**Secure Every Identity, from AI to Human
**Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organizations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence.
This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.
The TDI Client Platform Engineering Team
The Technology, Data, and Insights (TDI) team is on a mission to accelerate Okta’s scale. We are a group of innovative engineers who prioritize automation, testing, and performance tuning. We touch every part of the business, and we are obsessed with creating a seamless, secure end-user experience for every Okta employee.
The Senior Client Platform Engineer Opportunity
As a Senior Client Platform Engineer, you will be the subject matter expert for Okta’s macOS and iOS fleet. While your primary focus is the Apple ecosystem, you will also play a key role in our broader endpoint strategy, contributing to our Windows and Linux management workflows as needed. This is an ideal path for an engineer who wants to maintain deep Apple expertise while expanding their influence across the entire OS landscape.
We are looking for a versatile engineer who thinks automation-first. You will combine Jamf Pro expertise with open-source tools like Munki and Santa, while helping to bridge the gap between platforms using unified tools like FleetDM.
What makes this role unique: You are Customer Zero. Because we build identity and device management products, you will work directly with Okta’s own Product and Engineering teams to validate new capabilities across platforms, surface real-world feedback, and help shape the roadmap for tools used by millions of people globally.
This role reports to the Senior Manager of Client Platform Engineering.
What You’ll Be Doing
- Apple Fleet Management: Own the global macOS and iOS fleet using Jamf Pro, overseeing enrollment, configuration profiles, and application deployment.
- Cross-Platform Support: Contribute to the management and security of Windows (via Intune/Autopilot) and Linux endpoints as the program evolves, ensuring a consistent security posture across all OS types.
- Tooling & Evolution: Administer open-source tools (Munki, Santa) and lead evaluations of emerging platforms like FleetDM to enhance cross-platform fleet visibility.
- Security & Compliance: Ensure endpoints meet NIST, CIS, and STIG standards. Partner with Security teams to respond to vulnerabilities across the entire fleet.
- Engineering & Infrastructure as Code (IaC): Apply an IaC mindset to device management using code-based workflows (e.g., Terraform, Ansible, or Jamf API). Build and maintain CI/CD pipelines to ensure repeatable, scalable, and automated deployments regardless of the OS.
- Customer Zero Advocacy: Act as a primary feedback loop for Okta’s internal product teams. Test new features in production and influence the product roadmap based on operational data.
- Operational Excellence: Provide Tier 3 escalation support for global IT teams and participate in an on-call rotation.
What You’ll Bring
Core Experience: 5+ years in endpoint engineering with a focus on Apple platforms at enterprise scale.
Technical Versatility: A strong understanding of Windows and Linux operating systems; you aren't just a "Mac person",you understand how to apply engineering principles to any OS.
MDM Mastery: Deep expertise in Jamf Pro. Familiarity with Microsoft Intune or other cross-platform MDM/UEM solutions is a significant plus.
Technical Stack:
Scripting: Proficiency in Bash, Python, Go, or Swift (PowerShell experience is a bonus).
Tooling: Experience with Git, GitHub Actions, Terraform, or similar CI/CD frameworks.
Security: Understanding of ADE/DEP, MDM protocols, and platform-specific hardening (e.g., BitLocker, FileVault, LUKS).
Identity Knowledge: Familiarity with SAML and OIDC and how they integrate with endpoint authentication.
Additional requirements:
- This position requires the ability to access federal environments and/or have access to protected federal data. As a condition of employment for this position, the successful candidate must be able to submit documentation establishing U.S. Person status (e.g. a U.S. Citizen, National, Lawful Permanent Resident, Refugee, or Asylee. 22 CFR 120.15) upon hire.
Extra Credit
- Hands-on experience with FleetDM or osquery for multi-OS visibility.
- Experience with Autopkg pipelines or AWS Lambda for endpoint automation.
- Background in Federal compliance (FedRAMP).
- Relevant certifications (Apple, Okta, Microsoft, AWS, Jamf).
Location & Work Style
This is a hybrid role. Candidates must be located near an Okta office. In the San Francisco Bay Area, employees are expected to be in-office a minimum of 2 days per week.
What you can look forward to as an Okta employee!
- AmazingBenefits
- MakingSocial Impact
- FosteringDiversity, Equity, Inclusion and Belonging at Okta
Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Oktatoday! https://www.okta.com/company/careers/.
Okta is an Equal Opportunity Employer/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to participate in the job application or interview process, please use thisForm to request an accommodation.
Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy athttps://www.okta.com/privacy-policy/.
ir needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Oktatoday! https://www.okta.com/company/careers/.
Okta is an Equal Opportunity Employer/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to participate in the job application or interview process, please use thisForm to request an accommodation.
Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy athttps://www.okta.com/privacy-policy/.
#LI-HM2
#LI-Hybrid
P-2679_3410281
Below is the annual base salary range for candidates located in San Francisco Bay Area. Your actual base salary will depend on factors such as your skills, qualifications, experience, and work location. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program please visit:https://rewards.okta.com/us.
The annual base salary range for this position for candidates located in the San Francisco Bay area is between:
$165,000—$206,000 USD
** The Okta Experience**
- Supporting Your Well-Being
- Driving Social Impact
- Developing Talent and Fostering Connection + Community
We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one.
Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws.
If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation.
Notice for New York City Applicants & Employees: Okta may use Automated Employment Decision Tools (AEDT), as defined by New York City Local Law 144, that use artificial intelligence, machine learning, or other automated processes to assist in our recruitment and hiring process. In accordance with NYC Local Law 144, if you are an applicant or employee residing in New York City, please click here to view our full NYC AEDT Notice.
Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Personnel and Job Candidate Privacy Notice at https://www.okta.com/legal/personnel-policy/.