← Back to Detection Engineering
O
Okta
www.okta.com/company

Staff Detection and Response Engineer

Detection EngineeringOn-site
Secure Every Identity, from AI to Human Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organizations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence.

This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

Information Security is a top business imperative here at Okta. In addition to driving security in our Corporate environment and Okta service, the Security team is deeply entrenched in the Okta business. As such, we contribute to product roadmaps, branding, research and other strategic aspects of our operations. We work across multiple functions, business partners and the research community. We are an engineering-focused team that seeks to stay on the cutting edge of security technology and the threat landscape.

The Defensive Cyber Operations (DCO) team is seeking an experienced detection and response leader to contribute to Okta’s detection and response programs responsible for defending the Okta platform, infrastructure and corporate environment.

The Role

You will operate as part of the DCO APJ team, building and maintaining the detection capability to enable Okta’s intel-driven approach to defensive cyber operations. Core responsibilities include:

  • Analyse Okta’s systems in order to identify and close gaps in detection and response coverage
  • Orchestrate and automate the enrichment, triage and response steps required to respond to security related alerts
  • Take part in the DCO watch roster triaging alerts escalated via automated processes and third-party notifications
  • Provide technical expertise and contribute to the investigation, remediation and reporting of cyber security incidents
  • Identify the need for tools and data that will enable the continuous improvement of detection and response capabilities

What does it take?

You’re a team player. You have great communications skills and a thirst for knowledge. You’re curious about systems and how they interact, knowing that to properly defend a system you must first understand how it works. You enjoy automating tasks and if you can’t find a tool for the job you create one. You’re calm under pressure and have a good internal compass for taking calculated risks.

If you don’t have a degree, you have equivalent experience that’s given you the foundational knowledge to understand complex computing environments.

You’re a leader. People want to work with you. You know what it takes to build a world-class defensive cyber capability and you’re passionate about helping make ours stronger. Your experience probably includes:

  • Leading, or contributing to, technology focused teams large or small.
  • Driving team excellence by mentoring peers and sharing technical best practices to elevate collective performance.
  • Operating as the incident commander or technical lead during cyber security incidents.
  • Developing advanced detection capabilities and automating the enrichment, triage and response of alerts they generate.
  • Researching the tactics, techniques and procedures of sophisticated adversaries and hunting for evidence of them within an enterprise environment.
  • Developing detection and response validation techniques and automating tests to enable continuous assurance of defensive cyber capabilities.
  • Working with detection and response technologies (SIEM, EDR, Email Security, SOAR)
  • Using artificial intelligence to enhance detection, response and threat hunting processes.

#LI-MT1

(P9982_3330345)

The Okta Experience
  • Supporting Your Well-Being
  • Driving Social Impact
  • Developing Talent and Fostering Connection + Community