IAM Architect - Okta (Remote in the US)

📋 Description

• • GuidePoint Security is seeking a highly skilled and experienced Access Management Architect with deep expertise in Okta to join our growing implementation team. This is a fully remote, full-time position based in the US, offering the opportunity to work on cutting-edge Identity and Access Management (IAM) solutions for some of the nation's largest and most complex organizations.
• • As an IAM Architect, you will be instrumental in designing, architecting, and implementing enterprise-grade IAM solutions, with a strong emphasis on the Okta platform. Your primary focus will be ensuring secure authentication, authorization, and access governance across both cloud and on-premises applications, adhering to best practices and Zero-Trust principles.
• • You will lead technical design efforts, collaborating closely with security, infrastructure, DevOps, and application teams to deliver robust and scalable IAM architectures. This role demands a proactive approach to problem-solving and a commitment to driving innovation in identity management.
• • Key responsibilities include the design, deployment, configuration, and management of complex Okta environments. This encompasses a wide range of Okta functionalities such as Universal Directory, Lifecycle Management, Okta Workflows, and API Access Management, ensuring seamless integration and operation.
• • A significant part of your role will involve architecting and implementing Okta Access Gateway (OAG) solutions. This is crucial for integrating legacy applications and enabling secure header-based authentication, extending Okta's reach to diverse application portfolios.
• • You will be responsible for designing and managing user lifecycle governance processes, including automated provisioning and deprovisioning, as well as implementing access certification workflows to maintain compliance and security posture.
• • Architecting robust authentication policies, granular authorization rules, dynamic access workflows, and comprehensive security controls will be central to your responsibilities, ensuring enterprise-scale deployments are secure and manageable.
• • The implementation and oversight of Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Adaptive Authentication across a wide array of applications will be a core function, enhancing user experience and security.
• • You will champion the adoption of modern IAM capabilities, including Just-in-Time (JIT) access provisioning, conditional and risk-based authentication, and advanced API access management using OAuth/OIDC flows.
• • Designing and building automated identity workflows using Okta Workflows is a key requirement. This includes developing custom connectors, integrating with APIs, and orchestrating complex business processes to streamline identity operations and reduce manual effort.
• • You will architect low-code/no-code automation solutions, leveraging Okta Workflows to enhance efficiency and agility in identity management operations.
• • Leading the technical architecture and design for large-scale, complex Okta implementations across global enterprises will be a primary focus. This requires a strategic vision and the ability to translate business requirements into technical solutions.
• • Designing intricate integration patterns between Okta and various systems, including AD/LDAP, cloud directories, SIEM solutions, SCIM provisioning, SAML/OIDC applications, and major cloud platforms (AWS, Azure, GCP), is essential for a cohesive IAM ecosystem.
• • Developing custom integrations and automation using API development languages such as Python, JavaScript/Node.js, PowerShell, and working extensively with REST APIs will be a critical skill set.
• • You will architect identity providers (IdP), service providers (SP), federation protocols, and API gateways to meet complex enterprise requirements, ensuring interoperability and security.
• • Designing comprehensive access governance policies, implementing role-based access control (RBAC), and attribute-based access control (ABAC) frameworks will be integral to maintaining secure access.
• • Architecting directory synchronization, identity federation, and hybrid identity solutions for complex organizational structures will be a key responsibility, ensuring a unified identity experience.
• • Leading the architecture for identity threat detection, anomaly monitoring, and security incident response will be crucial in protecting the organization's digital assets.
• • Creating detailed technical architecture documentation, solution designs, and implementation roadmaps for enterprise clients will be a significant part of the role, ensuring clear communication and project success.
• • You will provide both strategic and tactical oversight on large client engagements or multiple smaller projects concurrently, managing technical direction and ensuring project goals are met.
• • Mentoring and guiding delivery team members, fostering a collaborative and knowledge-sharing environment, is a key aspect of this leadership role.
• • Identifying and mitigating technical and project risks, and escalating issues proactively, will be essential for smooth project execution.
• • Developing and refining standard operating procedures (SOPs) and templates will contribute to consistency and quality across all engagements.
• • This role offers the opportunity to work with leading vendors, access continuous training, and be part of a culture that values high-level communication, collaboration, and mentorship. We are committed to work-life balance and offer unlimited PTO, along with opportunities for professional growth and career development within the security domain.