Staff Product Security Engineer
$180k - $247.5kOkta
Secure Every Identity, from AI to Human
Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organizations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.The Security Team
Okta is The World's Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transform how people move through the digital world, putting Identity at the heart of business security and growth.
At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every box—we're looking for lifelong learners and people who can improve us with their unique experiences.
Join our team! We're building a world where Identity belongs to you.
The Staff Product Security Engineer Opportunity
The Security team's mission is to strengthen Okta's position as the leading Identity-as-a-service solutions provider by identifying and resolving risks to employees, products, and, most importantly, our customers.
The Staff Product Security Engineer joins a team with a single mandate: get ahead of the security risks introduced by agentic systems before they become operational reality at Okta. This is a research and engineering role. The work is long-horizon and adversarial: understanding how prompt injection propagates through an agent with write access to a code repository, how privilege escalation manifests in an orchestration model with dynamic tool bindings, and what an agentic supply-chain attack looks like against an internal developer platform. The findings this team produces shape SDL requirements, feed reusable security tooling across all of Product Security, and drive Okta's AI and agent-based system security approach at the design level.
The ideal candidate thinks like an attacker, builds like an engineer, and publishes their findings. We actively support external research disclosure through white papers, blog posts, and conference presentations.
What You Will Do
- Conduct offensive security research focused on agentic AI systems: prompt injection, agent privilege escalation, tool-binding abuse, and agentic supply chain attacks against internal developer platforms.
- Perform security assessments of Okta's AI platforms—including agentic systems and LLM-integrated products—across design, code, and runtime.
- Build reusable security tooling that multiplies the entire Product Security team's capability.
- Run the AI security vendor and tooling evaluation program: design and operate a benchmarking harness against AI security tools.
- Perform manual code review of AI and agent-based system implementations across multiple languages.
- Develop threat models for agentic architectures, orchestration layers, and LLM-integrated services.
- Translate research findings into actionable guidance for engineering teams building AI-powered features and platforms.
- Represent Okta externally through security research, conference presentations, white papers, and publications.
- Mentor engineers across Product Security on AI/agentic security concepts, tooling, and assessment methodology.
What You Bring
- 7+ years of experience in information security, with meaningful depth in application security, offensive research, or AI/ML security.
- Demonstrated hands-on experience assessing LLM-integrated systems and agentic AI architectures—not just familiarity with the concepts, but evidence of having found real vulnerabilities in them.
- Strong offensive mindset: the ability to model what an adversary does with an agentic system, identify where the model's reasoning or the orchestration layer breaks down, and construct scenarios that make the risk concrete.
- Experience building security tooling and automation—scripts, scanners, detection logic, or evaluation harnesses—that other engineers actually use.
- Proficiency in at least two programming languages (Python and one of: Go, Java, TypeScript, C/C++).
- Advanced experience in threat modeling, manual code review, and penetration testing, applied to complex distributed systems.
- Knowledge of authentication and authorization protocols (OIDC, OAuth 2.0, SAML) and their implementation risks.
- Strong communication skills: the ability to write clearly for technical and non-technical audiences, document research findings with precision, and present at external venues.
- Experience producing external security research—publications, conference talks, blog posts, or open-source tooling.
Desired Skills and Abilities
- Familiarity with agentic framework internals (tool-use protocols, MCP, function-calling patterns, agent orchestration architectures).
- Experience with SAST, DAST, SCA, and fuzzing tooling applied to AI/ML pipelines or CI/CD systems.
- Strong cryptographic knowledge and experience in identifying cryptographic implementation flaws.
- Ability to develop proof-of-concept exploits that demonstrate AI/agentic vulnerabilities to engineering and product leadership.
- Experience contributing to security standards, SDL processes, or vulnerability research programs.
#LI-SM1
#LI-Hybrid
P25264_3461996
Below is the annual base salary range for candidates located in San Francisco Bay Area. Your actual base salary will depend on factors such as your skills, qualifications, experience, and work location. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program please visit: .
The annual base salary range for this position for candidates located in the San Francisco Bay area is between: $180,000—$247,500 USD
The Okta Experience
We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one.
Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation. Notice for New York City Applicants & Employees: Okta may use Automated Employment Decision Tools (AEDT), as defined by New York City Local Law 144, that use artificial intelligence, machine learning, or other automated processes to assist in our recruitment and hiring process. In accordance with NYC Local Law 144, if you are an applicant or employee residing in New York City, please click here to view our full NYC AEDT Notice. Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Personnel and Job Candidate Privacy Notice at .- ...the environment and civilization from the effects of infrastructure failure. Role at a Glance We are hiring an experienced Product Security Engineer to embed security deeply into how Gecko designs, builds, deploys, and operates software. This role goes far beyond...SuggestedWork at officeLocal areaWork from homeFlexible hours
- Oscar Health is seeking a Senior Product Security Engineer 1 to join our Security Team in New York City. You will lead security across the SDLC, collaborating with engineers to design, test, and deploy secure software during development and AI-driven workflows. You will...Suggested
$30 - $50 per hour
Role Overview As a Product Security Engineer, you will embed security into the software lifecycle for platforms that handle AI/ML data operations. You will help secure services supporting data labeling, content safety labeling, RLHF evaluation, and model evaluation tooling...SuggestedHourly payRemote work$30 - $50 per hour
A tech company in the United States is seeking a Product Security Engineer to embed security in the software lifecycle for AI/ML data operations. As part of this role, you will drive secure SDLC practices, lead threat modeling, and manage vulnerabilities. Experience in...SuggestedRemote jobHourly pay$170k - $215k
...CLEAR connects you to the things that make you, you - unlocking easier, more secure, and more seamless experiences - making them all feel like magic. We are looking for a Product Security Engineer to join our growing team. As a Product Security Engineer, you will have...SuggestedFlexible hours$140k - $180k
StackAI, located in New York, is hiring a Senior Product Security Engineer to design, build, and secure the architecture for AI assistants. You'll be responsible for encryption, key management, and ensuring customer data protection, while collaborating with engineering...$163.94k - $215.18k
Hi, we're Oscar. We're hiring a Senior Product Security Engineer 1 to join our Security Team. Oscar is the first health insurance company built around a full stack technology platform and a relentless focus on serving our members. We started Oscar in 2012 to create the...Full timeWork experience placementWork at officeFlexible hours- Join to apply for the Sr. Product Security Engineer role at Betterment About Betterment Betterment is a leading, technology-driven financial services company that offers investing and retirement solutions for retail investors, investment advisors, and financial wellness...Full timeWork at officeLocal areaFlexible hours
$122.9k - $216.3k
The Opportunity Adobe’s Security Partnership Product Engineering (SPPE) team is hiring a mid-level engineer to build the AI-powered platforms that help secure our products. The team’s tools include a threat modeling capability that delivers analysis in seconds and a new...Local area$225k - $300k
CLEAR is building THE secure identity company of the future. Our mission is to make experiences safer and easier—physically and... ...the magic of frictionless experiences. As a Senior Product Security Engineer, Vulnerability Management on our Product Security team you’...Casual workWork at officeFlexible hours$140k - $180k
About The Role At StackAI, security is how we earn the trust of the enterprises building AI assistants on our platform. We're hiring a hands‑on (Senior) Product Security Engineer to design, build, and harden the secure architecture at the core of the product, working as...- A Fortune-level consumer technology company is seeking a Principal Technical Product Security Engineer to secure complex client applications. This hybrid position involves leading architecture reviews, embedding security in the software development lifecycle, and mentoring...
$225k - $275k
A financial technology firm is seeking a Security Engineer to integrate security into product development. The role includes threat modeling, reviewing source code, and advising teams on security requirements. Ideal candidates have expertise in web application architecture...Remote jobFlexible hours$180k - $247.5k
Secure Every Identity, from AI to Human Identity is the key to unlocking the potential of AI. Okta secures AI by building... ...all in on this mission. If you are too, let's talk. The Staff Product Security Engineer Opportunity As a Staff Product Security Engineer, you...Local areaWorldwideFlexible hours$225k - $275k
...hidden fees or compounding interest. Affirm values information security as a critical part of the company’s continued success. Our... ..., enabling the company to succeed in building honest financial products. The Security team posture increases security and reduces risk...Work at officeRemote workFlexible hours- Okta, located in New York City, is looking for a Staff Product Security Engineer to safeguard its products through comprehensive security reviews and guiding secure development practices. This role will conduct penetration testing and identify vulnerabilities while mentoring...
