Staff Product Security Engineer
$180k - $247.5kOkta
Secure Every Identity, from AI to Human
Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organizations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.The Security Team
Okta is The World's Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transform how people move through the digital world, putting Identity at the heart of business security and growth.
At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every box—we're looking for lifelong learners and people who can improve us with their unique experiences.
Join our team! We're building a world where Identity belongs to you.
The Staff Product Security Engineer Opportunity
The Security team's mission is to strengthen Okta's position as the leading Identity-as-a-service solutions provider by identifying and resolving risks to employees, products, and, most importantly, our customers.
The Staff Product Security Engineer joins a team with a single mandate: get ahead of the security risks introduced by agentic systems before they become operational reality at Okta. This is a research and engineering role. The work is long-horizon and adversarial: understanding how prompt injection propagates through an agent with write access to a code repository, how privilege escalation manifests in an orchestration model with dynamic tool bindings, and what an agentic supply-chain attack looks like against an internal developer platform. The findings this team produces shape SDL requirements, feed reusable security tooling across all of Product Security, and drive Okta's AI and agent-based system security approach at the design level.
The ideal candidate thinks like an attacker, builds like an engineer, and publishes their findings. We actively support external research disclosure through white papers, blog posts, and conference presentations.
What You Will Do
- Conduct offensive security research focused on agentic AI systems: prompt injection, agent privilege escalation, tool-binding abuse, and agentic supply chain attacks against internal developer platforms.
- Perform security assessments of Okta's AI platforms—including agentic systems and LLM-integrated products—across design, code, and runtime.
- Build reusable security tooling that multiplies the entire Product Security team's capability.
- Run the AI security vendor and tooling evaluation program: design and operate a benchmarking harness against AI security tools.
- Perform manual code review of AI and agent-based system implementations across multiple languages.
- Develop threat models for agentic architectures, orchestration layers, and LLM-integrated services.
- Translate research findings into actionable guidance for engineering teams building AI-powered features and platforms.
- Represent Okta externally through security research, conference presentations, white papers, and publications.
- Mentor engineers across Product Security on AI/agentic security concepts, tooling, and assessment methodology.
What You Bring
- 7+ years of experience in information security, with meaningful depth in application security, offensive research, or AI/ML security.
- Demonstrated hands-on experience assessing LLM-integrated systems and agentic AI architectures—not just familiarity with the concepts, but evidence of having found real vulnerabilities in them.
- Strong offensive mindset: the ability to model what an adversary does with an agentic system, identify where the model's reasoning or the orchestration layer breaks down, and construct scenarios that make the risk concrete.
- Experience building security tooling and automation—scripts, scanners, detection logic, or evaluation harnesses—that other engineers actually use.
- Proficiency in at least two programming languages (Python and one of: Go, Java, TypeScript, C/C++).
- Advanced experience in threat modeling, manual code review, and penetration testing, applied to complex distributed systems.
- Knowledge of authentication and authorization protocols (OIDC, OAuth 2.0, SAML) and their implementation risks.
- Strong communication skills: the ability to write clearly for technical and non-technical audiences, document research findings with precision, and present at external venues.
- Experience producing external security research—publications, conference talks, blog posts, or open-source tooling.
Desired Skills and Abilities
- Familiarity with agentic framework internals (tool-use protocols, MCP, function-calling patterns, agent orchestration architectures).
- Experience with SAST, DAST, SCA, and fuzzing tooling applied to AI/ML pipelines or CI/CD systems.
- Strong cryptographic knowledge and experience in identifying cryptographic implementation flaws.
- Ability to develop proof-of-concept exploits that demonstrate AI/agentic vulnerabilities to engineering and product leadership.
- Experience contributing to security standards, SDL processes, or vulnerability research programs.
#LI-SM1
#LI-Hybrid
P25264_3461996
Below is the annual base salary range for candidates located in San Francisco Bay Area. Your actual base salary will depend on factors such as your skills, qualifications, experience, and work location. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program please visit: .
The annual base salary range for this position for candidates located in the San Francisco Bay area is between: $180,000—$247,500 USD
The Okta Experience
We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one.
Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation. Notice for New York City Applicants & Employees: Okta may use Automated Employment Decision Tools (AEDT), as defined by New York City Local Law 144, that use artificial intelligence, machine learning, or other automated processes to assist in our recruitment and hiring process. In accordance with NYC Local Law 144, if you are an applicant or employee residing in New York City, please click here to view our full NYC AEDT Notice. Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Personnel and Job Candidate Privacy Notice at .$117.2k - $176.7k
...and the world through AI, driving innovation, and keeping Salesforce’s core values at the heart of it all. We’re hiring a Product Security Engineer to join our Security Services and Tooling Infrastructure Team. This role requires the ability to engineer automated guardrails...Suggested$117.2k - $176.7k
About the Role We’re hiring a Product Security Engineer to join our Security Services and Tooling Infrastructure Team. This role requires the ability to engineer automated guardrails, contribute to "paved path" templates, and assist in maintaining multi‑cloud hygiene. The...Suggested$117.2k - $176.7k
Salesforce, Inc. is seeking a Product Security Engineer to join their Security Services and Tooling Infrastructure Team in Bellevue, WA. This full-time role involves engineering automated guardrails and maintaining multi-cloud hygiene. Candidates should have deep experience...SuggestedFull timeWork at officeFlexible hours$170k - $200k
...We are looking for a mission-driven Product Security Engineer to embed security into the entire lifecycle of our cutting‑edge robotic systems and our command and control system. You will be responsible for hardening our autonomous ground vehicles against cyber threats...SuggestedContract work- ...thousands of developers use to create their own products. Plaid powers the tools millions of... .... The mission of Plaid's Product Security Team is “Improve our customer’s trust by... ...Security. As an Experienced Product Security Engineer at Plaid, you'll be a trusted advisor,...SuggestedWork experience placementLocal area
$156k - $253k
...computer vision, sensor fusion, and networking technology to the military in months, not years. ABOUT THE TEAM We’re seeking a product security engineer to own security for assigned products in your technical domain, provide expert consultation on security architectures,...Full timeWork experience placementRelocation package$122.7k - $214.3k
...States Software and Services You’ll be a part of the Apple Product Security Team at the forefront of Apple’s security impacting the breadth... ...Apple’s customers. Working with some of the best security engineers in the world, you’ll have a direct positive impact on the security...Immediate startRelocation$168k - $230k
...SR. PRODUCT SECURITY ENGINEER (STARLINK) the company was founded under the belief that a future where humanity is out exploring the stars is fundamentally more exciting than one where we are not. Today the company is actively developing the technologies to make this possible...Permanent employmentTemporary workWork at officeWorldwideMonday to FridayFlexible hoursWeekend work- ...Senior Product Security Engineer Rippling gives businesses one place to run HR, IT, and finance by bringing together workforce systems such as... ...a single system. About the Role We are seeking a hands‑on staff security engineer to build and lead Rippling’s Product Security...Work at officeRelocation3 days per week1 day per week
$173.4k - $234.6k
...inclusive, with great opportunity for professional growth. Find your future with us. The Boeing Company is looking for a Senior Product Security Engineer to join the Enterprise Product Security organization in Seattle, WA or Everett, WA , to support Secure Software...Permanent employmentWork experience placementRelocationVisa sponsorshipWork visaFlexible hoursShift workDay shift$156k - $253k
...Product Security Engineer, Programs Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century's most innovative...Full timeWork experience placementImmediate start$117.2k - $176.7k
Salesforce is seeking a Product Security Engineer to join their Security Services and Tooling Infrastructure Team in Bellevue, WA. This role involves developing automated security protocols and maintaining multi-cloud hygiene to enhance security measures. Ideal candidates...$189k - $315k
...Staff Product Security Engineer Rippling • Seattle, Washington, United States About this position Rippling gives businesses one place to run HR, IT, and Finance. It brings together all of the workforce systems that are normally scattered across a company, like payroll,...Work at officeRelocation3 days per week1 day per week- Dormont Manufacturing Co in Seattle, WA, is looking for a Product Security Engineer to enhance the security of advanced technologies including AI systems and aerospace vehicles. You will collaborate with various teams to identify vulnerabilities and implement robust security...
$122.7k - $214.3k
Apple Inc. in Seattle, Washington, seeks a driven Security Engineer to join their Product Security Team. This role focuses on investigating security issues across Apple's ecosystem, including iOS and macOS. Applicants should be skilled in programming and possess excellent...- Scale AI, Inc. is looking for a highly technical Security Engineer to join the Product Security team. This role is crucial for ensuring the integrity of products through in-depth code reviews and security best practices. The ideal candidate will have experience with TypeScript...
