← All open roles
Okta Workforce Identity Architect
Lead Okta Workforce Identity architecture and implementation for mid-market and enterprise clients. You'll own tenant design, federation strategy, lifecycle automation, and integrations with HRIS, AD, and the full SaaS application catalog.
What you'll do
- Design Okta tenant topology including Universal Directory, group strategies, and routing rules
- Architect federation with SAML, OIDC, and SCIM for B2B and internal applications
- Build lifecycle automation using Okta Workflows and / or Okta Identity Governance
- Design and implement MFA policies including Okta Verify, FIDO2, and risk-based authentication
- Integrate with HR systems (Workday, SuccessFactors, UKG) as sources of truth
- Lead AD to Okta migrations and coexistence architectures
- Document designs, provide technical enablement to client teams, and support post-go-live stabilization
What we need from you
- 6+ years identity and access management experience with at least 3 years hands-on Okta
- Okta Certified Consultant or Okta Certified Professional (current)
- Deep knowledge of SAML, OIDC, SCIM, and OAuth 2.0 flows
- Experience with HR-driven lifecycle and at least two major HRIS integrations
- Comfortable leading technical workshops with client architects and application owners
- US-based with unrestricted work authorization
Bonus, not required
- Okta Certified Administrator AND Consultant
- Okta Identity Governance (OIG) implementation experience
- Okta Workflows advanced authoring (custom connectors, complex branching)
- Prior work on Okta CIAM or B2B integrations
What you'll get
Competitive base plus utilization and performance bonuses. Full medical, dental, vision, 401(k) with match. Okta certifications paid in full, Oktane and Identiverse sponsored.