Senior IAM Engineer

<h3><strong>About the Role</strong></h3> <p>We are seeking a passionate and experienced Senior Identity and Access Management (IAM) Engineer to be the Okta subject matter expert (SME) and drive our identity security strategy.</p> <p>As a Senior IAM Engineer, you will be a key contributor responsible for the design, implementation, and maintenance of our enterprise Identity and Access Management (IAM) solutions, with a primary focus on the Okta platform. This role requires deep technical expertise, especially with Okta’s Advanced Lifecycle Management and Workflows capabilities, and a strong understanding of security and compliance in a modern SaaS environment (Google Workspace, Slack, AWS, etc.). You will work independently on complex projects and cross-functional business initiatives.</p> <p>The base salary offered for this role and level of experience will begin at $127,000 and up to $175,000. Full-time employees are also eligible for a bonus, competitive equity package, and benefits. The actual base salary offered may be higher, depending on your location, skills, qualifications, and experience.</p> <h3><strong>In this role you can expect to:</strong></h3> <p><strong>Okta and Identity Administration</strong></p> <ul> <li><strong>Okta Platform Ownership:</strong> Administer, maintain, and optimize our Okta tenant, including Universal Directory, Single Sign-On (SSO), and Multi-Factor Authentication (MFA) policies.</li> <li><strong>Lifecycle Management (LCM):</strong> Design, implement, and maintain advanced user provisioning and deprovisioning solutions (JIT, SCIM) across our entire application ecosystem (e.g., <strong>Google Workspace, Slack,</strong> etc).</li> <li><strong>Automation with Workflows</strong>: Develop, test, and manage complex, resilient automation using <strong>Okta Workflows</strong> to streamline identity processes, orchestrate actions between systems, and enforce security policies.</li> <li><strong>Authentication Authorization</strong>: Configure and manage SSO integrations using industry-standard protocols such as <strong>SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC)</strong>.</li> <li><strong>Experience with Infrastructure as Code</strong> (IaC) tools for managing configuration (e.g., Terraform)\</li> </ul> <p><strong>Security, Governance, and Compliance</strong></p> <ul> <li><strong>Security Posture:</strong> Partner with the Security team to enhance and enforce a <strong>Zero Trust</strong> security model by implementing strong, adaptive authentication rules and least-privilege access across all applications.</li> <li><strong>Access Reviews:</strong> Manage and automate access certification campaigns and audits to meet compliance requirements (e.g., SOC 2, ISO 27001).</li> <li><strong>Troubleshooting:</strong> Serve as the Tier 3 escalation point for all complex IAM-related issues, providing expert diagnosis and resolution for identity, federation, and access problems.</li> <li><strong>Scripting API Integration:</strong> Utilize scripting languages (Python, PowerShell) and <strong>Okta's API</strong> to create custom integrations, manage system configurations, and further automate tasks that cannot be handled by built-in connectors or workflows.</li> </ul> <h3><strong>To thrive in this role you have</strong></h3> <ul> <li><strong>Experience</strong>: 5+ years of hands-on experience in Identity and Access Management engineering, with a minimum of <strong>3 years dedicated to Okta administration and engineering</strong>.</li> <li><strong>Okta Expertise</strong>: Deep, demonstrable expertise in Okta's core products, including <strong>Okta Workflows, Okta Lifecycle Management, and Okta Adaptive/Contextual MFA</strong>.</li> <li><strong>Technical Protocols</strong>: Expert-level knowledge of authentication and authorization protocols (<strong>SAML, OAuth, OIDC, SCIM</strong>).</li> <li><strong>Scripting</strong>: Proficiency in at least one scripting language (e.g., <strong>Python, PowerShell</strong>) for ... (truncated, view full listing at source)