Okta

Technology

StaffProductSecurityEngineer,Reviews

€120–170k ~AI est. Spain Remote Friendly

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for Senior candidates.

The Brief

“Staff Product Security Engineer, Reviews at Okta. Skills: Product security, Penetration testing, AI security, LLM security. Conduct security reviews. Conduct design reviews”

Industry & Context.

Technology

Problems you'll solve

Solve complex challenges; Attacker mindset; Critical thinking; Creative thinking

What They're Looking For.

Must Have

Expertise in identifying OWASP Top 10 / CWE Top 25 vulnerabilities through manual code review, Experience in penetration testing, Experience in secure development practices, Deep technical background in assessing Large Language Models (LLMs), Deep technical background in securing AI-integrated software architectures, Proficiency in multiple programming languages (Java, Go, Python, C/C++), Deep understanding of authentication & authorization protocols (OIDC, SAML, OAuth), Ability to automate security testing using LLMs and scripting (Python, Bash), Experience leading security incidents, Experience leading risk assessments

Nice to Have

Experience in mobile (iOS/Android) security testing, Experience in desktop (Windows/macOS) security testing, Familiarity with SAST, DAST, SCA, and fuzzing tools, Cryptographic knowledge, Secure implementation practices, Experience analyzing network protocols, Experience analyzing traffic security, Ability to develop proof-of-concept exploits

What You'll Do.

Conduct security reviews

Conduct design reviews

Conduct threat modeling

Conduct penetration testing

Perform manual secure code reviews

Identify security vulnerabilities

Mitigate security vulnerabilities

Provide guidance to engineering teams

Lead product security incidents

Drive remediation efforts

Develop security tools

Improve vulnerability detection

Mentor junior engineers

Provide guidance on secure development

Represent Okta externally

Conduct security research

Give conference talks

How You'll Work.

Team & Collaboration

Engineering teams; Non-security staff

Communication Scope

Communicate risks; Communicate impact; Communicate remediation strategies; Documentation; Presentations; External publications

Full Job Description

Secure Every Identity, from AI to Human Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organizations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk. As a Staff Product Security Engineer, you will play a critical role in safeguarding Okta’s products by conducting comprehensive security reviews, guiding engineering teams in secure development practices, and handling externally reported vulnerabilities. You will engage in code reviews, penetration testing, and architectural security assessments to ensure the security of Okta’s platforms and features. This role is not suited for individuals who rely solely on automated vulnerability scanning. Instead, you must possess a deep technical understanding of web applications, backend services, penetration testing methodologies, and secure design principles. A successful candidate will have expertise in authentication protocols (SAML, OAuth, OIDC), threat modeling, and a strong desire to automate security processes by building tools that proactively identify vulnerabilities. You will also be responsible for communicating risks, impact, and remediation strategies to developers, leadership, and external audiences through documentation, presentations, and external publications. The ideal candidate will also demonstrate a deep technical background in assessing AI-integrated software architectures and securing Large Language Models (LLMs) against emerging threats and modern vulnerability classes. The ideal candidate will have an attacker mindset—the ability to think critically, creatively, and like an adversary when solving security challenges. We actively support publi

Free ATS check

Applying for this Staff Product Security Engineer, Reviews role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 26 detected · ranked by frequency

Penetration testing ×5

Secure code review ×3

Vulnerability assessment ×3

Security automation ×3

Incident response ×3

Risk management ×3

Product security ×2

AI security ×2

LLM security ×2

Java

Python

C/C++

SAML

OAuth

OIDC

Bash

LLMs

Threat modeling

Secure design principles

Risk assessment

Security research

SAST

DAST

SCA

Fuzzing tools

BEHAVIOURAL

Attacker mindsetCritical thinkingCreative thinking

Role Details

Experience 5–10 yrs

Level Senior

Work Mode Remote

Category sec---product-security-771

Salary Band 100k-150k

AI-Extracted Insights

Domain Areas

web-applicationsbackend-servicesauthentication-protocolsauthorization-protocolsai-integrated-software-architectureslarge-language-models-llmsmodern-vulnerability-classesnetwork-protocols

ANONYMOUS · UNFILTERED

What do employees actually say about Okta?

Real rants from real employees. Read before you apply.

Read Company Rants →