Your day-to-day will blend hands-on engineering (writing code, building integrations, tuning controls) with architecture and program ownership (setting standards, defining patterns, and driving adoption across teams). You will be responsible for turning high-level objectives,like “implement zero trust for workforce access” or “deploy phishing-resistant MFA at scale”,into concrete designs, automation, and measurable risk reduction.

In this role, you will:

• Engineer modern identity and access controls
• Design, implement, and operate workforce identity solutions (e.g., Okta/Entra and other IdPs) including SSO, MFA, conditional access, and lifecycle automation via SCIM.
• Develop and roll out phishing-resistant MFA for high-value accounts and critical access paths (e.g., FIDO2/WebAuthn, hardware keys, device-bound authenticators).
• Define and maintain RBAC/IAM patterns for enterprise applications (role models, groups, entitlements, JIT access, and approvals).

• Implement zero trust for workforce and enterprise access
• Design and deploy controls that combine user identity, device posture, network context, and application sensitivity to enforce least-privilege access.
• Partner with Network and Infrastructure teams to integrate mTLS, service identity, and policy-based access into internal services and admin interfaces.
• Help transition from legacy perimeter models to zero trust network access (ZTNA) patterns for employees, contractors, and third parties.

• Secure SaaS and collaboration platforms
• Evaluate, onboard, and harden SaaS applications (Google Workspace, Microsoft 365, Slack, HRIS, ticketing, and other business apps) to align with enterprise security policies.
• Implement and tune controls such as SCIM provisioning, data access policies, DLP, sharing controls, and audit logging across the SaaS estate.
• Partner with business and IT owners to ensure new SaaS applications meet baseline security standards before adoption.

• Harden endpoints and the extended workforce
• Collaborate with Endpoint/IT teams to define and enforce baseline configurations for laptops, workstations, and other managed devices via MDM and EDR.
• Design secure patterns for contractor and vendor access, including device requirements, identity separation, and time-bound access.
• Support investigations and incident response related to identity, endpoint, and SaaS domains.

• Automate and instrument everything you can
• Build automation and self-service experiences for access requests, approvals, access reviews, and break-glass workflows.
• Develop integrations between IdPs, HRIS, ticketing, and other systems to minimize manual toil and reduce identity-related error rates.
• Define and instrument metrics for enterprise security (e.g., MFA coverage, zero trust policy enforcement, joiner/mover/leaver SLA adherence, SaaS posture).

• Partner on detection, response, and governance
• Work with Security Operations and SIEM teams to ensure robust visibility into identity, device, and SaaS activity, and to build high-signal detections.
• Contribute to policies, standards, and reference architectures that encode enterprise security expectations.
• Author clear documentation and runbooks that make it easy for teams to consume and operate the controls you build.

XML job scraping automation by YubHub

Responsibilities:

• Collaborate with AI platform developers, security architects, and internal stakeholders to distill feature asks, gather feedback, and ensure product-market fit for AI agent identity.
• Define and own the product strategy and roadmap for AI agent-specific capabilities, including agent-to-agent authentication and delegated authority.
• Identify and prioritize the development of new features such as dynamic session management for AI, "on-behalf-of" token exchange, and agent-specific audit logs.
• Work closely with engineering and architecture teams to define protocols (e.g., extensions to OAuth/OIDC) and deployment models that align with modern AI orchestration frameworks.
• Drive cross-functional execution with design, engineering, and documentation teams to deliver high-quality features on time.
• Track industry trends in LLMs, agentic frameworks (e.g., LangChain, AutoGPT), and emerging AI security standards to develop differentiated solutions.
• Leverage product data to continually improve agent lifecycle management and drive adoption within the developer community.
• Serve as the subject matter expert for AI Identity, enabling marketing and technical sales teams with the tools needed to position Okta for AI use cases.

Required Experience:

• 5+ years of technical product management experience in enterprise-scale SaaS products, or an equivalent background demonstrating core PM competencies.
• Strong knowledge of Identity and Access Management (IAM) protocols such as OAuth2, OIDC, and SAML.
• Hands-on experience with AI/ML frameworks or building products that leverage Large Language Models (LLMs).
• Analytical and decisive: Ability to drive action even with incomplete or ambiguous information in the rapidly evolving AI landscape.
• Excellent communication skills: Ability to work cross-functionally with research, design, engineering, and customer success teams.
• Technical background: Bachelor’s degree in Computer Science, Computer Engineering, or equivalent experience that allows you to influence technical design decisions.

Preferred Experience:

• Experience with developer-centric products, such as building with SDKs, APIs, or no-code/low-code integration platforms.
• Familiarity with Zero Trust architecture and how it applies to non-human entities and automated workloads.
• Prior experience in a "Zero to One" product environment, launching new products from initial concept to GA.
• Advanced degree in a technical or business field.

Annual Salary Range: $146,000-$200,000 CAD

XML job scraping automation by YubHub

Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organisations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence.

