Please mention DailyRemote when applying
The Staff Engineer L6 – IAM & Okta will lead the design, implementation, and modernization of Identity and Access Management (IAM) solutions across enterprise platforms, driving innovation in identity security, authentication, authorization, and access governance. This position serves as a technical leader responsible for architecting scalable and secure identity solutions using Okta and related technologies while ensuring engineering excellence, operational resilience, and compliance with enterprise security standards.
Design, build, and maintain enterprise Identity and Access Management (IAM) solutions using Okta and related identity technologies.
Architect and implement Single Sign-On (SSO), Multi-Factor Authentication (MFA), Adaptive Authentication, Lifecycle Management, and Identity Governance solutions.
Research, evaluate, and implement emerging IAM technologies, cloud identity platforms, and Zero Trust security frameworks.
Design scalable identity architectures supporting hybrid cloud, SaaS, and on-premises applications.
Document technical designs, implementation plans, security architecture, and operational procedures.
Develop and maintain integrations using SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), SCIM, LDAP, and REST APIs.
Build and maintain custom Okta workflows, automation, and provisioning solutions using Okta Workflows, APIs, and scripting.
Collaborate with security, infrastructure, cloud, DevOps, and application teams to integrate identity services across enterprise environments.
Drive code reviews, architecture reviews, and security assessments to ensure high-quality IAM implementations.
Implement Infrastructure as Code (IaC) and CI/CD pipelines for IAM deployments using Terraform, GitHub Actions, Azure DevOps, or Jenkins.
Troubleshoot complex authentication, authorization, federation, provisioning, and identity synchronization issues.
Perform root cause analysis for identity-related production incidents and implement preventive measures.
Monitor IAM platform health, performance, availability, and security posture.
Provide technical leadership and mentorship to engineers while establishing IAM engineering best practices.
Communicate effectively with business stakeholders, security architects, compliance teams, and executive leadership.
Facilitate cross-functional collaboration to align identity initiatives with enterprise security strategies and business objectives.
Lead cloud identity transformation initiatives and enterprise IAM modernization programs.
Ensure compliance with security frameworks, regulatory standards, and organizational policies including SOX, HIPAA, PCI-DSS, GDPR, ISO 27001, and NIST.
Maintain compliance with organizational security policies, procedures, and mission while contributing to operational excellence.
On Call Policy: Participate in an on-call rotation to support critical IAM and authentication services, ensuring timely incident response and resolution in accordance with defined SLAs.
Minimum of 15 years of IT experience, including 8+ years of Identity and Access Management (IAM) experience.
Minimum of 5+ years of hands-on experience with Okta Workforce Identity Cloud in enterprise environments.
Strong expertise in Single Sign-On (SSO), Multi-Factor Authentication (MFA), Adaptive Authentication, Universal Directory, Lifecycle Management, and Identity Governance.
Extensive experience implementing authentication protocols including SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), SCIM, LDAP, Kerberos, and WS-Federation.
Strong programming and scripting experience using Java, Python, PowerShell, JavaScript, or Shell scripting.
Experience developing REST APIs and integrating enterprise applications with Okta.
Strong knowledge of Identity Governance and Administration (IGA), Privileged Access Management (PAM), and Role-Based Access Control (RBAC).
Experience integrating enterprise SaaS applications such as Microsoft 365, Salesforce, ServiceNow, Workday, AWS, Azure, and Google Workspace.
Hands-on experience with cloud platforms including AWS, Azure, and Google Cloud Platform (GCP).
Strong understanding of Zero Trust Architecture and modern identity security principles.
Experience implementing Infrastructure as Code using Terraform and automation frameworks.
Experience building CI/CD pipelines for IAM deployments.
Experience working with Active Directory, Azure AD (Microsoft Entra ID), LDAP, and hybrid identity environments.
Strong understanding of enterprise security concepts including PKI, certificates, cryptography, IAM security architecture, and access controls.
Experience with monitoring, logging, SIEM integration, and security event management.
Experience leading large-scale IAM implementations and enterprise identity transformation initiatives.
Strong troubleshooting and problem-solving skills in complex distributed enterprise environments.
Experience mentoring engineers and providing technical leadership across cross-functional teams.
Excellent verbal and written communication skills.
Strong project planning, stakeholder management, and technical documentation skills.
Extensive knowledge of enterprise security standards, industry best practices, and compliance frameworks.
Self-motivated with strong ownership, leadership, and collaborative problem-solving abilities.
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Software Engineering, or a related technical discipline.
Master's degree preferred.
Relevant certifications such as Okta Certified Professional, Okta Certified Administrator, Okta Certified Consultant, CISSP, CCSP, Microsoft Certified: Identity and Access Administrator, or equivalent certifications are highly preferred.
Sedentary work (i.e., sitting for extended periods of time).
Subject to standard office or remote working environmental conditions.
Travel for this position will typically be less than 10%, primarily for training, project meetings, or customer engagements.
This position is not eligible for immigration sponsorship (e.g. H-1B, TN, or E-3). Applicants must be authorized to work in the United States as a condition of employment. (This is only applicable for US-based positions)
If you don’t meet every qualification listed but are excited about our mission and the work described, we encourage you to apply. Inovalon is most interested in finding the best candidate for the job, and you may be just the right person for this or other roles.
By embracing inclusion, we enhance our work environment and drive business success. Inovalon strives to provide equal opportunities to the communities where we operate and to our clients and everyone whom we serve. We endeavor to create a culture of inclusion in which our associates feel empowered to bring their full, authentic selves to work and pursue their professional goals in an equitable setting. We understand that by fostering this type of culture, and welcoming different perspectives, we generate innovation and growth.
Inovalon is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirement.
To review the legal requirements, including all labor law posters, please visit this link
To review the California Consumer Privacy Statement: Disclosures for California Residents, please visit this link
Stop the endless job search. Our AI finds and applies to the best jobs for you.
Discover remote opportunities in Software Engineer
Answer easy questions
200,000+ jobs across 15+ categories
Get your best job matches
Only hand-screened, legit jobs
Find a remote job faster
No ads, scams, or junk
“ I was the first applicant for a remote marketing position that got listed on the company website the same day I applied. Had an interview within 48 hours!