Principal Detection and Response Engineer
4 weeks ago
Toronto
Get to know Okta
Okta is The World's Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and growth.
At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we're looking for lifelong learners and people who can make us better with their unique experiences.
Join our team We're building a world where Identity belongs to you.
We safeguard Okta from threats and vulnerabilities that have the potential to disrupt our business or degrade our customers' trust in us.
In addition to driving security in our enterprise environment and Okta service, the Security team is deeply entrenched in the Okta business. The team contributes to product roadmaps, promoting trust, research and other strategic aspects of Okta's operations. We work across multiple functions, business partners and the research community. We are an engineering-focused team that seeks to stay on the cutting edge of security technology and the threat landscape.
The RoleOkta is seeking an experienced Principal Engineer, Detection and Response to take on a key role as a senior technical expert within Okta's Cyber Defense team, reporting to the Senior Manager of Defensive Cyber Operations (Americas). You will be responsible for designing, implementing, and optimizing threat detection, incident response, and security automation solutions and ensuring they are continuously validated. You will work closely with engineers and leadership to enhance Okta's ability to detect, investigate, and respond to sophisticated cyber threats.
Core ResponsibilitiesDetection Engineering- Design, develop, and optimize security detection capabilities across Okta's infrastructure and applications ensuring optimal coverage across the organization.
- Build and refine advanced security detections using custom detection pipelines, EDR, cloud-native security tools, and behavioral analytics.
- Partner with security engineers to improve alert fidelity and reduce false positives.
- Serve as a senior escalation point for complex security incidents, leading technical investigations and root cause analyses.
- Take part in the DCO watch roster triaging alerts escalated via automated processes, internal reports, and third-party notifications.
- Develop and implement forensic analysis techniques to investigate security breaches and insider threats.
- Conduct proactive threat-hunting activities using telemetry from across the enterprise.
- Architect and implement automation for security operations, including enrichment, triage, and response playbooks.
- Integrate security tools with APIs and cloud-native services to improve response time.
- Develop custom tooling and scripts to support detection and response capabilities.
- Work closely with security engineers and leadership to shape the long-term vision for cyber security operations.
- Mentor and coach engineers fostering a culture of technical excellence.
- Contribute to threat intelligence sharing efforts and stay ahead of emerging attack techniques.
You're a team player. You have great communications skills and a thirst for knowledge. You're curious about systems and how they interact, knowing that to properly defend a system you must first understand how it works. You enjoy automating tasks and if you can't find a tool for the job you create one. You're calm under pressure and have a good internal compass for taking calculated risks.
If you don't have a degree, you have equivalent experience that's given you the foundational knowledge to understand complex computing environments.
You're a leader. People want to work with you. You know what it takes to build a world-class defensive cyber capability and you're passionate about helping make ours stronger. Your experience probably includes:
- Leading, or contributing to, technology focused teams large or small.
- Mentoring staff and providing development opportunities to build high performing teams.
- Operating as, or providing support to, the incident commander or technical lead during cyber security incidents.
- Developing advanced detection capabilities, working with detection-as-code, and automating the triage and response of alerts they generate.
Ideally you also have experience in several of the following areas:
- Researching the tactics, techniques and procedures of sophisticated adversaries and hunting for evidence of them within an enterprise environment.
- Developing detection and response validation techniques and automating tests to enable continuous assurance of defensive cyber capabilities.
- Analysing critical systems to understand both how to break them and defend them against attack.
- Working collaboratively within product and/or enterprise project teams, assisting to deliver large and complex technology solutions.
#LI-REMOTE
Below is the annual salary range for candidates located in Canada. Your actual salary will depend on factors such as your skills, qualifications, and experience. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental, and vision insurance, RRSP with a match, healthcare spending, telemedicine, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program, please visit: https://rewards.okta.com/can.
The annual base salary range for this position for candidates located in Canada is between: $186,000 — $278,000 CAD.
What you can look forward to as a Full-Time Okta employee- Amazing Benefits
- Making Social Impact
- Fostering Diversity, Equity, Inclusion and Belonging at Okta
Okta cultivates a dynamic work environment, providing the best tools, technology and benefits to empower our employees to work productively in a setting that best and uniquely suits their needs. Each organization is unique in the degree of flexibility and mobility in which they work so that all employees are enabled to be their most creative and successful versions of themselves, regardless of where they live. Find your place at Okta today https://www.okta.com/company/careers/.
Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws. If reasonable accommodation is needed to participate in the job application, interview process, or onboarding please use this Form to request an accommodation.
Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Privacy Policy at https://www.okta.com/privacy-policy/.
#J-18808-Ljbffr-
Detection and Response Engineer
2 weeks ago
Toronto, Ontario, Canada Robinhood Full timeAbout the RoleThe Security Operations (SecOps) team at Robinhood is responsible for monitoring, detecting, and responding to security incidents in real time. We do this by staying ahead of threats through gathering threat intelligence, conducting Red Team operations, and working with external security researchers to identify and mitigate potential risks...
-
Detection and Response Engineer
3 days ago
Toronto, Ontario, Canada Robinhood Full timeJoin Robinhood's mission to democratize finance for all as a Detection and Response Engineer. In this role, you will be responsible for developing and fine-tuning detection logic to improve visibility into security threats.About the JobInvestigate security alerts and incidents, conduct log analysis, and collaborate with teams to mitigate threats.Analyze...
-
Toronto, Ontario, Canada Robinhood Full timeAbout Our TeamThe Detection and Response team protects the security and privacy of Robinhood and its customers through rapid detection, response, and containment of cybersecurity threats. Join a team dedicated to developing a robust detection and response platform that empowers operations teams to implement detections within the Robinhood environment.Key...
