Staff Detection & Response Engineer at Okta

What you'd actually do

Lead complex, hypothesis-driven threat hunts based on vague intelligence, and develop refined methodologies for the broader team to follow.

Write novel detections and solve complex querying challenges. You will establish the frameworks and standards for detection engineering across the entire security organization.

Design and validate the effectiveness of preventative control chains and influence the selection and architecture of new security solutions.

Serve as the technical lead for major incidents, including investigating threats in "foreign" or uncommon environments by leveraging frameworks and your professional network.

Own multi-quarter objectives and drive them to success, developing project plans that align with Okta’s strategic VMTs (Vision, Metrics, and Targets) and budget.

Skills

Required

Threat hunting
Detection engineering
Incident response
Security architecture
Querying languages
Detection frameworks (e.g., MITRE ATT&CK)
Modern IR toolsets
Crisis communication
Project leadership
Budget management
Automation of response workflows
Refining preventative controls
Understanding of threat actor TTPs
Communication skills (technical and executive)

Nice to have

Mentorship
Team advocacy
Cross-functional collaboration

What the JD emphasized

high-impact leadership role

strategic one

influence security decisions

drive innovation

force multiplier

career-defining work

lead complex, hypothesis-driven threat hunts

establish the frameworks and standards for detection engineering

Architectural Influence

technical lead for major incidents

Own multi-quarter objectives

drive innovation initiatives

Expert Investigator

Effective Communicator

Resilient Leader

Proven experience in a high-growth SaaS or security-focused environment

Expertise in querying languages, detection frameworks (e.g., MITRE ATT&CK), and modern IR toolsets.

Experience managing communications during crises or major security incidents.

Demonstrated ability to lead project teams and manage budget/resource requirements.

Strong background in automating response workflows and refining preventative controls.

**Secure Every Identity, from AI to Human

**Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organizations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence.

This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

About the Role

As a Staff Detection & Response Engineer at Okta, you will occupy a high-impact leadership role within our Security Operations organization. This is not just a technical role; it is a strategic one. You will influence security decisions across multiple teams, drive innovation in our defense-in-depth strategies, and act as a force multiplier for our global security posture.

You will be responsible for leading complex threat hunts, managing major security incidents, and architecting the detection frameworks that protect Okta’s infrastructure and customers. You will serve as a bridge between executive leadership and technical teams, ensuring our security objectives align with broader business trends and strategic goals.

What You’ll Do

Technical Leadership & Innovation

Threat Hunting: Lead complex, hypothesis-driven threat hunts based on vague intelligence, and develop refined methodologies for the broader team to follow.
Detection Engineering: Write novel detections and solve complex querying challenges. You will establish the frameworks and standards for detection engineering across the entire security organization.
Architectural Influence: Design and validate the effectiveness of preventative control chains and influence the selection and architecture of new security solutions.
Incident Response: Serve as the technical lead for major incidents, including investigating threats in "foreign" or uncommon environments by leveraging frameworks and your professional network.

**Global Mindset: While Okta maintains a 24x7posture, there is a requirement to be available in a crisis out of (your business) hours, and as a thought leader, to interface with colleagues globally. **

Strategic Execution

Project Ownership: Own multi-quarter objectives and drive them to success, developing project plans that align with Okta’s strategic VMTs (Vision, Metrics, and Targets) and budget.
Problem Solving: Navigate issues of diverse scope, analyzing data against current business trends to provide innovative solutions.
Innovation: Secure resources for and drive innovation initiatives across multiple teams, facilitating cross-functional workshops to generate new security solutions.

Team Advocacy & Mentorship

Culture Building: Foster an inclusive, collaborative environment by sharing wins, rewarding team efforts, and encouraging diverse perspectives.
Mentorship: Act as an advisor to junior colleagues, providing actionable feedback and helping others align their career goals with organizational objectives.
Consensus Driving: Drive consensus and resolve issues within cross-functional teams, ensuring all stakeholders are aligned on security priorities.

Who You Are

Expert Investigator: You have a deep understanding of threat actor TTPs and can navigate complex systems even when documentation is sparse.
Effective Communicator: You can translate complex technical problems for any audience, from executive leadership to junior analysts.
Resilient Leader: You have a "bottom-line" orientation, persisting through obstacles and setbacks to achieve results.
Self-Aware & Empathetic: You proactively seek feedback, know your limits, and lead with empathy and compassion.
Collaboratively Minded: You prioritize the development of others and establish internal and external networks of coaches and mentors.

Qualifications

Proven experience in a high-growth SaaS or security-focused environment.
Expertise in querying languages, detection frameworks (e.g., MITRE ATT&CK), and modern IR toolsets.
Experience managing communications during crises or major security incidents.
Demonstrated ability to lead project teams and manage budget/resource requirements.
Strong background in automating response workflows and refining preventative controls.

Why Okta? Okta is the World’s Identity Company. We are building a world where anyone can safely use any technology. As a Staff Engineer, you will play a pivotal role in ensuring that vision remains a reality.

#LI-HYBRID

P6513_3323862

Below is the annual salary range for candidates located in Canada. Your actual salary will depend on factors such as your skills, qualifications, and experience. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental, and vision insurance, RRSP with a match, healthcare spending, telemedicine, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program, please visit: https://rewards.okta.com/can.

The annual base salary range for this position for candidates located in Canada is between:

$141,000—$193,000 CAD

** The Okta Experience**

Supporting Your Well-Being
Driving Social Impact
Developing Talent and Fostering Connection + Community

We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one.

Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws.

If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation.

Notice for New York City Applicants & Employees: Okta may use Automated Employment Decision Tools (AEDT), as defined by New York City Local Law 144, that use artificial intelligence, machine learning, or other automated processes to assist in our recruitment and hiring process. In accordance with NYC Local Law 144, if you are an applicant or employee residing in New York City, please click here to view our full NYC AEDT Notice.

Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Personnel and Job Candidate Privacy Notice at https://www.okta.com/legal/personnel-policy/.