Principal Forward Deployed Engineer - Okta for AI Agents

1 month ago
Full-time
Lead
Software Development
Okta

Okta

Okta is a leading independent provider of identity solutions for enterprises, offering a comprehensive range of products and services to connect and protect employees, partners, and customers. With a focus on secure access, authentication, and automati...

Professional Services
5K-10K
Founded 2009

Description

  • Define the canonical reference architecture for agent identity, delegation, audit, and kill-switch patterns across the portfolio.
  • Personally lead the most strategic, regulated, and technically novel customer deployments.
  • Review and improve architectures proposed by other field engineers and coach senior customer-facing technical staff.
  • Synthesize patterns across accounts into actionable recommendations for product and engineering leadership.
  • Represent Okta as a technical authority in briefings with CISO, CIO, and Chief AI Officer audiences.
  • Contribute to external standards and frameworks shaping agent identity.
  • Resolve complex technical and political issues that others cannot unblock.
  • Define evaluation and observability standards for authorization latency, scope sprawl, delegation anomalies, audit completeness, and kill-switch verification.
  • Turn recurring field work into reusable modules, internal tooling, and enablement.
  • Stay hands-on in code while setting technical direction and multiplying the effectiveness of the broader team.

Requirements

  • 10+ years shipping production software, with deep distributed systems and identity experience.
  • Experience staying hands-on while setting technical direction.
  • Deep knowledge of OAuth 2.0, OIDC, SAML, SCIM, RFC 8693 token exchange, act claims, CIMD, DCR, and DPoP.
  • Contribution to standards or open source is a plus.
  • Working knowledge of OWASP Top 10 for Agentic Applications, NIST AI RMF, MITRE ATLAS, MCP, A2A, ISO/IEC 42001, and the EU AI Act.
  • Ability to apply security and compliance frameworks in HIPAA, FedRAMP, and SOC 2 environments.
  • Expertise in ReBAC and ABAC with policy engines such as OPA, Cedar, OpenFGA, or equivalent.
  • Production integrations across major agent platforms and MCP, plus daily AI-native development experience.
  • A record of setting technical direction across multiple teams or accounts and mentoring senior engineers.
  • Credibility with both technical and executive audiences, including CISOs and principal engineers.
  • High-agency, founder’s mindset focused on building a function rather than just supporting an account.

Benefits

  • Annual base salary range of $269,000 to $369,000 for candidates in the San Francisco Bay Area.
  • Annual base salary range of $240,000 to $330,000 for candidates in California outside the Bay Area, Colorado, Illinois, New York, and Washington.
  • Equity eligibility where applicable.
  • Bonus eligibility.
  • Health, dental, and vision insurance.
  • 401(k) plan.
  • Flexible spending account.
  • Paid leave, including PTO and parental leave.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Solutions Engineer (Manufacturing) - US Shift

Fictiv 251-1K Industrial Conglomerates

MISUMI Americas is hiring a Solution Engineering professional to bridge customer requirements and manufacturing capabilities by producing accurate quotes and technical guidance for complex parts.

Assembly
12 hours, 33 minutes ago

Active Directory / Identity Engineer

Keywords Studios 10K-50K Internet Software & Services

Keywords Group is seeking an experienced Active Directory SME and Azure Identity Lead to guide company-wide identity architecture and support global IT across on-premises and cloud environments.

Active Directory Cybersecurity DHCP DNS PowerShell
13 hours, 3 minutes ago

Digital Consultant, CPQ/Logik

Zaelab 51-250 Professional Services

Zaelab is hiring a Digital Consultant, CPQ to support Quote-to-Cash delivery for enterprise clients through CPQ design, configuration, implementation, and integration work.

CRM ERP
13 hours, 3 minutes ago

Associate Technical Sales & Solutions Engineer (Dallas, TX)

Evolv 11-50 Internet Software & Services

Evolv is hiring an Associate Solutions Engineer to lead hands-on system deployments, operator training, and go-live support while also assisting with site surveys, pilots, demos, and channel partner enablement.

13 hours, 33 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers