We're looking to hire a Technical Program Manager to drive the Security program at Asana. You will partner with Product, Engineering, Sales, and Legal teams to build a program and drive execution of critical security initiatives that ensure we correctly and consistently identify risks in new products, and maintain compliance with relevant regulatory requirements.
The Security team ensures that Asana's users and employees are safe from malicious activity and accidental disclosure. We build the systems and tools that enable the rest of Asana to develop secure software easily. We're focused on secure-by-default frameworks, least privilege access, detection and alerting, and eliminating bug classes.
The Security team builds the systems and tools that enable the rest of Asana to develop secure software easily. We're focused on secure-by-default frameworks, least privilege access, detection and alerting, and eliminating bug classes.
What you'll achieve
Develop a Security program that identifies and minimizes risk while ensuring we meet our compliance and legal objectives
Build relationships with internal and external stakeholders to make sure the Security program is on the right track
Document our Security controls, risky systems, and process gaps
Prioritize and plan the Security team's high level work along with which compliance standards we need to address next
Work with auditors to document compliance gaps and work with leadership to convert them into actionable programs.
Develop and tune productionization plans with minimal to no disruption to services
Reject false trade-offs and bring visibility to meaningful trade-offs to stakeholders.
4+ years of experience in a compliance or technical program management
Bachelor degree in Computer Science, Information Systems, or similar field or 3+ years of experience in lieu of the degree
Experience with information security required
Ability to translate regulatory, compliance, or customer requirements into concise and practical engineering requirements and prioritize compliance standards for maximum business impact and minimum disruption
Experience working with a broad set of internal stakeholders across various departments.
Experienced in planning, project definition, schedule, resources, technical decisions and trade-offs, as well as tracking, executing, and releasing projects to production
Experience in Enterprise SaaS
Experience in coding & being able to help engineers in fixing small problems in code
Experience with at least one of: SOC 2, ISO 27001, HIPAA, FERPA, PrivacyShield, SOX 404, or CSA STAR
Asana is a leading work management platform, helping more than 70,000 organizations and millions of users across 195 countries organize and manage all of their work, including AB-InBev, Airbnb, AllBirds, KLM Air France, Kohl's, NASA, Panera, Sephora, Uber, Viessmann Group and Vox Media. Asana has been named a Top 5 Best Place to Work by FORTUNE three years in a row, and one of Glassdoor's and Inc.'s Best Places to Work. Headquartered in San Francisco with offices in New York, Dublin, Sydney, Vancouver, and Reykjavk, Asana is always looking for curious, collaborative people to be a part of our inclusive culture and help us achieve our mission.
Our goal is to ensure that Asana upholds an inclusive environment where all people feel that they are equally respected and valued, whether they are applying for an open position or working at the company. We welcome applicants of all educational backgrounds, gender identities and expressions, sexual orientations, religions, ethnicities, ages, citizenships, socioeconomic statuses, disabilities, and veteran statuses, and we'd love to learn about what you can add to our team.