Senior Client Platform Engineer

Okta•San Francisco, CA

15h•Hybrid

About The Position

Secure Every Identity, from AI to Human Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organizations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk. The TDI Client Platform Engineering Team The Technology, Data, and Insights (TDI) team is on a mission to accelerate Okta’s scale. We are a group of innovative engineers who prioritize automation, testing, and performance tuning. We touch every part of the business, and we are obsessed with creating a seamless, secure end-user experience for every Okta employee. The Senior Client Platform Engineer Opportunity As a Senior Client Platform Engineer , you will be the subject matter expert for Okta’s macOS and iOS fleet. While your primary focus is the Apple ecosystem, you will also play a key role in our broader endpoint strategy, contributing to our Windows and Linux management workflows as needed. This is an ideal path for an engineer who wants to maintain deep Apple expertise while expanding their influence across the entire OS landscape. We are looking for a versatile engineer who thinks automation-first . You will combine Jamf Pro expertise with open-source tools like Munki and Santa, while helping to bridge the gap between platforms using unified tools like FleetDM. What makes this role unique: You are Customer Zero . Because we build identity and device management products, you will work directly with Okta’s own Product and Engineering teams to validate new capabilities across platforms, surface real-world feedback, and help shape the roadmap for tools used by millions of people globally. This role reports to the Senior Manager of Client Platform Engineering.

Requirements

5+ years in endpoint engineering with a focus on Apple platforms at enterprise scale.
A strong understanding of Windows and Linux operating systems; you aren't just a "Mac person",you understand how to apply engineering principles to any OS.
Deep expertise in Jamf Pro.
Proficiency in Bash, Python, Go, or Swift (PowerShell experience is a bonus).
Experience with Git, GitHub Actions, Terraform, or similar CI/CD frameworks.
Understanding of ADE/DEP, MDM protocols, and platform-specific hardening (e.g., FileVault, LUKS).
Familiarity with SAML and OIDC and how they integrate with endpoint authentication.
This position requires the ability to access federal environments and/or have access to protected federal data.
As a condition of employment for this position, the successful candidate must be able to submit documentation establishing U.S. Person status (e.g. a U.S. Citizen, National, Lawful Permanent Resident, Refugee, or Asylee. 22 CFR 120.15) upon hire.

Nice To Haves

Familiarity with Microsoft Intune or other cross-platform MDM/UEM solutions is a significant plus.
Hands-on experience with FleetDM or osquery for multi-OS visibility.
Experience with Autopkg pipelines or AWS Lambda for endpoint automation.
Background in Federal compliance (FedRAMP).
Relevant certifications (Apple, Okta, Microsoft, AWS, Jamf).

Responsibilities

Own the global macOS and iOS fleet using Jamf Pro, overseeing enrollment, configuration profiles, and application deployment.
Contribute to the management and security of Windows (via Intune/Autopilot) and Linux endpoints as the program evolves, ensuring a consistent security posture across all OS types.
Administer open-source tools (Munki, Santa) and lead evaluations of emerging platforms like FleetDM to enhance cross-platform fleet visibility.
Ensure endpoints meet NIST, CIS, and STIG standards. Partner with Security teams to respond to vulnerabilities across the entire fleet.
Apply an IaC mindset to device management using code-based workflows (e.g., Terraform, Ansible, or Jamf API). Build and maintain CI/CD pipelines to ensure repeatable, scalable, and automated deployments regardless of the OS.
Act as a primary feedback loop for Okta’s internal product teams. Test new features in production and influence the product roadmap based on operational data.
Provide Tier 3 escalation support for global IT teams and participate in an on-call rotation.