Tech Stack

Description

You will build and maintain detection capabilities for Okta's platform, infrastructure, and corporate environment. You'll analyze systems to close detection gaps, orchestrate automated response steps, triage alerts, and contribute to incident investigations. This role is key to advancing an intel-driven defensive cyber operations program.

Requirements

• Experience leading or contributing to technology-focused teams
• Driving team excellence through mentoring and sharing technical best practices
• Operating as incident commander or technical lead during cyber security incidents
• Developing advanced detection capabilities and automating alert response
• Experience with SIEM, EDR, Email Security, and SOAR technologies

Responsibilities

• Analyze Okta's systems to identify and close gaps in detection and response coverage
• Orchestrate and automate enrichment, triage, and response steps for security alerts
• Triage alerts from automated processes and third-party notifications as part of DCO watch roster
• Provide technical expertise and contribute to investigation, remediation, and reporting of security incidents
• Identify tools and data needs for continuous improvement of detection and response capabilities