We are Rokt, a hyper-growth ecommerce leader. We enable companies to unlock value by making each transaction relevant at the moment that matters most, when customers are buying. Together, Rokt's AI-based relevance Platform and scaled ecommerce network powers billions of transactions. In December 2022, Rokt’s valuation increased to $2.4 billion USD, allowing us to expand rapidly across 15 countries.

At Rokt, we practice transparency in career paths and compensation.

At Rokt, we believe in transparency, which is why we have a well-defined career ladder with transparent compensation and clear career paths based on competency and ability. Rokt’stars constantly strive to raise the bar, pushing the envelope of what is possible.

We are looking for a Head of Insider Risk

Compensation: $218,000 - $286,000 salary, employee equity plan grant & world class benefits.

At Rokt, the head of insider risk is essential for protecting the company from internal threats that could jeopardize security, data integrity, or operational efficiency. They identify, assess, and mitigate risks posed by employees, contractors, and others with access to sensitive information. This role involves developing and implementing strategies to prevent and respond to insider threats such as unauthorized data access or sabotage. Utilizing risk assessment tools, monitoring systems, and behavioral analysis, they ensure threats are managed proactively. Balancing robust security measures with maintaining a positive workplace culture is key, ensuring that preventive actions do not erode employee trust and morale.

About the role:

• Define the scope of the insider risk program and develop its framework
• Conduct risk assessment of existing environment and opportunities to prevent data exfiltration
• Secure formal approval for governance structure and support from executives and key stakeholders.
• Create procedures for detecting potential insider threats, including monitoring and reporting mechanisms. This includes implementing or upgrading technologies such as Data Loss Prevention (DLP) systems, User and Entity Behavior Analytics (UEBA) and other relevant tools.
• Establish metrics to measure the effectiveness of the insider risk program such as the number of incidents detected, response times, and training completion rates.
• Design and implement training programs for employees, focusing on recognizing and reporting potential insider threats.