Principal Data Security Engineer at Okta

What you'd actually do

Serve as the business owner of Okta’s data protection tool suite

Evaluation and implementation of security tools and services

Design, establish, and implement the strategy for a multi-year data security maturity roadmap

Identify patterns and trends in data loss incidents to enhance preventative and detective measures

Collaborate with the Cyber Defense Team and Technology, Data & Intelligence (TDI) Team to realize data security controls within Okta’s data security technology stack

Skills

Required

Deep understanding of data security, data protection, and data privacy workstreams and related tooling (DSPM, DLP, CASB..etc)
Demonstrated experience managing projects and data security tool implementations at a large/comparably sized company, ideally in a regulated industry; and/or Big 4 candidates with related engagement experience
Strong security background
Bachelor’s degree or higher in cybersecurity or a related technical focus area and/or equivalent practical experience
Strategic thinker with strong analytical and critical thinking skills

Nice to have

Certifications such as CISSP, CISA, CISM, or CDPSE are preferred
Experience managing small teams and/or more junior team members is strongly preferred

What the JD emphasized

data security strategy

data protection tool suite

data handling controls and safeguards

automating security workflows

DSPM, EDR, CASB

mature security control environment

mature data security and privacy functions

security compliance frameworks (e.g., NIST, ISO, PCI)

data loss incidents

data security technology stack

comprehensive data protection strategies

data loss incidents and resolutions

complex projects

**Secure Every Identity, from AI to Human

**Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organizations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence.

This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

The Security Governance Team

If you want to be a part of a dynamic, forward-thinking Governance, Risk and Compliance organization focused on building a best-in-class, cutting edge governance program, come join the Security Governance Team at Okta. As a critical foundation of GRC, the Security Governance team’s mission is to provide the documentation, policy adherence, and advisory backbone needed to drive secure operations and behaviors at Okta and position the company as a global leader in security best practices. We are seeking a dedicated and detail-oriented Principal Data Security Engineer to join our team. The ideal candidate will drive Okta’s internal data security strategy and uplift capabilities for safeguarding sensitive information throughout the company.

The Role

The Principal Data Security Engineer will be the business owner of Okta’s data protection tool suite and will be responsible for envisioning, implementing, and maturing data security strategies across Okta, including enforcement of data retention, authoring and implementing data encryption and obfuscation minimums, establishing secure key management best practices, uplifting data handling controls and safeguards, and automating security workflows. This role demands a high level of technical expertise and deep experience with data security applications and services, such as Okta, Crowdstrike, and Palo Alto Networks. This role will work closely with a wide array of internal stakeholders, such as Data Loss Prevention (DLP) Engineering, Defensive Cyber Operations, Defensive Cyber Engineering, and Legal, as well as technology and cloud support teams. This role requires a thorough understanding of DLP technologies such as data security posture management (DSPM), endpoint detection and response (EDR), and cloud access security broker (CASB) as well as significant working experience in the data security and protection domain.

The right candidate will have experience operating in a mature security control environment, will have a strong background in managing mature data security and privacy functions in corporate settings, and will possess a proven track record of successfully implementing complex projects in cross-collaborative teams. The ideal Principal Data Security Engineer will be able to identify and drive appropriate data security strategy that mitigates Okta’s key security risks, including recommending enhancements such as compensating controls and other preventative measures.

The Principal Data Security Engineer will have strong familiarity with security compliance frameworks (e.g., NIST, ISO, PCI) and will be competent in summarizing complex scenarios for management review. If you are a self-starter who wants to make a difference in a global cloud security company, come help us lead the way.

What you'll be doing

Serve as the business owner of Okta’s data protection tool suite
Evaluation and implementation of security tools and services
Design, establish, and implement the strategy for a multi-year data security maturity roadmap
Identify patterns and trends in data loss incidents to enhance preventative and detective measures
Collaborate with the Cyber Defense Team and Technology, Data & Intelligence (TDI) Team to realize data security controls within Okta’s data security technology stack
Oversee and manage the development, implementation, and uplift of DLP rules
Work closely with technology teams, Legal, Compliance, and other business units to ensure execution of comprehensive data protection strategies
Provide clear and concise reports and documentation on data loss incidents and resolutions
Ability to manage complex projects, including identifying dependencies and evaluating impact

What you'll bring to the role

Bachelor’s degree in Information Security, Computer Science, or **equivalent experience **
10+ years of experience in information security with a focus on data security and privacy
Strong understanding of data protection principles and technologies
Experience with network security, endpoint security, and cloud security solutions
Certifications such as CISSP, CISA, CISM, or CDPSE are preferred
Demonstrated experience working in commercial security roles aligned with security compliance frameworks (e.g., NIST, ISO, PCI)
Experience in building productive relationships and driving collaboration with both technical and non-technical teams
Clear ability to communicate the desired business outcomes and requirements to technologists building solutions
Ability to operate effectively in a remote environment
Self-starting, self-motivated, self-directed, and self-sufficient

Requirements

Deep understanding of data security, data protection, and data privacy workstreams and related tooling (DSPM, DLP, CASB..etc)
Demonstrated experience managing projects and data security tool implementations at a large/comparably sized company, ideally in a regulated industry; and/or Big 4 candidates with related engagement experience
Strong security background; security certification preferred (e.g., CISA, CISM, CISSP, CDPSE)
Bachelor’s degree or higher in cybersecurity or a related technical focus area and/or equivalent practical experience
Strategic thinker with strong analytical and critical thinking skills
Experience managing small teams and/or more junior team members is strongly preferred

#LI-SM1

#LI-HYBRID

P16924_3342877

The annual base salary range for this position for candidates located in the San Francisco Bay area is between:

$193,000—$265,000 USD

Below is the annual base salary range for candidates located in California (excluding San Francisco Bay Area), Colorado, Illinois, New York and Washington. Your actual base salary will depend on factors such as your skills, qualifications, experience, and work location. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program please visit: https://rewards.okta.com/us.

The annual base salary range for this position for candidates located in California (excluding San Francisco Bay Area), Colorado, Illinois, New York, and Washington is between:

$172,000—$237,000 USD

** The Okta Experience**

Supporting Your Well-Being
Driving Social Impact
Developing Talent and Fostering Connection + Community

We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one.

Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws.

If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation.

Notice for New York City Applicants & Employees: Okta may use Automated Employment Decision Tools (AEDT), as defined by New York City Local Law 144, that use artificial intelligence, machine learning, or other automated processes to assist in our recruitment and hiring process. In accordance with NYC Local Law 144, if you are an applicant or employee residing in New York City, please click here to view our full NYC AEDT Notice.

Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Personnel and Job Candidate Privacy Notice at https://www.okta.com/legal/personnel-policy/.