diff --git a/.bacon.yml b/.bacon.yml
deleted file mode 100644
index b7af606..0000000
--- a/.bacon.yml
+++ /dev/null
@@ -1,9 +0,0 @@
-test_suites:
-  - name: sast_scan
-    script_path: /root/okta/okta-auth-swift/scripts
-    script_name: sast_scan
-    sort_order: '1'
-    timeout: '200'
-    criteria: MERGE
-    queue_name: small
-    trigger: AUTO
diff --git a/.circleci/config.yml b/.circleci/config.yml
new file mode 100644
index 0000000..ee3454b
--- /dev/null
+++ b/.circleci/config.yml
@@ -0,0 +1,79 @@
+version: 2.1
+
+orbs:
+  general-platform-helpers: okta/general-platform-helpers@1.8
+
+executors:
+  apple-ci-arm-medium:
+    macos:
+      xcode: 14.3.1
+    resource_class: macos.m1.medium.gen1
+
+jobs:
+  setup:
+    executor: apple-ci-arm-medium
+    steps:
+      - checkout
+      - persist_to_workspace:
+          root: ~/project
+          paths:
+            - .
+
+  snyk-scan:
+    executor: apple-ci-arm-medium
+    steps:
+      - attach_workspace:
+          at: ~/project
+      - run:
+          name: Install rosetta # Needed for snyk to work on M1 machines.
+          command: softwareupdate --install-rosetta --agree-to-license
+      - run:
+          name: run swift package show dependencies
+          command: swift package show-dependencies
+      - general-platform-helpers/step-load-dependencies
+      - general-platform-helpers/step-run-snyk-monitor:
+          run-on-non-main: true
+          scan-all-projects: true
+          skip-unresolved: false
+          os: macos
+
+workflows:
+  semgrep:
+    jobs:
+      - general-platform-helpers/job-semgrep-prepare:
+          name: semgrep-prepare
+          #filters:
+          #  branches:
+          #    only:
+          #      - master
+      - general-platform-helpers/job-semgrep-scan:
+          name: semgrep-scan
+          #filters:
+          #  branches:
+          #    only:
+          #      - master
+          requires:
+            - semgrep-prepare
+  security-scan:
+    jobs:
+      - setup
+          #filters:
+          #  branches:
+          #    only:
+          #      - master
+      - general-platform-helpers/job-snyk-prepare:
+          name: prepare-snyk
+          #filters:
+          #  branches:
+          #    only:
+          #      - master
+          requires:
+            - setup
+      - snyk-scan:
+          name: execute-snyk
+          #filters:
+          #  branches:
+          #    only:
+          #      - master
+          requires:
+            - prepare-snyk
diff --git a/scripts/sast_scan.sh b/scripts/sast_scan.sh
deleted file mode 100644
index e065e9e..0000000
--- a/scripts/sast_scan.sh
+++ /dev/null
@@ -1,10 +0,0 @@
-#!/bin/bash
-
-cd ${OKTA_HOME}/${REPO}
-
-if ! sast_scan;
-then
-  exit ${FAILURE}
-fi
-
-exit ${SUCCESS}