People Matter

Staff Detection and Response Engineer



Posted on Thursday, May 30, 2024

Get to know Okta

Okta is The World’s Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth.

At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences.

Join our team! We’re building a world where Identity belongs to you.

Information Security is a top business imperative here at Okta. In addition to driving security in our Corporate environment and Okta service, the Security team is deeply entrenched in the Okta business. As such, we contribute to product roadmaps, branding, research and other strategic aspects of our operations. We work across multiple functions, business partners and the research community. We are an engineering-focused team that seeks to stay on the cutting edge of security technology and the threat landscape.

The Defensive Cyber Operations (DCO) team is seeking an experienced detection and response leader to contribute to Okta’s detection and response programs responsible for defending the Okta platform, infrastructure and corporate environment.

The Role

You will operate as part of the DCO APJ team, building and maintaining the detection capability to enable Okta’s intel-driven approach to defensive cyber operations. Core responsibilities include:

  • Analyse Okta’s systems in order to identify and close gaps in detection and response coverage
  • Orchestrate and automate the enrichment, triage and response steps required to respond to security related alerts
  • Take part in the DCO watch roster triaging alerts escalated via automated processes and third-party notifications
  • Provide technical expertise and contribute to the investigation, remediation and reporting of cyber security incidents
  • Identify the need for tools and data that will enable the continuous improvement of detection and response capabilities

What does it take?

You’re a team player. You have great communications skills and a thirst for knowledge. You’re curious about systems and how they interact, knowing that to properly defend a system you must first understand how it works. You enjoy automating tasks and if you can’t find a tool for the job you create one. You’re calm under pressure and have a good internal compass for taking calculated risks.

If you don’t have a degree, you have equivalent experience that’s given you the foundational knowledge to understand complex computing environments.

You’re a leader. People want to work with you. You know what it takes to build a world-class defensive cyber capability and you’re passionate about helping make ours stronger. Your experience probably includes:

  • Leading, or contributing to, technology focused teams large or small.
  • Mentoring staff and providing development opportunities to build high performing teams.
  • Operating as, or providing support to, the incident commander or technical lead during cyber security incidents.
  • Developing advanced detection capabilities and automating the triage and response of alerts they generate.

Ideally you also have experience in several of the following areas:

  • Researching the tactics, techniques and procedures of sophisticated adversaries and hunting for evidence of them within an enterprise environment.
  • Developing detection and response validation techniques and automating tests to enable continuous assurance of defensive cyber capabilities.
  • Analysing critical systems to understand both how to break them and defend them against attack.
  • Working collaboratively within product and/or enterprise project teams, assisting to deliver large and complex technology solutions.

#LI-LR1 #LI-Remote

What you can look forward to as an Full-Time Okta employee!

Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Okta today!

Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to participate in the job application or interview process, please use this Form to request an accommodation.

Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy at