Senior Security Engineer, TDI

3 weeks ago Be among the first 25 applicants

Okta is The World’s Identity Company. We free everyone to safely use any technology, anywhere, on any device or app. Our flexible and neutral products, Okta Platform and Auth0 Platform, provide secure access, authentication, and automation, placing identity at the core of business security and growth.

At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box – we’re looking for lifelong learners and people who can make us better with their unique experiences.

Join our team! We’re building a world where Identity belongs to you.

We are seeking a highly skilled and hands‑on Security Engineer with a Dev Sec Ops  focus to join the TDI BT Security team. In this role, you will be embedded directly within our technical environments, working side‑by‑side with engineering and operations teams to strengthen Okta’s security posture across infrastructure, cloud, and business systems. This is a tactical and strategic role—you will not only coach and mentor teams on vulnerability remediation but also be capable of performing and validating remediations yourself.

The ideal candidate combines deep technical security expertise with the ability to troubleshoot in complex environments and drive measurable improvements across the vulnerability management lifecycle.

You’ll partner closely with Security, SRE, and Engineering teams to implement scalable security controls, automate scanning and remediation workflows, and ensure our platforms—from AWS and endpoints to GTM applications like Salesforce, ERP, Google Workspace, Slack, and Zoom—are secure by design.

• Lead hands‑on vulnerability remediation efforts across endpoints (Mac/Windows), cloud workloads, and on‑prem assets.
• Deploy, configure, and operationalize tools such as Snyk, Semgrep, and Qualys to expand scanning coverage for all TDI assets.
• Collaborate with teams to troubleshoot and remediate findings; provide technical mentorship to developers and admins.
• Improve vulnerability metrics, reporting, and visibility to drive accountability and measurable risk reduction.
• Partner with GRC to integrate findings into the risk register and ensure timely remediation or risk acceptance.

• Embed within product and engineering teams to advise on secure coding, build pipelines, and deployment best practices.
• Support and enforce Prod Sec SDL adoption across business units, standardizing design reviews and requirements gathering.
• Implement secrets rotation automation and best practices for secrets management across TDI systems.
• Lead the Security Champions initiative—mentoring developers and SREs on proactive risk mitigation.

• Build and maintain secure baseline container and VM images for AWS environments, integrating core security tooling.
• Collaborate with SRE to manage update pipelines and enforce compliance with baseline standards.
• Conduct light Security Architecture Reviews (SARs) for lower environments to confirm proper controls and data handling.

• Develop automation for scanning, reporting, and patch validation.
• Identify and close gaps across CSPM, CI/CD pipeline security, and endpoint hardening.
• Provide technical guidance for integrating security into business and productivity platforms (Salesforce, ERP, Google Workspace, Slack, Zoom).

• 7+ years of experience in Security Engineering, Dev Sec Ops , or Infrastructure Security within a SaaS or enterprise environment.
• Hands‑on technical expertise in vulnerability scanning, patching, and remediation across cloud, endpoint, and SaaS ecosystems.
• Experience deploying and managing Snyk, Semgrep, and Qualys tools.
• Strong knowledge of AWS security practices, SRE principles, and securing business technology stacks (Salesforce, ERP, Google, Slack, Zoom).
• Proven ability to coach, mentor, and collaborate with development teams to improve remediation velocity.
• Practical understanding of secure SDLC / PDLC, supply chain security, and…