Principal Classified Systems Architect, Okta Federal

<div class="content-intro"><p><span style="color: #000000;"><strong>Get to know Okta<br><br></strong></span>Okta is The World’s Identity Company. We free everyone to safely use any technology, anywhere, on any device or app. Our flexible and neutral products, Okta Platform and Auth0 Platform, provide secure access, authentication, and automation, placing identity at the core of business security and growth.<br><br>At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences. <br><br>Join our team! We’re building a world where Identity belongs to you.</p></div><div class="SingleJob-content"> <p>Okta Federal, Inc. is seeking a seasoned <strong>Classified Systems Architect</strong> to join our Technology, Data Intelligence (TDI) Team. This team is tasked with building and maintaining a robust, compliant, and scalable "High Side" developer platform that empowers our product teams to deliver Okta’s world-class Identity capabilities to the U.S. Government’s most sensitive missions.</p> <p>As part of the TDI Team, this individual will serve as the technical authority for the design, development, and evolution of our development platform for US Classified environments. This position’s mandate is to define the architectural vision for our air-gapped infrastructure, select and validate hardened tooling (e.g., Big Bang, Iron Bank, etc), and bridge the gap between strict DoD compliance requirements and modern DevOps velocity.</p> <p>You will partner closely with stakeholders across TDI, Product Engineering, Vulnerability Management, and Security Compliance to ensure that every component of the system—from the Kubernetes substrate to the application layer—is implemented as planned, secure by design, and optimized for user experience. Strong preference will be given to those with a bias for action and the ability to solve complex "air gap" challenges outside the box.</p> <p><strong>What you’ll be doing</strong></p> <ul> <li><strong>Act</strong> as the central point for defining and evolving the architecture of Okta Federal’s SIPR/JWICS environments, ensuring alignment with DoD reference designs while tailoring them to Okta’s specific product needs.</li> <li><strong>Design</strong> resilient, scalable infrastructure-as-code (IaC) and blueprints for air-gapped environments, solving unique challenges related to disconnected operations, cross-domain solutions (CDS), and "sneaker-net" patch management.</li> <li><strong>Collaborate</strong> closely with Product Engineering (ORD), Site Reliability Engineers (SREs), Business Application teams, Collaboration Engineering teams, and Security teams to translate complex compliance controls (DISA STIGs, RMF) into automated technical implementations that minimize friction for developers.</li> <li><strong>Guide</strong> the selection and integration of "High Side" tools and technologies, prioritizing compliant, maintainable, and low-vulnerability solutions (e.g., utilizing Iron Bank hardened containers) that deliver a superior user experience for internal engineering teams.</li> <li><strong>Review</strong> and approve architectural changes and major system upgrades across the classified boundary, ensuring that operational drift does not introduce security risks or break compliance postures.</li> <li><strong>Measure</strong> success through a combination of quantitative metrics (platform uptime, ATO velocity, patch latency, vulnerability resolution time) and qualitative feedback (developer satisfaction, ease of deployment).</li> <li><strong>Establish</strong> the technical strategy for "High Side" observability and continuous monitoring, designing architectures that satisfy strict auditing requirements without sacrificing operational visibility.</li> </ul> <p><strong>What you’ll bring to the role</strong></p> <ul> <li><strong>Active Top Secret ( ... (truncated, view full listing at source)