Tech Stack

Description

You will lead initiatives to keep Asana's corporate environment and users safe, working on endpoint security, IAM, data loss prevention, and automation. You'll collaborate with IT, engineering, and business teams to integrate security into workflows.

Requirements

• 4+ years experience in Corporate Security or IT Security
• Familiarity with IAM, Authentication Authorization, Endpoint management, and Network Security Controls
• Strong understanding of zero trust, threat modeling, security frameworks (SOC 2, ISO 27001), and CIS Controls
• Experience implementing DLP tooling and insider risk programs
• Experience scripting in Python and working with Okta, Google Workspace, osQuery, and EDR solutions

Responsibilities

• Lead initiatives in Endpoint Security, SaaS Security Posture Management, IAM, Identity Governance, and DLP
• Collaborate with IT, engineering, and business teams to integrate security tools and processes
• Design and build automation scripts to streamline security workflows and enforce policies
• Develop strategies for Data Loss Prevention and insider risk mitigation
• Partner with Incident Manager and provide subject matter expertise for incident response