about 3 hours ago
Responsibilities
- Conduct security reviews, including design reviews, threat modeling, and penetration testing of new features.
- Perform manual secure code reviews across multiple programming languages.
- Identify and mitigate security vulnerabilities, providing clear guidance to engineering teams.
- Lead product security incidents, assess risks, and drive remediation efforts.
- Develop security tools and automation to improve vulnerability detection and assessment.
- Mentor junior engineers and provide guidance on secure development practices.
- Represent Okta externally through security research, conference talks, and publications.
Requirements
- Expertise in identifying OWASP Top 10 / CWE Top 25 vulnerabilities through manual code review.
- Strong experience in penetration testing and secure development practices.
- Deep technical background in assessing Large Language Models (LLMs) and securing AI-integrated software architectures.
- Proficiency in multiple programming languages (e.g., Java, Go, Python, C/C++).
- Deep understanding of authentication & authorization protocols (OIDC, SAML, OAuth).
- Strong communication skills to explain risks and remediation to developers and leadership.
- Ability to automate security testing using LLMs and scripting (Python, Bash, etc.).
- Experience leading security incidents and risk assessments.
Benefits
- Comprehensive healthcare coverage and financial benefits including paid time off and parental leave.
- Equity options where applicable.
- Immersive, in-person onboarding experience designed to accelerate impact.