Staff Product Security Engineer, Reviews

• →Conduct security reviews, including design reviews, threat modeling, and penetration testing of new features and major changes.
• →Perform manual secure code reviews across multiple programming languages.
• →Identify and mitigate security vulnerabilities, providing clear guidance to engineering teams.
• →Lead product security incidents, assess risks, and drive remediation efforts.
• →Develop security tools and automation to improve vulnerability detection and assessment.
• →Mentor junior engineers and provide guidance to non-security staff on secure development practices.
• →Represent Okta externally through security research, conference talks, and publications.

• Expertise in identifying OWASP Top 10 / CWE Top 25 vulnerabilities through manual code review.
• Strong experience in penetration testing and secure development practices.
• Deep technical background in assessing Large Language Models (LLMs) and securing AI-integrated software architectures.
• Proficiency in multiple programming languages (e.g., Java, Go, Python, C/C++).
• Deep understanding of authentication & authorization protocols (OIDC, SAML, OAuth).
• Strong communication skills to explain risks and remediation to developers and leadership.
• Ability to automate security testing using LLMs and scripting (Python, Bash, etc.).
• Experience leading security incidents and risk assessments.

• Experience in mobile (iOS/Android) and desktop (Windows/macOS) security testing.
• Familiarity with SAST, DAST, SCA, and fuzzing tools.
• Strong cryptographic knowledge and secure implementation practices.
• Experience analyzing network protocols and traffic security.
• Ability to develop proof-of-concept exploits to demonstrate vulnerabilities.

#LI-Remote
#LI-AR

P25283_3463317

• Supporting Your Well-Being 
• Driving Social Impact 
• Developing Talent and Fostering Connection + Community

We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one.

Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws.

If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation.

Notice for New York City Applicants & Employees: Okta may use Automated Employment Decision Tools (AEDT), as defined by New York City Local Law 144, that use artificial intelligence, machine learning, or other automated processes to assist in our recruitment and hiring process. In accordance with NYC Local Law 144, if you are an applicant or employee residing in New York City, please click here to view our full NYC AEDT Notice.

Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Personnel and Job Candidate Privacy Notice at https://www.okta.com/legal/personnel-policy/.