Senior Software Engineer in Test - Security Testing

We are looking for a Senior Software Engineer in Test (SET) to join our Engineering Security team. This team has a niche skill-set that combines Security domain expertise with the ability to design, implement, and rollout security features and functionalities without adding friction to product functionality or performance. They are responsible for the ever-growing need to improve our customer safety and privacy by providing security services that are coupled with the core Okta product & are focussed on designing and developing security solutions to harden our frameworks & infrastructure.

As an SET you will partner with a scrum team to help test and build automation for our products & work on improving security posture for our test processes. The ideal candidate has a solid experience in Java based automation development, is a strong customer security advocate, holds a higher quality bar and has shown a passion to learn.

• Review requirements and design specs to develop test plans and test cases
• Work with senior QA staff to develop automation plans and write test code to execute the plan.
• Design specific test plans and frameworks based on feature and architecture designs.
• Review application code, identify bugs and other areas of weakness, architect tools for future coverage
• Automate API tests, end-to-end tests, reliability/scale tests.
• Work cross team to help deliver various backend infrastructure engineering solutions.
• Coordinate with engineering management, area leads and scrum team to scope out, plan and document engineering efforts.
• Respond to production issues/alerts and customer issues during on-call rotation
• Be a strong customer advocate with a strong quality DNA.

• 3-5 years of software test experience for highly-reliable, mission- critical software.
• 1-2 years experience in web application security, cryptography, PKI, TLS/SSL, DDoS mitigation, authentication, authorization.
• 1-2 years experience with Linux
• Expertise in test planning and execution with cross team collaboration.
• Good understanding of software engineering concepts & test methodologies.
• Solid experience in Java-based automation development (CI).
• Experience in automating API tests, end-to-end tests and reliability/scale tests.
• Familiarity with automation tools. Example: Selenium, Jmeter, etc.
• Ability to test software with minimum supervision and guidance.
• Ability to quickly learn new technologies, and be the voice for quality.

• Security engineering experience such as OWASP attacks, cryptography, key management, PKI, TLS/SSL, DDoS mitigation, authentication, authorization & application security.
• Preferred knowledge of secure engineering concepts such as secure coding practices and secure code reviews and the ability to identify, mitigate and prevent threat vectors.
• Experience working with distributed systems at large scale/enterprise Saas.
• Experience with policy as code support.