- ...There's no such thing as a "safe system" - only safer systems. Our Security team works to create and maintain the safest operating environment for Google's users and developers. As a Security Engineer, you help protect network boundaries, keep computer systems and network...
$71 per hour
...Seattle, WA. In addition to specific program responsibilities, the successful candidate will be joining the growing BT&E Product Security Engineering Capability. They will be joining a team of advanced Product Security Engineers from across the Boeing Enterprise,...Hourly payFull timeContract work- Plaid is seeking an Experienced Product Security Engineer to empower teams in integrating robust security into our product lifecycle. You will engage closely with engineering and product teams to ensure secure solutions are designed and executed effectively. Your expertise...
$175k - $190k
...having fun, and making a profound difference for the dreamers and builders in the world. WE’RE LOOKING FOR A SENIOR PRODUCT SECURITY ENGINEER WHO IS PASSIONATE ABOUT PARTNERING WITH ENGINEERS TO ASSESS AND MITIGATE THE SECURITY RISK OF OUR VIRTUALIZATION STACK....Full timeLocal areaWorldwideFlexible hours$170k - $200k
Overland AI Inc is seeking a Product Security Engineer to embed security into cutting-edge robotic systems. This role involves hardening autonomous ground vehicles against cyber threats and ensuring compliance with various security frameworks. Ideal candidates will have...$180k - $247.5k
...Secure Every Identity, from AI to Human Identity is the key to unlocking the potential of AI. Okta secures AI by building... ...all in on this mission. If you are too, let's talk. The Staff Product Security Engineer Opportunity As a Staff Product Security Engineer, you...Local areaWorldwideFlexible hours$180k - $247.5k
Secure Every Identity, from AI to HumanIdentity is the key to unlocking the potential of AI. Okta secures AI by building... ...re all in on this mission. If you are too, let's talk.The Staff Product Security Engineer Opportunity As a Staff Product Security Engineer, you will...WorldwideFlexible hours$173.4k - $234.6k
The Boeing Company is seeking a Senior Product Security Engineer in Seattle, WA to support secure software distribution for commercial aircraft. The role involves providing security guidance to airline operators and managing risk assessments on systems. Key qualifications...- TenOneTen is seeking a Senior Application Security Engineer based in Seattle, WA. This hands-on role focuses on securing AI-powered systems and developing threat models for features. Applicants should have 6-10 years of Application Security experience and be proficient...Flexible hours
$146k - $175k
Medium is looking for a Senior Application Security Engineer focused on AI and product security in Seattle, WA. This hands-on role involves threat modeling for LLM features, building secure SDLC tooling, and ensuring safe practices for agent identity. Ideal candidates will...- Join a forward-thinking company as a Security Engineer where you will play a crucial role in safeguarding sensitive data and network systems. In this dynamic position, you will protect against attacks, monitor systems, and collaborate with software engineers to enhance...
- Rippling in Seattle, Washington, seeks a Staff Product Security Engineer to enhance its Product Security program. This role focuses on managing diverse security challenges and collaborating closely with engineering teams. Candidates should have extensive experience, ideal...
$137.7k - $186.3k
...growth. Find your future with us. Boeing Commercial Airplanes is seeking a Mid- Level 3 or Senior ( Level 4 or Level 5 ) Product Security Engineer - Public Key Infrastructure (PKI) and Cloud Architect to join our Cybersecurity Innovation team in Seattle, WA or Everett,...Permanent employmentWork experience placementRelocationVisa sponsorshipWork visaFlexible hoursShift workDay shift$187k - $220k
...ethics at the center of everything we do. Expectations are high, and so are the rewards. The Product and Application Security team builds and operates systems that help engineers identify and resolve security risks earlier in the software development lifecycle. The team...Work at officeFlexible hoursShift work3 days per week
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Staff Product Security Engineer. Be the first to apply!
- staff engineer Bellevue, WA
- senior staff systems engineer Bellevue, WA
- assistant engineer Bellevue, WA
- software engineer staff Bellevue, WA
- technology administrator Bellevue, WA
- engineering aide Bellevue, WA
- product engineer Bellevue, WA
- sr. product engineer Bellevue, WA
- physical design engineer Bellevue, WA
- design engineer Bellevue, WA