-
Security Engineer: Threat Detection
1 day ago
Toronto, Ontario, Canada beBee Careers Full timeWe're looking for a highly skilled Security Engineer to join our team at Sopra Steria. As a Threat Detection & Response Specialist, you'll develop and refine detection rules, create security use cases, and implement incident investigation and response processes.Responsibilities:Write custom detection rules using query languages such as KQL, SPL, and...
-
Toronto, Ontario, Canada Robinhood Full timeUnlock new opportunities at Robinhood! We're seeking an Incident Response Engineer with expertise in advanced threat detection to join our Security Operations team. As a key contributor, you'll help safeguard our customers and systems from sophisticated cyber threats.Your main responsibilities will include designing and implementing advanced threat detection...
-
Senior Threat Detection Engineer
4 days ago
Toronto, Ontario, Canada Okta, Inc. Full timeSenior Threat Detection EngineerAt Okta, we are looking for a highly motivated and experienced Senior Threat Detection Engineer to join our DCO team. As a senior engineer, you will play a critical role in developing and implementing threat detection strategies that protect our customers' identities and sensitive data.Detection Engineering: Design and...
-
Toronto, Ontario, Canada Robinhood Full timeRedefine the future of finance with us at Robinhood! Our mission is to empower everyone to participate in the financial system. As a member of our Security Operations team, you'll play a vital role in protecting our customers and systems from complex cyber threats.As a Detection & Response Engineer, your primary focus will be on developing and implementing...
-
Staff Detection
4 weeks ago
Toronto, Ontario, Canada Okta, Inc. Full timeGet to know OktaOkta is The World's Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and...
-
Staff Detection
7 days ago
Toronto, Ontario, Canada Okta, Inc. Full timeGet to know OktaOkta is The World's Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and...
-
Staff Detection
2 weeks ago
Toronto, Ontario, Canada Okta, Inc. Full timeGet to know Okta Okta is The World's Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security...
-
Staff Detection
3 weeks ago
Toronto, Ontario, Canada Okta, Inc. Full timeGet to know OktaOkta is The World's Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and...
-
Staff Detection
5 days ago
Toronto, Ontario, Canada Okta, Inc. Full timeGet to know OktaOkta is The World's Identity Company. We free everyone to safely use any technology—anywhere, on any device or app. Our Workforce and Customer Identity Clouds enable secure yet flexible access, authentication, and automation that transforms how people move through the digital world, putting Identity at the heart of business security and...
-
Security Developer, Detection
3 weeks ago
Toronto, Ontario, Canada Robinhood Full timeSecurity Developer, Detection & ResponseToronto, ONJoin a leading fintech company that's democratizing finance for all.Robinhood Markets was founded on a simple idea: that our financial markets should be accessible to all. With customers at the heart of our decisions, Robinhood and its subsidiaries and affiliates are lowering barriers and providing greater...
-
Security Developer, Detection
5 days ago
Toronto, Ontario, Canada Robinhood Full timeSecurity Developer, Detection & ResponseToronto, ONJoin a leading fintech company that's democratizing finance for all.Robinhood Markets was founded on a simple idea: that our financial markets should be accessible to all. With customers at the heart of our decisions, Robinhood and its subsidiaries and affiliates are lowering barriers and providing greater...
-
Security Developer, Detection
4 weeks ago
Toronto, Ontario, Canada Robinhood Full timeSecurity Developer, Detection & ResponseToronto, ONJoin a leading fintech company that's democratizing finance for all.Robinhood Markets was founded on a simple idea: that our financial markets should be accessible to all. With customers at the heart of our decisions, Robinhood and its subsidiaries and affiliates are lowering barriers and providing greater...
-
Security Developer, Detection
4 weeks ago
Toronto, Ontario, Canada Robinhood Full timeJoin a leading fintech company that's democratizing finance for all.Robinhood Markets was founded on a simple idea: that our financial markets should be accessible to all. With customers at the heart of our decisions, Robinhood and its subsidiaries and affiliates are lowering barriers and providing greater access to financial information. Together, we are...
-
Threat Detection and Response Professional
5 days ago
Toronto, Ontario, Canada ITjobs Full timeThreat Detection and Response ProfessionalWe're looking for a skilled Threat Detection and Response Professional to join our Cyber Security MDR service team. As a key contributor, you'll play a crucial role in detecting and responding to new and emerging threats.About the Role:You'll have the opportunity to work with cutting-edge technologies like Windows...
-
Incident Response and Detection Expert
22 hours ago
Toronto, Ontario, Canada beBee Careers Full timeWe're looking for an Incident Response and Detection Expert to join our team at Sopra Steria. As a key member of our SOC, you'll be responsible for developing and refining detection rules, creating security use cases, and implementing incident investigation and response processes.Responsibilities:Perform threat modeling and intelligence-driven detection to...
-
Principal Security Analyst
4 weeks ago
Toronto, Ontario, Canada Cyderes Full timeCyderes (Cyber Defense and Response) is a pure-play, full life-cycle cybersecurity services provider with award-winning managed security services, identity and access management, and professional services designed to manage the cybersecurity risks of enterprise clients. We specialize in multi-technology, complex environments with the in speed and agility...
-
Threat Detection Analyst
5 days ago
Toronto, Ontario, Canada ProViso Staffing Full timeSecurity Analytics ExpertWe are seeking a highly skilled Security Analytics Expert to join our team at ProViso Staffing. As an Information Security Analyst, you will be responsible for defining and developing detection strategies to ensure timely responses to potential threats.About the RoleThe ideal candidate will have a minimum of 5 years of information...