$180k - $250k
Artemis Security is seeking a Product Engineer in New York City to develop AI-native interfaces and features for our cybersecurity portal. The ideal candidate will have over 4 years of experience in full-stack development, proficient with React and Python, and a passion...$175k - $210k
...from the effects of infrastructure failure. Role at a Glance We are building the Product Security team to build and scale application security at Gecko. As a Product Security Engineer you will play a key role in shaping how security works across our product as we...Work at officeLocal areaWork from homeFlexible hours$201k - $260k
...500+ customers in 50+ countries, strong product-market fit, and world-class investor support... ...to our customers — from leadership to engineers — and work together to solve real... ...more complex challenges in less time. Security is at the heart of what we do. Our customers...Flexible hours- ...versions of ourselves. About the Security Department The Security... ...evolve our cyber, physical, and staff security practices to meet... ...powered security copilots for engineering teams that perform real‑time... ...anomaly detection for AI agents in production. Design human‑in‑the‑loop...Contract workShift work
- ...Staff Security Architect New York, New York About Bridgewater Bridgewater Associates is a premier asset management firm,... ...in the early stages of solution design, working alongside engineering, product, and business teams to ensure security is foundational, not...Contract work
$5,000 per month
...year end. The people who join now have an outsized chance to shape how this company is built. The engineering team is small and deliberately so. There are no product managers, no designer handoffs, no tickets waiting for someone else to prioritise. Engineers own the...Work at office3 days per week1 day per week$100 per hour
...Founding Engineer Role We call this a Founding Engineer role—even three years in and with multiple state contracts under our belt—for two reasons. First, you'll be one of our earliest product hires, joining a co-founder who has built the platform solo to date. Second...Live inRelocationNight shiftDay shift- ...using React & Remix Must have ~5 - 10 years of experience as a software engineer who has shown consistent growth ~ Senior - Staff level and working on products as a full stack or frontend focused developer. Someone with mostly back-end experience...Second job
- ...Senior Product Engineer, Front End Location: New York, NY Employment Type: Full-time Focus: React, TypeScript, Frontend Architecture, Insurtech About Our Client Our client is a claims intelligence startup using data to fight fraud across the property...Full timeFor contractors
$150k - $275k
...Product Engineer We are singularly focused on delivering 10 to 100s of GWs of compute faster than anyone else, rethinking every layer of the stack. We acquire power, design and build data centers, and operate them - with teams spanning hardware and software. Speed...Full time$200k - $220k
...About the Role As a Product Engineer, you will be at the heart of our member experience, translating powerful AI capabilities into beautiful, intuitive, and reliable product features. Build and ship delightful, AI-powered features across our web and mobile applications...- ...Senior Platform Engineer About Titan: Titan is an AI holding company transforming IT services with its Augmented AI platform... ...MSPs like RFA, and deployed agents seeing real-world impact to productivity. Our team brings together AI product expertise from Scale AI,...
$150k - $200k
...people who join now will shape how we build and what we build. About the Role As one of Marble's early engineers, you'll own truly life-changing products end-to-end. You'll work across a full-stack platform - building the school-facing product that connects...Work at office3 days per week- ...Kernel Product Engineer Kernel is crazy fast, open source browser infrastructure for AI agents. We handle autoscaling, observability, and... ...+ dependent coverage ~ Small, trusting team of senior + staff engineers ~ Default async with minimal bureaucracy, only...Relocation package
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Staff Product Security Engineer. Be the first to apply!
- assistant chief engineer New York, NY
- technology administrator New York, NY
- project engineer assistant project manager New York, NY
- staff security engineer New York, NY
- engineering aide New York, NY
- senior staff systems engineer New York, NY
- staff design engineer New York, NY
- research assistant engineering New York, NY
- staff data engineer New York, NY
- assistant engineering manager New York, NY


