← All open roles
Okta CIAM Engineer, Healthcare Client
Support a long-running healthcare client with their Okta Customer Identity (CIAM) platform. You'll engineer patient and provider sign-in experiences, integrate with EHR and patient portal applications, and help operationalize secure consent and progressive profiling flows under HIPAA scope.
What you'll do
- Build and maintain Okta Customer Identity tenant including sign-in widgets, hosted login, and branded experiences
- Implement progressive profiling, consent capture, and account recovery flows
- Integrate with patient portal applications, provider-facing apps, and clinical systems via OIDC and SAML
- Design MFA strategies balancing HIPAA requirements with patient accessibility
- Partner with the client's security team on incident response and threat detection using Okta ThreatInsight
- Work with application developers on token handling, refresh strategies, and session management
- Support audit and compliance evidence for HITRUST and HIPAA reviews
What we need from you
- 4+ years identity experience with at least 2 years in Okta CIAM (or comparable ForgeRock / Auth0 / Ping CIAM)
- Experience building customer-facing sign-in flows in regulated environments
- Understanding of HIPAA requirements as they apply to authentication and session management
- JavaScript proficiency for Okta Sign-In Widget customization
- Comfortable working onsite in Nashville 2 to 3 days per week
- US-based with unrestricted work authorization
Bonus, not required
- Prior healthcare or HITRUST experience
- Okta Certified Developer
- Familiarity with FHIR, Epic MyChart, or major EHR integration patterns
- Experience with identity proofing vendors (Experian, LexisNexis, ID.me)
What you'll get
Competitive base plus utilization and performance bonuses. Hybrid role includes travel stipend if relocating.