← All open roles
Okta Workforce Identity Architect
Lead Okta Workforce Identity architecture and implementation for mid-market and enterprise clients. You'll own tenant design, federation strategy, lifecycle automation, and integrations with HRIS, AD, and the full SaaS application catalog.
What you'll do
- Design Okta tenant topology including Universal Directory, group strategies, and routing rules
- Architect federation with SAML, OIDC, and SCIM for B2B and internal applications
- Build lifecycle automation using Okta Workflows and / or Okta Identity Governance
- Design and implement MFA policies including Okta Verify, FIDO2, and risk-based authentication
- Integrate with HR systems (Workday, SuccessFactors, UKG) as sources of truth
- Lead AD to Okta migrations and coexistence architectures
- Document designs, provide technical enablement to client teams, and support post-go-live stabilization
What we need from you
- 6+ years identity and access management experience with at least 3 years hands-on Okta
- Okta Certified Consultant or Okta Certified Professional (current)
- Deep knowledge of SAML, OIDC, SCIM, and OAuth 2.0 flows
- Experience with HR-driven lifecycle and at least two major HRIS integrations
- Comfortable leading technical workshops with client architects and application owners
- US-based with unrestricted work authorization
Bonus, not required
- Okta Certified Administrator AND Consultant
- Okta Identity Governance (OIG) implementation experience
- Okta Workflows advanced authoring (custom connectors, complex branching)
- Prior work on Okta CIAM or B2B integrations
What you'll get
Competitive base plus utilization and performance bonuses. Okta certifications paid in full, Oktane and Identiverse sponsored.