Staff Product Security Engineer, Reviews
$180k - $247.5kOkta
Secure Every Identity, from AI to Human
Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organizations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.The Staff Product Security Engineer Opportunity
As a Staff Product Security Engineer, you will play a critical role in safeguarding Okta’s products by conducting comprehensive security reviews, guiding engineering teams in secure development practices, and handling externally reported vulnerabilities. You will engage in code reviews, penetration testing, and architectural security assessments to ensure the security of Okta’s platforms and features.
This role is not suited for individuals who rely solely on automated vulnerability scanning. Instead, you must possess a deep technical understanding of web applications, backend services, penetration testing methodologies, and secure design principles.
A successful candidate will have expertise in authentication protocols (SAML, OAuth, OIDC), threat modeling, and a strong desire to automate security processes by building tools that proactively identify vulnerabilities. You will also be responsible for communicating risks, impact, and remediation strategies to developers, leadership, and external audiences through documentation, presentations, and external publications. The ideal candidate will also demonstrate a deep technical background in assessing AI-integrated software architectures and securing Large Language Models (LLMs) against emerging threats and modern vulnerability classes.
The ideal candidate will have an attacker mindset—the ability to think critically, creatively, and like an adversary when solving security challenges. We actively support public disclosure of research and findings through white papers, blog posts, and conference presentations.
What You Will Do
- Conduct security reviews, including design reviews, threat modeling, and penetration testing of new features and major changes.
- Perform manual secure code reviews across multiple programming languages.
- Identify and mitigate security vulnerabilities, providing clear guidance to engineering teams.
- Lead product security incidents, assess risks, and drive remediation efforts.
- Develop security tools and automation to improve vulnerability detection and assessment.
- Mentor junior engineers and provide guidance to non-security staff on secure development practices.
- Represent Okta externally through security research, conference talks, and publications.
What You Bring
- Expertise in identifying OWASP Top 10 / CWE Top 25 vulnerabilities through manual code review.
- Strong experience in penetration testing and secure development practices.
- Deep technical background in assessing Large Language Models (LLMs) and securing AI-integrated software architectures.
- Proficiency in multiple programming languages (e.g., Java, Go, Python, C/C++).
- Deep understanding of authentication & authorization protocols (OIDC, SAML, OAuth).
- Strong communication skills to explain risks and remediation to developers and leadership.
- Ability to automate security testing using LLMs and scripting (Python, Bash, etc.).
- Experience leading security incidents and risk assessments.
Desired Skills and Abilities
- Experience in mobile (iOS/Android) and desktop (Windows/macOS) security testing.
- Familiarity with SAST, DAST, SCA, and fuzzing tools.
- Strong cryptographic knowledge and secure implementation practices.
- Experience analyzing network protocols and traffic security.
- Ability to develop proof-of-concept exploits to demonstrate vulnerabilities.
#LI-SM1
#LI-Hybrid
P25262_3462000
The annual base salary range for this position for candidates located in the San Francisco Bay area is between: $180,000—$247,500 USD Below is the annual base salary range for candidates located in California (excluding San Francisco Bay Area), Colorado, Illinois, New York and Washington. Your actual base salary will depend on factors such as your skills, qualifications, experience, and work location. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program please visit: .
Below is the annual salary range for candidates located in Canada. Your actual salary will depend on factors such as your skills, qualifications, and experience. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental, and vision insurance, RRSP with a match, healthcare spending, telemedicine, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program, please visit: .
The annual base salary range for this position for candidates located in Canada is between: $141,000—$193,000 CADThe Okta Experience
We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one.
Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation. Notice for New York City Applicants & Employees: Okta may use Automated Employment Decision Tools (AEDT), as defined by New York City Local Law 144, that use artificial intelligence, machine learning, or other automated processes to assist in our recruitment and hiring process. In accordance with NYC Local Law 144, if you are an applicant or employee residing in New York City, please click here to view our full NYC AEDT Notice.- ...Product Security Engineer This role sits at the intersection of cybersecurity, software engineering, and cloud-native product development,... ...enjoys building scalable security systems rather than only reviewing them. The environment is fast-paced, innovative, and deeply...SuggestedWork at officeRemote workFlexible hours
- ...Product Security Engineer Gecko Robotics is helping the world's most important organizations ensure the availability, reliability, and sustainability... ...reduce noise so engineers can focus on what matters. Review code and infrastructure to find and fix security risks....SuggestedWork at officeLocal areaWork from homeFlexible hours
$74.8k - $130.9k
...Description: Parsons is looking for an amazingly talented Security Systems Design Engineer to join our team! In this role you will get to develop... ...complex engineering problems Experience with Design Review Ability to obtain and maintain a Secret level...SuggestedWork experience placementWork at officeLocal areaWorldwideFlexible hours$40 per hour
...train AI models. In this role, you will evaluate AI-generated security content, solve technical cybersecurity problems, and provide feedback... ...testing, red teaming, incident response, detection engineering, DFIR, malware analysis, threat intelligence, or similar) ~ Some...SuggestedHourly payFull timePart timeRemote work$130k - $150k
...on TRM to make the world safer and more secure. At TRM, writing code can literally... ...financing to human trafficking. The Full‑Stack Product Engineering team builds core products and services... ...feedback, pair programming, code reviews, and retros—bringing curiosity and coachability...SuggestedSummer workInternshipWork at officeWorldwide3 days per week- ...Web Developer Security Engineer At Ardent, we hire people who want more than a job — they want to serve a mission that matters. Our teams... ...protection mechanisms, and application security controls. Obtain, review, and analyze web server and application logs to identify...Local areaRemote workFlexible hours
- ZERMOUNT POSITION DESCRIPTION (PD) SECURITY & COMPLIANCE ENGINEERING (SCE) POSITION OVERVIEW Zermount Inc. is seeking System Compliance Engineering... ...with repeatable verification methods (not documentation review) Produce executive-quality outputs (risk findings, remediation...Remote work
- M.C. Dean, Inc. is seeking a Design Engineer 3 to join their Security and Electronic Systems Unit. In this role, you will design and implement electronic security solutions for various customers. Candidates should possess a Bachelor's degree and be able to manage technical...Relocation
- EMD LLC is looking for a full-time Design Engineer based in Alexandria, VA. The successful candidate will conduct technical security assessments, produce detailed technical documents, and install security solutions. To qualify, applicants should have a BS/BA in related...Full time
$75k - $85k
...growing team in Washington, D.C. This role focuses on providing security design consulting services across various project types,... ...field and have 2+ years of experience in the architecture and engineering industry. The compensation for this position ranges from $75,0...- ...solutions that replace financial stress with stability. As a Product Engineer with a frontend focus, you’ll directly shape the way people experience... ...Support and mentor engineers, contribute to thoughtful code reviews, and help cultivate a culture of ownership, curiosity, and...Permanent employmentFull timeWork at officeLocal areaImmediate startFlexible hours
$71.2k - $166.1k
...The Senior Federal Information Systems Security Engineer (ISSE) serves as a technical... ...progress; coordinate with government reviewers and external partners to resolve questions... ...as well as reflect Oracle's differing products, industries and lines of business....Contract workTemporary workWork experience placementRelocationFlexible hours$166k - $253k
...ABOUT THE JOB We're seeking a Security Software Engineer to develop novel security tooling for... ...and response agent for use on Anduril products. Develop thorough testing and qualification... ...implement solutions. Conduct code reviews and ensure adherence to security best...Full timeWork experience placementImmediate start- ...About the Role The Security Operations Engineer supports the day-to-day operation of security technologies... ...systems, cloud platforms, and production environments. This individual plays... ..., including maintaining policies, reviewing alerts, and ensuring telemetry visibility...
