This job listing has expired and the position may no longer be open for hire.

Security Engineer, Cloud Architecture at okta

Posted in Science 30+ days ago.

This job brought to you by eQuest

Type: Full-Time
Location: San Francisco, California

Job Description:

The Security Engineering team at Okta is responsible for prevention, detection and response across our corporate, production and cloud environments. In this role, the team is looking for an experienced security engineer to lead our prevention efforts. The breadth of responsibility will range from architecture, technology evaluation/recommendation and baselining around our technology stack including but not limited to the security of hosts, network and data. This person will be required to work effectively and seamlessly with Okta’s existing Red Team, DevOps, and IT teams.

Job Duties and Responsibilities:

  • Define the security architecture vision, capabilities and solutions

  • Develop, evangelize and enforce security configuration and architecture standards/design patterns across our technology stack from host, server, network, data and AWS

  • Perform proactive or reactive security architecture and configuration assessments across legacy/cloud environments and play a constructive role in change management processes

  • Assist in responding to security incidents or collaborate in enhancing detection capability as needed

Required Knowledge, Skills, and Abilities:

  • Rock solid technical fundamentals (TCP/IP, DNS, CA, HTTP(s), PKI, IPSec etc)

  • Experience defining technical security policies, requirements and designing controls to enforce those policies

  • Strong knowledge of cloud and application architectures and related security principles

  • 6+ years of relevant hands-on experience in defensive security (host based security, applied cryptography, protocols, network security, privileged access management etc.)

  • Experience securing AWS based DevOps environments, including but not limited to security of different AWS Services, secure design of VPC architectures, best practices for IAM configuration and security of data at rest/in-transit within or across AWS accounts etc.

  • Experience designing and implementing access control models for privileged access in fast paced cloud environments

  • Experience taking high-level security requirements, identifying required architecture and translating into technical tasks for relevant project teams to execute

  • Strong interpersonal and influencing skills

  • Experience leading cross-functional collaborative teams for project execution

  • Ability to communicate complex technical issues to business stakeholders

  • Deep understanding of *nix and OSX systems

Bonus Skills:

  • Exposure to agile release processes and supporting tools and infrastructure

  • Experience in designing and implementing network access control, WiFi security standards, Cloud Security solutions (CSAB) and content filtering technologies

  • Knowledge of attack vectors, exploits and TTPs

  • Experience implementing network authentication using 802.1x

  • Experience maturing and managing OS configuration to CIS benchmarks

  • Experience working on the offensive side of security (Product Security, Red Teaming etc)

  • Experience with Infrastructure as code technologies such as Terraform

  • Experience working with Docker Containers

Okta is an Equal Opportunity Employer