Principal Forward Deployed Engineer
Remote · United Kingdom
Job Summary
Principal Forward Deployed Engineer responsible for defining the canonical agent identity architecture, leading the most strategic, regulated deployments, coaching senior engineers, shaping the product roadmap, representing Okta as a technical authority to executive audiences, defining evals and observability, and building reusable modules and internal tooling to accelerate the FDE function. The role requires hands-on coding, deep expertise in identity protocols (OAuth 2.0, OIDC, SAML, SCIM, RFC 8693, DPoP), agent security standards (NIST AI RMF, MITRE ATLAS, ISO 1C/42001, EU AI Act), fine-grained authorization (ReBAC/ABAC with policy engines), production integrations across major agent platforms, strong customer-facing presence, and travel up to 35%.
Required Qualifications
- Engineering depth: 10+ years shipping production software with deep distributed systems and identity experience
- Authority-level identity protocols: OAuth 2.0, OIDC, SAML, SCIM, RFC 8693 token exchange, act claims, CIMD and DCR, DPoP
- Deep agent security fluency: OWASP Top 10 for Agentic Applications, NIST AI RMF, MITRE ATLAS, MCP, A2A, ISO/IEC 42001, EU AI Act, HIPAA, FedRAMP, SOC 2
- Expert fine-grained authorization: ReBAC and ABAC with policy engines (OPA, Cedar, OpenFGA, or equivalent)
- Proven AI hands-on: Production integrations across major agent platforms and MCP
- Force multiplier: Experience setting technical direction across multiple teams or accounts, mentoring senior engineers
- Customer-facing authority: Credible from IDE to boardroom, trusted by CISOs and principal engineers
- High agency, founder’s mindset: Applying to building a function, not just an account
- Ability to travel, on occasion, up to 35%
- #LI-Remote
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.