract requests and respond promptly and effectively to legal requests from internal clients with pragmatic and business‑oriented guidance.
• Provide advice and guidance to Okta Security, Engineering, Product, executives, and other stakeholders on compliance with applicable security and privacy laws and regulations, such as the General Data Protection Regulation, United States' federal and state regulations, security/privacy by design, frameworks and industry certifications.
• Support the investigation of potential security and privacy incidents, including analyzing relevant legal and regulatory responsibilities, and providing guidance to internal clients on mitigation, remediation and resolution efforts.
• Develop, implement and maintain standards, processes, runbooks and guidance surrounding cybersecurity and privacy‑related issues for Go‑to‑Market transactions, and partnering closely with members of the Legal, Security, Compliance and Engineering teams, among other key stakeholders.
• Build critical relationships in order to effectively provide practical and strategic advice to assist the business in meeting its objectives, while ensuring information security and privacy compliance. Advise on recommended courses of action and legal risk, with the ability to judge when to elevate identified issues as appropriate.
• Assist in the maintenance and review of various security and privacy programs and processes, including updates to security and privacy policies, plans, procedures, standards, certifications and customer‑facing security and privacy documentation.
• Support the procurement team in drafting and negotiating cybersecurity and privacy terms associated with vendor agreements.
• Maintain…