# Staff Product Security Engineer **Company**: Okta **Location**: San Francisco, California **Work arrangement**: hybrid **Experience**: staff **Job type**: full-time **Salary**: $180,000-$247,500 USD **Category**: Engineering **Industry**: Technology **Apply**: https://job-boards.greenhouse.io/okta/jobs/7976658?utm_source=yubhub.co&utm_medium=jobs_feed&utm_campaign=apply **Canonical**: https://yubhub.co/jobs/job_7c606ea5-ee2 ## Description Secure Every Identity, from AI to Human Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organisations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk. The Security Team Okta is The World's Identity Company. We free everyone to safely use any technology,anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transform how people move through the digital world, putting Identity at the heart of business security and growth. At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every box,we're looking for lifelong learners and people who can improve us with their unique experiences. Join our team! We're building a world where Identity belongs to you. The Staff Product Security Engineer Opportunity The Security team's mission is to strengthen Okta's position as the leading Identity-as-a-service solutions provider by identifying and resolving risks to employees, products, and, most importantly, our customers. The Staff Product Security Engineer joins a team with a single mandate: get ahead of the security risks introduced by agentic systems before they become operational reality at Okta. This is a research and engineering role. The work is long-horizon and adversarial: understanding how prompt injection propagates through an agent with write access to a code repository, how privilege escalation manifests in an orchestration model with dynamic tool bindings, and what an agentic supply-chain attack looks like against an internal developer platform. The findings this team produces shape SDL requirements, feed reusable security tooling across all of Product Security, and drive Okta's AI and agent-based system security approach at the design level. The ideal candidate thinks like an attacker, builds like an engineer, and publishes their findings. We actively support external research disclosure through white papers, blog posts, and conference presentations. What You Will Do Conduct offensive security research focused on agentic AI systems: prompt injection, agent privilege escalation, tool-binding abuse, and agentic supply chain attacks against internal developer platforms. Perform security assessments of Okta's AI platforms,including agentic systems and LLM-integrated products,across design, code, and runtime. Build reusable security tooling that multiplies the entire Product Security team's capability. Run the AI security vendor and tooling evaluation program: design and operate a benchmarking harness against AI security tools. Perform manual code review of AI and agent-based system implementations across multiple languages. Develop threat models for agentic architectures, orchestration layers, and LLM-integrated services. Translate research findings into actionable guidance for engineering teams building AI-powered features and platforms. Represent Okta externally through security research, conference presentations, white papers, and publications. Mentor engineers across Product Security on AI/agentic security concepts, tooling, and assessment methodology. What You Bring 7+ years of experience in information security, with meaningful depth in application security, offensive research, or AI/ML security. Demonstrated hands-on experience assessing LLM-integrated systems and agentic AI architectures,not just familiarity with the concepts, but evidence of having found real vulnerabilities in them. Strong offensive mindset: the ability to model what an adversary does with an agentic system, identify where the model's reasoning or the orchestration layer breaks down, and construct scenarios that make the risk concrete. Experience building security tooling and automation,scripts, scanners, detection logic, or evaluation harnesses,that other engineers actually use. Proficiency in at least two programming languages (Python and one of: Go, Java, TypeScript, C/C++). Advanced experience in threat modeling, manual code review, and penetration testing, applied to complex distributed systems. Knowledge of authentication and authorization protocols (OIDC, OAuth 2.0, SAML) and their implementation risks. Strong communication skills: the ability to write clearly for technical and non-technical audiences, document research findings with precision, and present at external venues. Experience producing external security research,publications, conference talks, blog posts, or open-source tooling. Desired Skills and Abilities Familiarity with agentic framework internals (tool-use protocols, MCP, function-calling patterns, agent orchestration architectures). Experience with SAST, DAST, SCA, and fuzzing tooling applied to AI/ML pipelines or CI/CD systems. Strong cryptographic knowledge and experience in identifying cryptographic implementation flaws. Ability to develop proof-of-concept exploits that demonstrate AI/agentic vulnerabilities to engineering and product leadership. Experience contributing to security standards, SDL processes, or vulnerability research programs. #LI-SM1 #LI-Hybrid P25264_3461996 ## Skills ### Required - information security - application security - offensive research - AI/ML security - agentic AI systems - prompt injection - agent privilege escalation - tool-binding abuse - agentic supply chain attacks - LLM-integrated systems - agentic AI architectures - threat modeling - manual code review - penetration testing - complex distributed systems - authentication and authorization protocols - OIDC - OAuth 2.0 - SAML - programming languages - Python - Go - Java - TypeScript - C/C++ - security tooling and automation - scripts - scanners - detection logic - evaluation harnesses ### Nice to have - agentic framework internals - SAST - DAST - SCA - fuzzing tooling - AI/ML pipelines - CI/CD systems - cryptographic knowledge - proof-of-concept exploits - security standards - SDL processes - vulnerability research programs --- Source: [Apply at job-boards.greenhouse.io](https://job-boards.greenhouse.io/okta/jobs/7976658?utm_source=yubhub.co&utm_medium=jobs_feed&utm_campaign=apply)