$164.38k - $212.75k
...Information Assurance, Information System Security, Risk Assessments Certifications:... ...opportunity as a Cybersecurity Systems Engineer/Information Systems Security Engineer (ISSE... ...Lead Accreditation and Authorization (A&A) reviews by Group level ISSMs and Security...Temporary workFor contractorsInterim roleSummer workImmediate startRemote workWorldwideRelocationFlexible hours$73.5k - $92.5k
..., visit The Role in Brief: Security Engineer The Security Engineer will be a valued... ...the security operations team: daily review of data from Anti-Virus/Malware... ...relationships across the company with product and corporate IT teams, as well as with...Immediate startFlexible hours- ...Support FISMA and NIST SP 800-53 compliance reviews. Implement SIEM monitoring and... ...Coordinate with the SOC on escalated security incidents. Required Qualifications... ...We are seeking a Lead – Security Engineer to join our team supporting the Transportation...Full timeContract workTemporary workWork at officeMonday to FridayWeekend workDay shiftAfternoon shift
- ...Job Description We are seeking a highly skilled Security Engineer to join our team, specializing in implementing secure and resilient infrastructural... ...with NIH Configuration Management Plan, ensuring thorough review and security impact analysis. Optimize endpoint security...Local areaImmediate start
$131.3k - $237.35k
...you, our next Senior Cloud Cybersecurity Engineer , to play a critical role in the... ...Responsibilities include: Collect, review, assess, and provide feedback on system... ...based systems Implement and manage security controls for containerized applications...Interim roleLocal areaImmediate startFlexible hours$90 - $100 per hour
...IT Security Engineer The Network Engineer role is to develop and maintain the high-level design... ...research and make recommendations on products, services, protocols, and standards in... ...architecture and technology portfolio. 7. Review new and existing network design...Hourly payTemporary workFor contractorsWork experience placementRemote workWork from homeFlexible hours$175k - $195k
...Jito Security Engineer Jito builds the Market Layer of Solana: the execution systems, capital... ...that power real markets on-chain. Our products process billions in daily transaction value... ...an access request, running a security review, or building a custom testing framework...- ...Development Center U.S., Inc. Position: Security Engineer III - AMZ25957.4 Location: Arlington,... ...: 1.Conduct comprehensive security review within the Secure Software Development... ..., analytics, search, and storage product offerings. 2. Perform detailed design reviews...
- ...IT Security Engineer Washington DC Job ID: 19864 Looking for an IT Security Engineer who wants... ...deliver security awareness training for staff, promoting best practices and reducing... ...security related applications and software. Review, complete and submit third party...
- ...We are seeking a Senior Network Security Engineer for an operations-first role supporting enterprise... ...up, validate, document, and operate production security platforms with minimal ramp-... ..., logging, secure baselines, rule reviews, recertification, cleanup, and decommissioning...Remote workFlexible hoursNight shift
- ...Security Engineer III The Security Engineer III will evaluate, implement, maintain, and monitor IT security measures utilized by USAC. The individual in this position is responsible for reviewing both new and existing applications for security vulnerabilities and compliance...
$234k - $286k
...Senior Security Engineer United States About Ngrok Inc. Ngrok is an all-in-one cloud... ...localhost or running AI workloads in production. We're trusted by more than 9 million... ...owned security infrastructure — not just reviewed it You have strong engineering...Permanent employmentFull timeWork at officeLocal areaRemote workHome officeFlexible hoursShift work$98.9k
...What you can expect The Security Engineer is responsible for security design and reviews across our products and services. The ideal candidate brings broad technical expertise and hands-on experience in end-to-end product security. In this role, you'll collaborate...Work at officeRemote work- ...Security Engineer We are looking for a Security Engineer to join our team on an effort supporting... ...security control have proper evidence. Review system security audit logs and take... ...relevant experience Experience with MS Office products (Excel a must) Understand of the cloud...
- ...Security Engineer In a world of technology, people make the difference. We believe if we invest... ..., account management and access reviews, and configuration update scheduling and... ...~ Microsoft Excel and other MS Office Products Able to deliver and present...Temporary workImmediate startRemote work
- ...Senior Information Security Engineer Mastercard is a global technology company in the payments industry. Our mission is to connect and power... ...or outside of EST hours. This is a rare occurrence. • Reviews Connectivity Requests, Policies and identify any potential red...Remote workRelocationFlexible hoursWeekend work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Staff Product Security Engineer, Reviews. Be the first to apply!
- staff engineer Washington DC
- senior staff systems engineer Washington DC
- assistant engineer Washington DC
- senior staff engineer Washington DC
- software engineer staff Washington DC
- staff data engineer Washington DC
- technology administrator Washington DC
- engineering aide Washington DC
- product engineer Washington DC
- sr. product engineer Washington DC

