Okta IAM Engineer

OpenKyber LLC

5 days ago

Role details

Contract type

Permanent contract

Employment type

Full-time (> 32 hours)

Working hours

Regular working hours

Languages

English

Experience level

Intermediate

Job location

Tech stack

Java

Microsoft Active Directory

Cloud Computing

CompTIA Security+

Databases

DevOps

Identity and Access Management

Interoperability

OAuth

OpenID

Powershell

Role-Based Access Control

Azure

Security Assertion Markup Language (SAML)

User Provisioning Software

Scripting (Bash/Python/Go/Ruby)

Okta

Cyberark

System Availability

SailPoint

REST

BeanShell

Job description

IGA Sailpoint and CyberArk Operations Engineer/ SME Location: Remote Applicants with dual citizenship cannot be considered.

An active Secret or Top Secret security clearance is required or highly preferred.
CompTIA Security+ and CISSP (or comparable certifications) are required or highly preferred.

Role Description: An Identity Governance and Administration (IGA) Operations Engineer designs, implements, and maintains identity lifecycle management platforms (e.g., SailPoint) to automate user provisioning, access requests, and compliance certifications.

They ensure secure access, manage Active Directory, and troubleshoot production issues to align with security policies.

Platform Operations & Maintenance: Monitor and maintain IGA platform to ensure high availability, performance, and security.

Identity Lifecycle Management: Automate joiner, mover, and leaver (JML) processes to manage user provisioning/deprovisioning across enterprise systems.

Access Governance: Define Role-Based Access Control (RBAC) models and conduct access certification campaigns to ensure compliance with policies

Integration & Development: Develop connectors for applications, databases, and directories to enhance system interoperability.

Troubleshooting & Support: Investigate and resolve production incidents related to identity services.

Documentation & Standards: Create technical documentation, including architectural diagrams, design specifications, and test cases.

Requirements

Required Skills & Qualifications Technical Expertise: Proficiency in IAM tools (SailPoint), directory services (Active Directory, Azure AD), and scripting languages (e.g., PowerShell, BeanShell, REST APIs).

Security Knowledge: Understanding of security protocols (SAML, OIDC, OAuth2) and regulatory compliance requirements.

Experience: Proven experience in IAM/IGA implementation, DevOps principles, and CI/CD pipelines.

Soft Skills: Strong collaboration skills to work with security, IT, and business stakeholders.

(No dual citizens)

Possession of Security+ or equivalent

At least 3-5 years of experience designing and implementing IAM solutions

SailPoint IdentityIQ Identity Access Management (IAM)

Experience with the Java programming language.

At least 3 years of experience implementing enterprise identity governance & administration (IGA) solutions, such as: SailPoint Identity IQ (IIQ) or IdentityNow Saviynt Security Manager (SSM) or Enterprise Identity Cloud (EIC) IBM Security Verify Governance