Empleos actuales relacionados con Senior Product Security Engineer, Reviews - Madrid - Okta, Inc.
-
Senior Product Security Engineer
hace 2 semanas
Madrid, Madrid, España Databricks A tiempo completoJob SummaryWe are seeking a highly skilled Senior Product Security Engineer to join our team at Databricks. As a key member of our Product Security Team, you will be responsible for managing SDLC functions for features and products within Databricks.Key ResponsibilitiesSupport the development of secure software by conducting security design reviews, threat...
-
Madrid, España Google A tiempo completoMinimum qualifications:Bachelor's degree or equivalent practical experience.5 years of coding experience in one or more general purpose languages.5 years of experience with security assessments, security design reviews, or threat modeling.5 years of experience with security engineering, computer and network security, and security protocols.1 year of...
-
Security Engineer
hace 1 mes
Madrid, Madrid, España Kudelski Security A tiempo completoJob Title: Security EngineerJob Summary:Kudelski Security is seeking a highly skilled Security Engineer to join our team. As a Security Engineer, you will be responsible for designing and implementing technical strategies to secure our clients' digital assets. You will work closely with our team to identify and mitigate potential security threats, and...
-
Security Engineer
hace 1 mes
Madrid, Madrid, España Kudelski Security A tiempo completoJob Title: Security EngineerJob Summary:Kudelski Security is seeking a highly skilled Security Engineer to join our team. As a Security Engineer, you will be responsible for designing and implementing technical strategies to secure our clients' digital assets. You will work closely with our team to identify and mitigate potential security threats, and...
-
Senior Cloud Security Engineer
hace 3 semanas
Madrid, Madrid, España Sportradar A tiempo completoJob Title: Senior Cloud Application Security EngineerSportradar is seeking a highly skilled Senior Cloud Application Security Engineer to join our Product Security team. As a key member of our team, you will be responsible for ensuring the security of our cloud-based applications and services.About the Role:The Senior Cloud Application Security Engineer will...
-
Senior Fullstack Security Engineer
hace 4 semanas
Madrid, Madrid, España Ebury A tiempo completoAbout the RoleEbury, a leading FinTech firm, is seeking a highly skilled Senior Fullstack Security Engineer to join its growing security engineering team. As a key member of this team, you will play a critical role in implementing security features across our entire product portfolio.As a Senior Fullstack Security Engineer, you will work closely with...
-
Senior Fullstack Security Engineer
hace 4 semanas
Madrid, Madrid, España Ebury A tiempo completoAbout the RoleEbury, a leading FinTech firm, is seeking a highly skilled Senior Fullstack Security Engineer to join its growing security engineering team. As a key member of this team, you will play a critical role in implementing security features across our entire product portfolio.As a Senior Fullstack Security Engineer, you will work closely with...
-
Senior Product Security Specialist
hace 2 semanas
Madrid, Madrid, España Databricks A tiempo completoJob SummaryWe are seeking a highly skilled Senior Product Security Specialist to join our Product Security Team at Databricks. As a key member of the team, you will be responsible for managing SDLC functions for features and products within Databricks, including security design reviews, threat models, manual code reviews, exploit writing, and exploit chain...
-
Senior Cloud Security Engineer
hace 4 meses
Madrid, España Epam A tiempo completo.DESCRIPTIONDo you have a Systems/Cloud engineering background and strong knowledge in Security? Are you an open-minded professional with good English skills? If it sounds like you, this could be the perfect opportunity to join EPAM as a Senior Cloud Security Engineer.Our teams work in highly agile working environments for Fortune 1000 clients, following XP...
-
Security Engineer
hace 1 semana
Madrid, España La Fosse Associates A tiempo completoJob Title: Senior Security EngineerLocation: Madrid or Malaga (Hybrid)Salary: Up to €100k, depending on experienceAbout the Company:They are a fast-growing, international fintech company with a global presence. As part of their expansion, they are setting up a new tech hub in Spain and are looking for talented professionals to join their team in either...
-
Senior Grc Security Engineer |
hace 1 día
Madrid, España Sgs A tiempo completo.Job DescriptionThe Senior GRC Security Engineer will be part of the Technical Security Office (TSO) and will play a critical role in protecting the organization's assets, ensuring regulatory compliance, and managing cyber risk.Specific responsibilities:Implementation and monitoring of security controls: manage the technical security architecture of the...
-
Security Engineer, Product Security, Cloud Ciso
hace 4 semanas
Madrid, España Google A tiempo completoMinimum qualifications:Bachelor's degree or equivalent practical experience.2 years of experience with security assessments or security design reviews or threat modeling.2 years of experience with security engineering, computer and network security and security protocols.2 years of coding experience in one or more general purpose languages.Preferred...
-
Senior Grc Security Engineer
hace 3 semanas
Madrid, España Sgs A tiempo completo.Company DescriptionWe are SGS - the world's leading testing, inspection and certification company. We are recognized as the global benchmark for sustainability, quality and integrity. Our 99,600 employees operate a network of 2,600 offices and laboratories, working together to enable a better, safer and more interconnected world.Job DescriptionThe Senior...
-
Senior Grc Security Engineer
hace 3 semanas
Madrid, España Sgs A tiempo completo.SGSEnhancing warfighter support with AI: Streamlining sustainment and supply, empowering personnel, and informing leadership decisions.We are SGS – the world's leading testing, inspection and certification company. We are recognized as the global benchmark for sustainability, quality and integrity. Our 99,600 employees operate a network of 2,600 offices...
