JB058847 - OKTA Engineer
USM
•$80K — $130K *
Petaluma, CA 94954 In-Person
1 month ago
By clicking Apply, I agree with Ladders'
Job Description
Looking for an experienced OKTA Engineer with a strong background in Active Directory (AD) to support our Identity and Access Management (IAM) infrastructure. The ideal candidate will be responsible for managing OKTA SSO, MFA, user lifecycle management, and integrating identity solutions with Active Directory and other enterprise applications.
Key Responsibilities:
OKTA Administration & Identity Management
• Manage and configure OKTA Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Adaptive Authentication.
• Implement OKTA Universal Directory and configure group policies for access control and user provisioning.
• Troubleshoot SSO, MFA, SCIM, and authentication issues across enterprise applications.
• Develop and maintain identity lifecycle automation (provisioning, deprovisioning, role assignments).
• Work with SCIM and Just-in-Time (JIT) provisioning for seamless user management.
Active Directory (AD) & Integration
• Administer and manage Active Directory users, groups, GPOs, and authentication policies.
• Configure and maintain AD Federation Services (ADFS), Azure AD Connect, and LDAP integrations.
• Ensure seamless synchronization between OKTA and Active Directory.
• Implement RBAC (Role-Based Access Control) and group management policies.
Cloud & Automation
• Cloud experience and knowledge of AWS
• Automate IAM tasks using PowerShell, Python, or APIs.
• Improve user experience by optimizing authentication flows and reducing friction.
Required Qualifications:
• 10+ years of experience in IT with excellent communication skills.
• 4+ years of experience in OKTA administration and identity management.
• 4+ years of experience with Active Directory administration and integration.
• Hands-on experience with SSO, MFA, SAML, OAuth, and OpenID Connect (OIDC).
• Strong knowledge of LDAP, ADFS, and Azure AD synchronization.
• Experience with PowerShell, Python for automation.
• Familiarity with SCIM, JIT provisioning, and identity lifecycle management.
Preferred Qualifications:
• OKTA Certified Administrator or Consultant.
• Experience with Azure AD, AWS.