Security Engineer, Incident Response (Senior/Principal)

Full Time
San Jose, CA
Areas of Interest: Incident Response
report a problem

Powering the Cloud & Mobile Enterprise
Integrated Identity & Mobility Management
You will be a part of Okta’s defensive security team and take a leadership role in Internet-scale defensive security measures surrounding the Okta platform, code base, and infrastructure. Our Engineer will architect, design, and maintain Okta’s technology surrounding security monitoring & response, system/services security, and vulnerability and malware prevention. This person will be required to work effectively and seamlessly with Okta’s existing offensive security team, development team, and Okta’s Dev-Ops team. The Security Engineer will need to stay ahead of the state-of-the-art in Internet-scale web service security defensive measures as well as bleeding-edge web attack methodologies.

Job Duties and Responsibilities:

  • Play a key role in Okta’s Incident Response & Forensics efforts by collaborating with internal IT, Engineering, DevOps and Product Management teams to facilitate identification, handling and resolution of Corporate and Production environment security incidents
  • Monitor, maintain and continually strive to improve Okta’s security monitoring initiatives by identifying and ingesting new security log sources, and by writing (Anticipated and Reactive) custom security event correlation rules to identify targeted malicious activity
  • Lead/contribute to implementation or improvement of automation around AWS Service-level security controls and build solutions for monitoring corporate SaaS services
  • Maintain, monitor and continually improve Okta's monitoring instrumentation, intrusion detection setup & rules, Endpoint detection solution and DNS/Content Filtering systems
  • Design, evangelize and implement security process & technical controls to enhance Okta's ability to detect, analyze and prevent malicious activity
  • Provide subject matter expertise to internal product & infrastructure teams in evaluating current roadmap by performing high-level threat modeling and/or product/network architecture reviews
  • Research new threats, attack vectors, 0 days that impact Okta's application/infrastructure, provide remediation recommendations and monitor remediation efforts

Minimum Requirements:

  • 5+ years of hands-on experience as a lead contributor to Security Operations, Incident Response or Security Architecture in cloud environments
  • Experience carrying out forensics investigations across different platforms including OSX, Unix and Windows
  • Experience building security in continuous deployment pipelines 
  • Deep understanding of the TCP/IP Stack, Web-Application Architecture, and Encryption Fundamentals
  • Working knowledge of Splunk, ELK or other security monitoring/response products
  • Experience in Security root cause analysis across systems, network, code in legacy and cloud environments
  • Experience building fraud detection systems for SaaS Product/Services
  • Knowledge of generally accepted forensic practices such as chain of custody
  • Proficient in at least one scripting language and ability to integrate code with existing automation solutions

Nice to have:

  • Exposure or experience working with AWS. 

Desired Soft Skills:

  • Strong written and verbal communication skills
  • Ability to work in a team or be a strong Independent Contributor
  • Experience influencing and driving Cross-functional security initiatives to completion
Okta is an Equal Opportunity Employer.

Share this job:

Okta, Inc.

Okta is the foundation for secure connections between people and technology. By harnessing the power of the cloud, Okta allows people to access applications on any device at any time, while still enforcing strong security policies. It integrates directly with an organization’s existing directories and identity systems, as well as 4,000+ applications. 

Because Okta runs on an integrated platform, organizations can implement the service quickly at large scale and low total cost. 

More than 2,000 customers, including Adobe, Allergan, Chiquita, LinkedIn, MGM Resorts International and Western Union, trust Okta to help their organizations work faster, boost revenue and stay secure. 
Identity Management, Access Management, Single Sign-On, SaaS, Cloud, User Management, Mobile Security, Mobility Management, IDaaS
Visit Okta, Inc.'s Social Media pages:
Company Industry: Computer Software
Company Type: Privately Held
Company Size: 201-500