Senior IAM Engineer

About the Role

We are seeking a passionate and experienced Senior Identity and Access Management (IAM) Engineer to be the Okta subject matter expert (SME) and drive our identity security strategy.

As a Senior IAM Engineer, you will be a key contributor responsible for the design, implementation, and maintenance of our enterprise Identity and Access Management (IAM) solutions, with a primary focus on the Okta platform. This role requires deep technical expertise, especially with Okta’s Advanced Lifecycle Management and Workflows capabilities, and a strong understanding of security and compliance in a modern SaaS environment (Google Workspace, Slack, AWS, etc.). You will work independently on complex projects and cross-functional business initiatives.

The base salary offered for this role and level of experience will begin at $127,000 and up to $175,000. Full-time employees are also eligible for a bonus, competitive equity package, and benefits. The actual base salary offered may be higher, depending on your location, skills, qualifications, and experience.

In this role you can expect to:

Okta and Identity Administration

• Okta Platform Ownership: Administer, maintain, and optimize our Okta tenant, including Universal Directory, Single Sign-On (SSO), and Multi-Factor Authentication (MFA) policies.
• Lifecycle Management (LCM): Design, implement, and maintain advanced user provisioning and deprovisioning solutions (JIT, SCIM) across our entire application ecosystem (e.g., Google Workspace, Slack, etc).
• Automation with Workflows: Develop, test, and manage complex, resilient automation using Okta Workflows to streamline identity processes, orchestrate actions between systems, and enforce security policies.
• Authentication & Authorization: Configure and manage SSO integrations using industry-standard protocols such as SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC).
• Experience with Infrastructure as Code (IaC) tools for managing configuration (e.g., Terraform)\

Security, Governance, and Compliance

• Security Posture: Partner with the Security team to enhance and enforce a Zero Trust security model by implementing strong, adaptive authentication rules and least-privilege access across all applications.
• Access Reviews: Manage and automate access certification campaigns and audits to meet compliance requirements (e.g., SOC 2, ISO 27001).
• Troubleshooting: Serve as the Tier 3 escalation point for all complex IAM-related issues, providing expert diagnosis and resolution for identity, federation, and access problems.
• Scripting & API Integration: Utilize scripting languages (Python, PowerShell) and Okta's API to create custom integrations, manage system configurations, and further automate tasks that cannot be handled by built-in connectors or workflows.

To thrive in this role you have

• Experience: 5+ years of hands-on experience in Identity and Access Management engineering, with a minimum of 3 years dedicated to Okta administration and engineering.
• Okta Expertise: Deep, demonstrable expertise in Okta's core products, including Okta Workflows, Okta Lifecycle Management, and Okta Adaptive/Contextual MFA.
• Technical Protocols: Expert-level knowledge of authentication and authorization protocols (SAML, OAuth, OIDC, SCIM).
• Scripting: Proficiency in at least one scripting language (e.g., Python, PowerShell) for API interaction and automation.
• SaaS/Cloud Integration: Proven experience integrating Okta with critical enterprise SaaS applications like Google Workspace, Slack, and cloud platforms (AWS, Azure, or GCP).

Nice to Have