Get to know OktaOkta is The World’s Identity Company. We free everyone to safely use any technology, anywhere, on any device or app. Our flexible and neutral products, Okta Platform and Auth0 Platform, provide secure access, authentication, and automation, placing identity at the core of business security and growth.At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences. Join our team! We’re building a world where Identity belongs to you.

Principal Security Engineer

The Principal Security Engineer is a key role for strengthening the organization's security posture. You'll be responsible for performing security assessments of third-party integrations and connected apps, with a focus on mitigating API-related security risks. This position is vital for ensuring a "secure-by-design" approach for critical systems within the organization.

What You Will Do

• Lead Security Reviews: Conduct in-depth security reviews and threat modeling for a wide range of enterprise applications and integrations
• Assess and Document Risk: Analyze and document API permissions and associated risk levels for enterprise-wide application integrations, including Slack, Salesforce, Google, and Chrome extensions
• Drive Secure Integrations: Collaborate with stakeholders to review and approve integrations, ensuring alignment with security policies and standards. You'll also develop workflow processes for these reviews, such as the Salesforce API Integration Review Workflow
• Operationalize Security Tools: Lead the operationalization and deployment of API Security Posture Management capabilities to enhance our security toolset
• Report on Security Posture: Contribute to the creation of a comprehensive dashboard to visualize and report on the overall security posture
• Advise on Mitigation: Identify and assess potential vulnerabilities in applications and integrations, and recommend effective mitigation strategies
• Maintain Documentation: Ensure all security documentation, including threat exposure maps and workflow processes, is properly maintained and updated

What You Bring

• Proven experience in information security, with a focus on application and enterprise security
• Expertise in assessing and mitigating security risks, especially those related to third-party APIs and connected applications
• Strong understanding of security concepts such as least privilege and secure-by-design.
• Experience in threat modeling and risk assessment, with the ability to identify potential attack vectors
• Proficiency with security tools and platforms for analyzing application permissions and API usage
• Exceptional collaboration and communication skills, with the ability to influence and align multiple stakeholders and teams
• Strong analytical and problem-solving abilities
• Bachelor's degree in computer science, information security, or a related field
• Industry certifications such as CISSP, CISM, or CISA preferred
• A growth mindset and a willingness to learn and continuously improve

#LI-HYBRID

P21723_3279039

Below is the annual salary range for candidates located in Canada. Your actual salary will depend on factors such as your skills, qualifications, and experience. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental, and vision insurance, RRSP with a match, healthcare spending, telemedicine, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program, please visit: https://rewards.okta.com/can.

The annual base salary range for this position for candidates located in Canada is between:$186,000—$278,000 CAD

What you can look forward to as a Full-Time Okta employee!

• Amazing Benefits
• Making Social Impact
• Developing Talent and Fostering Connection + Community at Okta

Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Okta today! https://www.okta.com/company/careers/.Some roles may require travel to one of our office locations for in-person onboarding.

Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation.Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Personnel and Job Candidate Privacy Notice at https://www.okta.com/legal/personnel-policy/.