Logo
Okta

Site Reliability Engineer, Security

Okta, San Francisco, California, United States, 94199


Okta Okta's Workforce and Customer Identity Clouds enable secure access, authentication, and automation—putting identity at the heart of business security and growth.

Get to know Okta

Okta is The World’s Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth.At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences.The Security Engineering TeamOur Infrastructure Security team has a niche skill-set that balances Security domain expertise with the ability to design, implement, rollout infrastructure across multiple cloud environments without adding friction to product functionality or performance. We are responsible for the ever-growing need to improve our customer safety and privacy by providing security services that are coupled with the core Okta product.We embrace innovation and pave the way to transform bright ideas into excellent security solutions that help run large-scale, critical infrastructure. We encourage you to prescribe defense-in-depth measures, industry security standards and enforce the principle of least privilege to help take our Security posture to the next level.The SRE OpportunityOkta’s Workforce Identity Cloud Security Engineering group is looking for an experienced and passionate Site Reliability Engineer to join a team focused on designing and developing Security solutions to harden our cloud infrastructure.This is a high-impact role in a security-centric, fast-paced organization that is poised for massive growth and success. You will act as a liaison between the Security org and the Engineering org to build technical leverage and influence the security roadmap. You will focus on engineering security aspects of the systems used across our services. Join us and be part of a company that is about to change the cloud computing landscape forever.What you’ll be doingBuilding, running, and monitoring Okta's production infrastructureBe an evangelist for security best practices and also lead initiatives/projects to strengthen our security posture for critical infrastructureResponding to production incidents and determining how we can prevent them in the futureTriaging and troubleshooting complex production issues to ensure reliability and performanceIdentifying and automating manual processesContinuously evolving our monitoring tools and platformPromoting and applying best practices for building scalable and reliable services across engineeringDeveloping and maintaining technical documentation, runbooks, and proceduresSupporting a 24x7 online environment as part of an on-call rotationWhat we are looking forAre always willing to go the extra mile: see a problem, fix the problem.2+ years experience automating, securing, and running large-scale production IAM and containerized services in AWS (EC2, ECS, KMS, Kinesis, RDS), GCP (GKE, GCE) or other cloud providers.2+ years of experience with configuration management tools like Chef and Terraform.Have experience in operational tooling languages such as Ruby, Python, Go and shell, and use of source control.Strong knowledge of CI/CD principles, Linux fundamentals, OS hardening, networking concepts, and IP protocols.Experience with industry-standard security tools like Nessus, Qualys, OSQuery, Splunk, etc.Experience with Public Key Infrastructure (PKI) and secrets managementUnflappable troubleshooting skillsSecurity background and knowledge.BS in computer science (or equivalent experience).Bonus ExperienceExperience conducting threat assessments, and assessing vulnerabilities in a high-availability setting.Understand MySQL, including replication and clustering strategies, and are familiar with data stores such as DynamoDB, Redis, and Elasticsearch.Additional requirements:This position requires the ability to access federal environments and/or have access to protected federal data. As a condition of employment for this position, the successful candidate must be able to submit documentation establishing U.S. Person status (e.g. a U.S. Citizen, National, Lawful Permanent Resident, Refugee, or Asylee. 22 CFR 120.15) upon hire.

#J-18808-Ljbffr