← All open roles
Okta CIAM Engineer, Healthcare Client
Support a long-running healthcare client with their Okta Customer Identity (CIAM) platform. You'll engineer patient and provider sign-in experiences, integrate with EHR and patient portal applications, and help operationalize secure consent and progressive profiling flows under HIPAA scope.
What you'll do
- Build and maintain Okta Customer Identity tenant including sign-in widgets, hosted login, and branded experiences
- Implement progressive profiling, consent capture, and account recovery flows
- Integrate with patient portal applications, provider-facing apps, and clinical systems via OIDC and SAML
- Design MFA strategies balancing HIPAA requirements with patient accessibility
- Partner with the client's security team on incident response and threat detection using Okta ThreatInsight
- Work with application developers on token handling, refresh strategies, and session management
- Support audit and compliance evidence for HITRUST and HIPAA reviews
What we need from you
- 4+ years identity experience with at least 2 years in Okta CIAM (or comparable ForgeRock / Auth0 / Ping CIAM)
- Experience building customer-facing sign-in flows in regulated environments
- Understanding of HIPAA requirements as they apply to authentication and session management
- JavaScript proficiency for Okta Sign-In Widget customization
- Comfortable working onsite in Nashville 2 to 3 days per week
- US-based with unrestricted work authorization
Bonus, not required
- Prior healthcare or HITRUST experience
- Okta Certified Developer
- Familiarity with FHIR, Epic MyChart, or major EHR integration patterns
- Experience with identity proofing vendors (Experian, LexisNexis, ID.me)
What you'll get
Competitive base plus utilization and performance bonuses. Full medical, dental, vision, 401(k) with match. Hybrid role includes travel stipend if relocating.