This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

Senior Sales Engineer - Strategic Accounts- Northeast U.S.

Position Description:

We believe Solutions Engineers at Okta are involved in all stages of the customer’s development lifecycle and are experienced using presentations, email, phone and social media to connect with customers. We are looking for great teammates that can build sales presentations, product demonstrations, and educate customers (everyone from developers to product managers to C-level executives) on the best ways to cloud security technology. We believe in Okta’s Solutions Engineers empathise with customers and quickly discern their true technical needs by asking detailed and clarifying questions and presenting solutions that target those needs. You have the rare combination of technical savviness and business insight and you’re looking for a career where you can utilise both. As a Senior Solutions Engineer at Okta, you will hone each of these skills by advising a diverse set of Fortune 500 customers on what is possible using Okta’s Identity Platform.

Job Duties and Responsibilities:

• Collaborate with account executives to develop and execute territory and account strategies to maximise the Okta opportunity in those accounts

• Conduct research and discovery to understand customer requirements and communicate the business value of solving technology problems using cloud technology

• Execute the delivery of POCs for customers with complex use cases, collaborating with other Okta engineering teams as needed

• Craft technical content to show customers how to implement specific use cases or standard methodologies for new technologies

• Prepare and deliver demos to showcase how the Okta platform meets customer’s business needs and use cases.

• Distil and communicate customer needs and product feedback to Product Management, Engineering, Marketing and Sales

Required Skills:

• 5+ years pre-sales engineering experience

• A passion to serve the customer, which has played out in some customer-facing role like consulting or support, ideally solutions engineering

• An ability to quickly and effectively communicate complex technical concepts via presentation, slides and whiteboard

• A Strong Understanding of Identity & Access Management (IAM)

• SSO, MFA, SCIM, OAuth 2.0, OIDC, SAML, and LDAP.

• Lifecycle management, role-based access control (RBAC), and provisioning/deprovisioning.

• A strong understanding of Zero Trust Architecture and core security concerns within a typical application (password hashing, SSL/TLS, encryption at rest, XSS, XSRF)

• Hands-on experience in one or more of the following areas is a plus: web (JavaScript, HTML, frontend frameworks) development, mobile (iOS, Android) development, backend (Java, C#, Node.js, Python, PHP, Ruby) development, IP-based real-time communications

• Experience with cloud platforms: AWS, Azure, GCP.

• You are an elite communicator

• Can identify, map, and manage multiple personas: IT admins, CISOs, architects, procurement, and legal.

• Confident dispensing knowledge to a highly skilled and experienced audience

• Typically 10-25% travel

• Bachelor's degree in Engineering, Computer Science, MIS or a comparable field is preferred.

• This role requires in-person onboarding and travel to our San Francisco, CA HQ office during the first week of employment.

#LI-Remote

Below is the annual On Target Compensation (OTE) range for candidates located in California (excluding San Francisco Bay Area), Colorado, Illinois, New York and Washington. Your actual OTE, which is inclusive of base salary and incentive compensation, will depend on factors such as your skills, qualifications, experience, and work location. In addition, Okta offers equity (where applicable) and benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program please visit: https://rewards.okta.com/us.

The annual OTE range for this position for candidates located in California (excluding San Francisco Bay Area), Colorado, Illinois, New York, and Washington is between: $192,000-$288,000 USD

The Okta Experience

• Supporting Your Well-Being

• Driving Social Impact

• Developing Talent and Fostering Connection + Community

We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one.

XML job scraping automation by YubHub

Responsibilities:

• Implementing an Enterprise ASPM framework, driving 'Shift Left' security integration (SAST, DAST, SCA) into developer workflows, and managing the security of the software supply chain, including Software Bill of Materials (SBOM) for off-board services.

• Protecting 'North-South' and 'East-West' traffic, establishing API governance, securing multi-cloud infrastructure for Software-Defined Vehicles (SDV) and OTA updates, directing Zero Trust Architecture strategies, and overseeing modern identity protocols like OAuth2, OIDC, and FIDO.

• Directing Ford's Vehicle PKI strategy, managing cryptographic lifecycles with KMS and HSMs, and leading the transition to quantum-resistant cryptographic standards.

• Securing the end-to-end charging value chain (BlueOval Charge Network, home charging, commercial depots), implementing 'Plug & Charge' (ISO 15118), and partnering with external entities for Critical Infrastructure Protection (V2G, bi-directional power flow).

Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, or Engineering (Master's or PhD highly preferred).

• 15+ years in Cybersecurity or Software Engineering, with at least 7 years in a senior leadership role within a global Fortune 100 enterprise.

• Proven track record of managing large-scale PKI deployments, securing cloud-native microservices, and implementing enterprise-grade IAM and DevSecOps programs.

• Exceptional ability to translate deeply technical cryptographic and infrastructure risks into business-impact narratives for non-technical stakeholders.

XML job scraping automation by YubHub