Okta IAM Engineer

Our firm is partnering with a large, enterprise-scale organization in the retail and consumer services industry to support a major evolution of its identity, access, and analytics security platform.

We are seeking a Senior Identity and Access Management (IAM) Architect to lead identity strategy and implementation across Google Cloud and Microsoft ecosystems, with a strong focus on analytics platforms and federated identity.

This is a highly visible role supporting a complex, multi-cloud environment used by thousands of users and services.

The ideal candidate brings deep hands-on expertise, architectural leadership, and the ability to translate security strategy into scalable, production-ready solutions., The Senior IAM Architect will design and implement enterprise identity and access management capabilities across Google Cloud Platform (GCP) and Microsoft environments. This role is responsible for federation, authorization, governance, and secure analytics access for platforms including BigQuery, Looker, Google Workspace, Microsoft Entra ID, and Power BI.

You will work closely with security, cloud, platform, and data engineering teams to ensure identity is consistently enforced across workforce and workload use cases, while enabling secure access to data at scale., * Lead the design and implementation of Google Workforce Identity Federation and Workload Identity Federation integrated with Microsoft Entra ID

• Architect secure, federated identity integration between BigQuery and Microsoft Power BI
• Design and enforce fine-grained access controls, including dataset-, row-level, and column-level security
• Secure Looker and Google Workspace using enterprise SSO, lifecycle management, and least-privilege access
• Define and standardize IAM governance models across users, applications, and service accounts
• Reduce and eliminate long-lived credentials by implementing modern identity federation patterns
• Partner with security, cloud, and data engineering teams to review, validate, and improve identity architecture
• Provide technical leadership and guidance to produce implementation-ready designs

• Senior-level experience designing and implementing enterprise Identity and Access Management solutions
• Strong expertise with Google Cloud IAM, including predefined and custom roles, conditional access, and least-privilege design
• Hands-on experience implementing Google Workforce Identity Federation for workforce authentication
• Hands-on experience implementing Google Workload Identity Federation for applications, CI/CD pipelines, and service authentication
• Advanced experience with Microsoft Entra ID (Azure Active Directory), including federation and Conditional Access policies
• Proven experience integrating Google BigQuery with Microsoft Power BI using secure, federated identity patterns
• Experience securing analytics platforms, including BigQuery, Looker, and Power BI, with a detail-oriented approach to access control
• Experience implementing row-level and column-level security in BigQuery
• Experience securing Looker using enterprise identity providers and federated SSO
• Strong background in identity federation, identity governance, and attribute-driven access models
• Deep working knowledge of identity and access protocols, including SAML 2.0, OAuth 2.0, OpenID Connect, and token exchange mechanisms
• Demonstrated experience designing cross-cloud identity architectures in large, complex enterprise environments
• Ability to translate security strategy into operational controls and scalable technical solutions, * Experience with Google Workspace identity governance, lifecycle management, and SSO integration
• Experience implementing or enhancing identity governance processes such as access reviews, privileged access, and break-glass procedures
• Familiarity with dynamic group-based access and attribute-based authorization models
• Experience modernizing legacy IAM implementations and reducing reliance on service account keys
• Background supporting large-scale, data-driven enterprise organizations

Dahl Consulting is proud to offer a comprehensive benefits package to eligible employees that will allow you to choose the best coverage to meet your family's needs. For details, please review the DAHL Benefits Summary: https://www.dahlconsulting.com/benefits-w2fta/ .