Top Benefits
Remote work flexibility
Health and wellness benefits
Financial benefits and incentives
About the role
Who you are
- At least 5 years of experience in Application Security, with a strong focus on security automation and building secure systems at scale
- A deep understanding of modern web application vulnerabilities and remediation techniques (OWASP Top 10, CWE Top 25)
- Proven ability to perform security code reviews in at least one major programming language (Python, Go, Java, or C#). You should be able to read code, identify vulnerabilities, and propose effective remediation strategies
- Significant software development experience in Python, or a similar language, with a strong interest in learning Python
- A proven track record of automating and streamlining security processes, including hands-on experience implementing and managing commercial or open-source DevSecOps tools and hardening CI/CD pipelines
- Knowledge of at least one of AWS, GCP, Azure, etc
- Experience with CI/CD pipelines, either on-prem or cloud
- Bachelor's degree in Computer Science, Computer Engineering, or equivalent experience
- Industry certifications related to Application and Network Security, are a plus
What the job involves
- We are looking for a talented Security Engineer to join our Code Security Team and help us enhance our application security program
- As a Product Security Engineer, you will contribute to the security of various aspects of Okta's DevSecOps Security posture, implement services, and define processes that mitigate risk in this space
- The ideal candidate has strong Application Security knowledge, alongside a hands–on experience with automation through custom code
- Architect, implement, and manage DevSecOps tools, automating security checks and embedding SAST, DAST, IaC, and secret scanning into CI/CD pipelines
- Build and maintain AWS-based secure infrastructure and automation pipelines using EC2, Step Functions, and Lambda, leveraging native security controls
- Support Engineering through weekly rotations, assisting with triage, prioritisation, and remediation of findings to ensure timely remediation of vulnerabilities
- Develop automation for internal systems to meet Okta-specific requirements for vulnerability identification, tracking, and reporting
- Drive the definition and refinement of internal processes to accelerate secure software delivery
- Contribute to security strategy, risk prioritization, and planning to strengthen Okta product security
Benefits
- Work from home opportunities
- Health + Wellness
- Financial Benefits
- Pay + Incentives
- Time Off
- Everyday Living
- Resources
Top Benefits
Remote work flexibility
Health and wellness benefits
Financial benefits and incentives
About the role
Who you are
- At least 5 years of experience in Application Security, with a strong focus on security automation and building secure systems at scale
- A deep understanding of modern web application vulnerabilities and remediation techniques (OWASP Top 10, CWE Top 25)
- Proven ability to perform security code reviews in at least one major programming language (Python, Go, Java, or C#). You should be able to read code, identify vulnerabilities, and propose effective remediation strategies
- Significant software development experience in Python, or a similar language, with a strong interest in learning Python
- A proven track record of automating and streamlining security processes, including hands-on experience implementing and managing commercial or open-source DevSecOps tools and hardening CI/CD pipelines
- Knowledge of at least one of AWS, GCP, Azure, etc
- Experience with CI/CD pipelines, either on-prem or cloud
- Bachelor's degree in Computer Science, Computer Engineering, or equivalent experience
- Industry certifications related to Application and Network Security, are a plus
What the job involves
- We are looking for a talented Security Engineer to join our Code Security Team and help us enhance our application security program
- As a Product Security Engineer, you will contribute to the security of various aspects of Okta's DevSecOps Security posture, implement services, and define processes that mitigate risk in this space
- The ideal candidate has strong Application Security knowledge, alongside a hands–on experience with automation through custom code
- Architect, implement, and manage DevSecOps tools, automating security checks and embedding SAST, DAST, IaC, and secret scanning into CI/CD pipelines
- Build and maintain AWS-based secure infrastructure and automation pipelines using EC2, Step Functions, and Lambda, leveraging native security controls
- Support Engineering through weekly rotations, assisting with triage, prioritisation, and remediation of findings to ensure timely remediation of vulnerabilities
- Develop automation for internal systems to meet Okta-specific requirements for vulnerability identification, tracking, and reporting
- Drive the definition and refinement of internal processes to accelerate secure software delivery
- Contribute to security strategy, risk prioritization, and planning to strengthen Okta product security
Benefits
- Work from home opportunities
- Health + Wellness
- Financial Benefits
- Pay + Incentives
- Time Off
- Everyday Living
- Resources