Skip to content
Manager – Product Security Reviews
| Company | Okta |
|---|
| Location | Toronto, ON, Canada |
|---|
| Salary | $141000 – $211000 |
|---|
| Type | Full-Time |
|---|
| Degrees | |
|---|
| Experience Level | Senior |
|---|
Requirements
- Proven leadership experience in product security, including people management or team leadership.
- Strong technical expertise in application security, including secure code reviews, penetration testing, and vulnerability assessment methodologies.
- Experience leading security reviews for web applications, cloud services, and distributed systems.
- Knowledge of modern authentication and authorization protocols, such as OIDC, SAML, OAuth.
- Excellent communication skills, with the ability to articulate security risks and remediation strategies to engineers and leadership.
- Track record of managing security teams across multiple locations, fostering a culture of collaboration and high performance.
- Ability to influence security initiatives across multiple teams, balancing security goals with business objectives.
Responsibilities
- Manage and mentor a team of Product Security Engineers, supporting their career growth and professional development.
- Own and oversee security programs and projects, defining goals, refining processes, and ensuring effective execution.
- Provide technical leadership in security reviews, offering guidance on threat modeling, code audits, penetration testing, and vulnerability assessments.
- Collaborate closely with Engineering, Product, and Design teams to understand security needs and integrate best practices.
- Track and report key performance indicators (KPIs), ensuring visibility into security program effectiveness.
- Develop and communicate vulnerability mitigation strategies, helping teams prioritize and remediate security risks.
- Promote security awareness and best practices through mentorship, training, and security presentations.
- Represent Okta externally, engaging in security conferences, research, and industry discussions.
Preferred Qualifications
- Experience with cloud security, DevSecOps, and automation in security testing.
- Familiarity with SAST, DAST, SCA, and security tooling to improve security operations.
- Experience leading cross-functional security initiatives, such as security training, vulnerability management, or incident response programs.
- Strong strategic thinking and ability to identify areas for security improvement at scale.
