Senior Site Reliability Engineer (DevSecOps)- Security

Oktas Workforce Identity Cloud Security Engineering group is looking for a

Senior Site Reliability Engineer

with a passion for

DevSecOps

,

Infrastructure Security

, and

SRE

. Join a team that is not just building solutions but redefining the standards for cloud security. If you have a proven background in securing large-scale, critical infrastructure, we want to talk to you.Oktas Workforce Identity Cloud Security Engineering group is looking for an experienced and passionate Senior Site Reliability Engineer to join a team focused on designing and developing Security solutions to harden our cloud infrastructure. We embrace innovation and pave the way to transform bright ideas into excellent security solutions that help run large-scale, critical infrastructure. We encourage you to prescribe defense-in-depth measures, industry security standards and enforce the principle of least privilege to help take our Security posture to the next level. Our Infrastructure Security team has a niche skill-set that balances Security domain expertise with the ability to design, implement, and roll out infrastructure across multiple cloud environments without adding friction to product functionality or performance. We are responsible for the ever-growing need to improve our customer safety and privacy by providing security services that are coupled with the core Okta product. This is a high-impact role in a security-centric, fast-paced organization that is poised for massive growth and success. You will act as a liaison between the Security org and the Engineering org to build technical leverage and influence the security roadmap. You will focus on engineering security aspects of the systems used across our services. Join us and be part of a company that is about to change the cloud computing landscape forever. As a Senior Engineer, you are expected to independently drive initiatives, introduce innovations, and proactively address gaps within the team.

You will work on:

• Building, running, and monitoring Okta's production infrastructure.
• Being an evangelist for security best practices and also leading initiatives/projects to strengthen our security posture for critical infrastructure.
• Responding to production incidents and determining how we can prevent them in the future.
• Triaging and troubleshooting complex production issues to ensure reliability and performance.
• Identifying and automating manual processes.
• Continuously evolving our monitoring tools and platform.
• Promoting and applying best practices for building scalable and reliable services across engineering.
• Developing and maintaining technical documentation, runbooks, and procedures.
• Supporting a 24x7 online environment as part of an on-call rotation.

You are an ideal candidate if you:

• Have

  2-3 years experience in DevSecOps or Cloud infrastructure security.

• Are always willing to go the extra mile: see a problem, fix the problem.
• Have experience automating, securing, and running large-scale production IAM and containerized services in AWS (EC2, ECS, KMS, Kinesis, RDS), GCP (GKE, GCE) or other cloud providers.
• Have knowledge of

  CI/CD principles

  , Linux fundamentals, OS hardening, networking concepts, and IP protocols.
• Have an understanding and familiarity with configuration management tools like

  Chef and Terraform

  .
• Have experience in operational tooling languages such as Ruby, Python, Go and shell, and use of source control.
• Experience with industry-standard security tools like Nessus, Qualys, OSQuery, Splunk, etc.
• Experience with Public Key Infrastructure (PKI) and secrets management.

Bonus points for:

• Experience conducting threat assessments and assessing vulnerabilities in a high-availability setting.
• Understanding MySQL, including replication and clustering strategies, and familiarity with data stores such as DynamoDB, Redis, and Elasticsearch.

Minimum Required Knowledge, Skills, Abilities, and Qualities:

• 3+ years of hands-on experience in DevSecOps practices and Cloud Security, with a focus on securing cloud-native infrastructure.

• 3+ years of experience architecting and running complex AWS or other cloud networking infrastructure resources.

• 3+ years of experience with Chef and Terraform.

• Unflappable troubleshooting skills.
• Strong Linux understanding and experience.
• Security background and knowledge.
• BS In computer science (or equivalent experience).