-
Senior Grc Security Engineer
hace 1 semana
Madrid, España Sgs A tiempo completo.Company DescriptionWe are SGS – the world's leading testing, inspection and certification company. We are recognized as the global benchmark for sustainability, quality and integrity. Our 99,600 employees operate a network of 2,600 offices and laboratories, working together to enable a better, safer and more interconnected world.Job DescriptionThe Senior...
-
Senior Grc Security Engineer
hace 3 semanas
Madrid, España Sgs Société Générale De Surveillance Sa. A tiempo completo.We are SGS – the world's leading testing, inspection and certification company. We are recognized as the global benchmark for sustainability, quality and integrity. Our 99,600 employees operate a network of 2,600 offices and laboratories, working together to enable a better, safer and more interconnected world.Job DescriptionThe Senior GRC Security...
-
Senior Grc Security Engineer
hace 1 semana
Madrid, España Sgs A tiempo completo.SGS Enhancing warfighter support with AI: Streamlining sustainment and supply, empowering personnel, and informing leadership decisions. We are SGS – the world's leading testing, inspection and certification company. We are recognized as the global benchmark for sustainability, quality and integrity. Our 99,600 employees operate a network of 2,600 offices...
-
Senior Security Automation Engineer
hace 1 semana
Madrid, Madrid, España Celonis A tiempo completoWe are seeking a seasoned Senior Security Automation Engineer to join our team at Celonis. As a trusted member of our Global information security organization, you will be responsible for security and trust. We think about security-offensively and defensively, continuously monitoring our global security posture and adapting to the ever-changing threat...
-
Senior Fullstack Security Engineer
hace 4 semanas
Madrid, Madrid, España Ebury A tiempo completoAbout the RoleEbury, a leading FinTech firm, is seeking a skilled Senior Fullstack Security Engineer to join its growing security engineering team. As a key member of this team, you will play a critical role in implementing security features across our entire product portfolio.As a Full Stack Security Engineer, you will work closely with application,...
-
Senior Fullstack Security Engineer
hace 4 semanas
Madrid, Madrid, España Ebury A tiempo completoAbout the RoleEbury, a leading FinTech firm, is seeking a skilled Senior Fullstack Security Engineer to join its growing security engineering team. As a key member of this team, you will play a critical role in implementing security features across our entire product portfolio.As a Full Stack Security Engineer, you will work closely with application,...
Senior Product Security Engineer, Reviews
hace 3 meses
Senior Product Security Engineer, Reviews Spain
Get to know Okta
Okta is The World's Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth.
At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we're looking for lifelong learners and people who can make us better with their unique experiences.
Join our team We're building a world where Identity belongs to you.
Product Security Engineers are responsible for conducting security reviews on all of Okta's products, providing security education to our engineers, and handling externally reported vulnerabilities. This ranges from code reviews, penetration tests, and architectural reviews on new features and existing code, in order to provide security education and guidance to the entire organization.
This position is not for someone who operates solely on scanner-based vulnerabilities. You will be required to demonstrate a strong technical understanding of web applications, backend services, penetration testing techniques and methodologies. You should have a clear understanding of Okta's authentication protocols, such as SAML and OAuth. Furthermore, you should have the desire to automate tasks by building tools to help discover vulnerabilities and be comfortable explaining and communicating vulnerabilities to developers, management and leadership by creating thorough documentation of findings.
The most important quality we are looking for is someone who has an "evil bit" - an innate ability to think and operate like an attacker while solving complex problems with expertise and creativity. At Okta we fully support externally publishing exciting new findings and will help you do it in the form of white papers, blog posts, and live presentations at conferences of your choice.
Job Duties and Responsibilities:
Work closely with Engineering teams on Design Reviews and Threat Models for new features or major changes
Audit code for security flaws and adherence to best practices
Perform penetration tests on new features and platforms as a whole
Develop, implement, and communicate vulnerability mitigation strategies to development teams
Work both solo and collaboratively to deliver projects on a deadline
Think like an attacker and solve complex problems with expertise and ingenuity
Give security presentations and represent Okta in private or public venues
Required Knowledge, Skills, and Abilities:
Expertise in identifying common (OWASP Top 10/CWE Top 25) web application vulnerabilities through secure code reviews (Java, .Net, Go, C, C++, C#, Swift, Kotlin, Python)
Proficient in conducting manual web application penetration tests using industry-standard tools
Extensive knowledge of modern web application components, architecture, and design principles
Ability to explain vulnerability risks, impact and remediation options to developers
Coding ability in at least one scripting language (ex: Python, Bash)
Capable of taking point on product security incidents and providing recommendations to the organization.
Be able to identify risks on large features or new products as well as being able to provide clear mitigations and follow up on remediation efforts
Ability to provide guidance and mentorship to junior engineers as well as non-security staff
Desired Skills and Abilities:
Working knowledge of current authentication and authorization protocols (OIDC, SAML)
Experience in mobile device (Android and/or iOS) application penetration testing
Experience with testing Windows desktop applications
Experience with SAST, DAST, SCA, and fuzzing tools
Knowledge of current cryptographic algorithms and techniques
Experience in attacking network protocols and analyzing network traffic
Experience writing proof-of-concept scripts to demonstrate vulnerability exploitation
What you can look forward to as a Full-Time Okta employee
Amazing Benefits
Making Social Impact
Fostering Diversity, Equity, Inclusion and Belonging at Okta
Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Okta today
Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran.
Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy.
#J-18808-Ljbffr
