Okta Logo

Okta

Senior Product Security Engineer, Software Supply Chain Security

Posted 2 Days Ago
Be an Early Applicant
Ireland
Mid level
Ireland
Mid level
As a Senior Product Security Engineer, you will enhance Okta's Software Supply Chain Security by implementing automation for application vulnerability management, participating in triaging security findings, contributing to CI/CD processes, and defining strategies to mitigate security risks.
The summary above was generated by AI

Get to know Okta
Okta is The World’s Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth. 
At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences. 
Join our team! We’re building a world where Identity belongs to you.

We are looking for a talented Security Engineer to join our Software Supply Chain Security Team and help us enhance our application security program. As a Product Security Engineer, you will contribute to the security of various aspects of Okta's Software Supply Chain Security posture, implement services, and define processes that mitigate risk in this space.

The ideal candidate has strong Application Security knowledge, alongside a hands–on experience with automation through custom code.

Your main responsibilities will include:

  • Implement automation, contributing to the implementation of internal, in-house developed systems to implement Okta specific requirements related to application vulnerability identification, tracking and reporting. 
  • Participate in weekly rotations to support our Engineering team when triaging and remediating findings related to the team's initiatives.
  • Contribute to the definition of internal processes that allow for fast delivery of software to production systems through CI/CD pipelines while meeting security quality criteria with minimal effort.
  • Contribute to the team's strategy and planning, capitalizing on their security knowledge and the identification and prioritization of risk affecting Okta products.

To be considered for this role, you should have:

  • At least 3-5 years of experience in Application Security with a strong focus on security automation and application security at scale.
  • Knowledge of modern web application vulnerabilities and remediations (e.g., OWASP Top 10, CWE Top 25).
  • Functional knowledge of security code reviews (Java, .Net, Go, C, C++, C#, Ruby, Perl, Python, etc.). You should be able to read code and identify, explain, and propose. remediations for the most common vulnerabilities in, at least, code bases for web applications in one of the languages listed.
  • Software development experience in Python; or similar languages and being open to learning Python.
  • Experience with commercial or open-source security scanners in the SCA space, or provable experience implementing hardening measures for SDLC pipelines. 

Additional skills we're looking for include:

  • Knowledge of at least one of AWS, GCP, Azure, etc.
  • Experience with CI/CD pipelines, either on-prem or cloud.

Qualifications:

  • Bachelor's degree in Computer Science, Computer Engineering, or equivalent experience.
  • Industry certifications related to Application and Network Security, are a plus.

At our company, we value collaboration, teamwork, and innovation. This role will report to the Manager of Software Supply Chain Security, and will work closely with other members of the DevSecOps team. We are passionate about what we do and strive to create an inclusive and diverse workplace where everyone can thrive. If you are excited about this opportunity and meet the qualifications listed above, we encourage you to apply. We look forward to hearing from you.


#LI-Remote

#LI-JP3

What you can look forward to as a Full-Time Okta employee!

  • Amazing Benefits
  • Making Social Impact
  • Fostering Diversity, Equity, Inclusion and Belonging at Okta 

Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Okta today! https://www.okta.com/company/careers/.

Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to participate in the job application, interview process, or onboarding please use this Form to request an accommodation.

Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy at https://www.okta.com/privacy-policy/. 

Top Skills

.Net
C
C#
C++
Go
Java
Perl
Python
Ruby

Okta Dublin, Dublin, IRL Office

35 Shelbourne Rd, Ballsbridge, Dublin, Dublin, Ireland, D04 A4E0

Similar Jobs

An Hour Ago
Remote
Hybrid
4 Locations
Senior level
Senior level
Cloud • Computer Vision • Information Technology • Sales • Security • Cybersecurity
The Threat Researcher at CrowdStrike will analyze threats and develop defenses against adversaries by reviewing intelligence, researching malware, and reverse engineering techniques. This role requires collaboration with engineering teams and certification partners to enhance threat detection and response capabilities.
Top Skills: Reverse Engineering
An Hour Ago
Remote
Hybrid
4 Locations
Entry level
Entry level
Cloud • Computer Vision • Information Technology • Sales • Security • Cybersecurity
As a Security Researcher at CrowdStrike, you will conduct research on advanced cyber intrusions, enhance malware understanding through reverse engineering, develop automation tools, and produce high-quality threat intelligence reports. Collaboration with various teams and continuous tracking of threats are essential parts of the role.
Top Skills: Python
An Hour Ago
Remote
Hybrid
6 Locations
Senior level
Senior level
Cloud • Computer Vision • Information Technology • Sales • Security • Cybersecurity
The Sr. Red Team Engineer at CrowdStrike will simulate threat actors and advanced techniques while improving the Falcon platform. Responsibilities include designing and executing adversarial emulations, replicating malware techniques, performing tradecraft analysis, and effectively communicating results to enhance security measures.
Top Skills: .NetAsmC++GoRust

What you need to know about the Dublin Tech Scene

From Bono and Oscar Wilde to today's tech leaders, Dublin has always attracted trailblazers, with more than 70,000 people working in the city's expanding digital sector. Continuing its legacy of drawing pioneers, the city is advancing rapidly. Ireland is now ranked as one of the top tech clusters in the region and the number one destination for digital companies, with the highest hiring intention of any region across all sectors.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account