Senior Forward Deployed Engineer

Okta Okta · Enterprise · United States · Okta for AI Agents-764

Okta is seeking a Senior Forward Deployed Engineer to embed within strategic enterprise customers, acting as a dedicated technical partner for agent identity. This role involves writing production code, architecting and deploying agent security solutions, and ensuring secure agent deployments. The engineer will translate customer needs into product feedback and ensure deployments align with security frameworks and regulations.

What you'd actually do

  1. Become the customer’s trusted technical voice on agent security.
  2. Architect and deploy with the customer’s team.
  3. Engage senior leadership.
  4. Deliver white-glove deployment.
  5. Keep deployments defensible.

Skills

Required

  • 7+ years shipping production software
  • on-call experience and operational maturity in systems that authenticate and authorize at high throughput
  • OAuth 2.0, OIDC, SAML, SCIM, RFC 8693 token exchange, act claims, CIMD and DCR, DPoP
  • Working knowledge of OWASP Top 10 for Agentic Applications, NIST AI RMF, and MITRE ATLAS
  • Familiarity with MCP, A2A, ISO/IEC 42001, and the EU AI Act
  • Comfortable mapping deployments to HIPAA, FedRAMP, and SOC 2
  • ReBAC and ABAC with policy engines (OPA, Cedar, OpenFGA, or equivalent)
  • working understanding of how agents acquire tokens, call APIs, and delegate
  • Built production integrations with Claude, ChatGPT, Microsoft Copilot, Agentforce, Bedrock, LangChain, CrewAI, the OpenAI Agents SDK, or MCP servers
  • Daily use of Claude Code, Cursor, GitHub Copilot, or equivalent
  • At home in a customer standup and a CISO briefing on the same day
  • High agency, founder’s mindset

Nice to have

  • Translate token-exchange flows into board-level agent risk, and AI governance mandates into architecture.
  • Connect O4AA to their IdP for human-to-agent links, IGA for agent lifecycle, ISPM for posture, SIEM and EDR for behavior coverage, and policy engines for runtime decisions.

What the JD emphasized

  • 7+ years shipping production software
  • on-call experience and operational maturity
  • high throughput
  • OAuth 2.0, OIDC, SAML, SCIM, RFC 8693 token exchange, act claims, CIMD and DCR, DPoP
  • OWASP Top 10 for Agentic Applications, NIST AI RMF, and MITRE ATLAS
  • HIPAA, FedRAMP, and SOC 2
  • ReBAC and ABAC with policy engines (OPA, Cedar, OpenFGA, or equivalent)
  • Built production integrations with Claude, ChatGPT, Microsoft Copilot, Agentforce, Bedrock, LangChain, CrewAI, the OpenAI Agents SDK, or MCP servers
  • Daily use of Claude Code, Cursor, GitHub Copilot, or equivalent
  • At home in a customer standup and a CISO briefing on the same day
  • zero-to-one self-starter

Other signals

  • The role embeds inside enterprise customers to build and deploy agent identity solutions.
  • It requires writing production code in customer environments and owning technical outcomes.
  • Responsibilities include architecting and deploying Okta's agent security stack, building integrations, and creating evals and observability for agent behavior.