Staff Software Engineer

Okta’s Workforce Identity Cloud Security Engineering group is looking for an experienced and passionate software security engineer to join a team focused on designing and developing Security solutions to harden our frameworks & infrastructure. We embrace innovation and pave the way to transform bright ideas into excellent security software solutions that help run large-scale, mission-critical software. We encourage you to prescribe defense-in-depth measures, industry security standards, enforce the principle of least privilege to  help take our Security posture to the next level. Our Security engineering team has a niche skill-set that combines Security domain expertise with  the ability to design, implement and rollout security features and functionalities without adding friction to product functionality or performance. We are responsible for the ever-growing need to improve our customer safety and privacy by providing security services that are coupled with the core Okta product.

This is a high-impact role in a security-centric, fast-paced organization that is poised for massive growth and success. You will act as a liaison between the Security org and the engineering org to build technical leverage and influence the security roadmap and direction. You will focus on engineering security and privacy aspects of the systems used across our services while working on a weekly release cadence. You will be empowered to propose  stimulating new projects for our roadmap and rewarded with projects using  emerging technologies. Join us and be part of a company that is about to change the cloud computing landscape forever.

Bring all the passion and dedication along and there’s no telling what you could accomplish!

Preferred qualification and abilities:

• 7+ years of development experience in designing and implementing software systems in Java, building highly reliable and mission-critical software.
• 3+ years of work experience in designing and implementing security solutions for applications and distributed systems.
• Work experience and excellent understanding in mitigating OWASP Top 10 attacks on applications, Application Security, Cryptography, Authentication, Authorization using Role-Based and Attribute-Based access controls.
• Strong understanding of concepts such as Test-Driven development, Secure SDLC, Secure code reviews and the ability to identify and mitigate threat vectors and vulnerabilities in code and infrastructure.
• Good understanding and experience in using cloud service providers such as AWS and GCP.
• Developing and maintaining technical documentation such as cookbooks, design and architecture docs.
• Troubleshooting and fixing production issues to ensure reliability, security and performance.
• Work experience in using RDBMS like MySQL, good grasp of concepts such as  replication and clustering along with familiarity in data stores such as Redis and Elasticsearch.
• Excellent grasp of software engineering principles coupled with strong written and verbal communication skills.
• B.S or M.S in Computer Science or related fields.

Responsibilities :

• Act as a liaison between the engineering and security org to develop innovative requirements for the security roadmap.
• Evangelize security best practices across the engineering org.
• Research, design, implement and own security oriented frameworks and features with the common goal of protecting Okta’s customers.
• Routinely participate in cross-vertical code reviews with emphasis on Security.
• Break down complex problems into sub-tasks while prototyping rapidly and iteratively contributing to security initiatives using agile practices.
• Coach and mentor junior engineers in the team.