Okta Engineering Lead

• Client: healthcare company
• Location: 100%Remote from anywhere in the US
• Job type:6 month contract
• Pay:$80 per hour W-2

Job Summary:

Okta Architecture & Engineering

• Serve as the SME for the full Okta suite, including:
  • Identity Management (IM)
  • Provisioning & Deprovisioning
  • Access Request Portals
  • Access Attestation & Certifications
  • Verification & Validation workflows
  • Privileged Access Management (PAM)
  • Single Sign-On (SSO)
• Design and implement scalable identity workflows that align with security and compliance requirements.
• Configure and optimize Okta integrations across ~87 internal and customer-facing applications.

SiteMinder to Okta Migration

• Lead migration of SSO integrations from Broadcom SiteMinder to Okta.
• Analyze existing SiteMinder configurations and replicate successful authentication and authorization workflows within Okta.
• Rebuild approximately 30+ federated customer connections currently managed through SiteMinder.
• Ensure minimal disruption to customers during authentication cutover.

Customer-Facing Identity Engineering

• Partner directly with customer technical teams to design and implement SSO integrations into hosted applications.
• Translate identity requirements between customer IAM tools and internal Okta configurations.
• Act as a trusted technical advisor when engaging leadership and cross-functional teams.
• Facilitate technical discussions around federation protocols (SAML, OIDC, OAuth), token exchanges, and trust configurations.

Access Governance & Attestation

• Design and implement structured access attestation workflows in Okta.
• Improve and automate manual attestation processes to ensure clarity for managers and approvers.
• Build certification campaigns based on application inventories and entitlement mappings.
• Ensure role-based access control (RBAC) and least-privilege principles are enforced.

Workflow Development & Automation

• Create scalable identity lifecycle workflows supporting:
  • Joiner/Mover/Leaver processes
  • Automated provisioning/deprovisioning
  • Federated SSO onboarding for customers
• Develop standardized processes to accelerate customer migrations from SiteMinder to Okta.

Troubleshooting & Optimization

• Diagnose and resolve authentication, federation, and entitlement issues.
• Improve identity architecture maturity across internal and customer-facing environments.
• Identify process inefficiencies and recommend automation opportunities.

Required Qualifications

• 5+ years of hands-on experience with Okta in enterprise environments.
• Deep experience implementing and supporting:
  • SAML 2.0
  • OAuth 2.0
  • OpenID Connect (OIDC)
• Demonstrated experience migrating SSO solutions from legacy IAM platforms.
• Strong working knowledge of access governance and attestation design.
• Experience configuring lifecycle management, provisioning, and deprovisioning workflows.
• Ability to communicate complex IAM concepts to both technical and executive audiences.
• Experience managing federated identity integrations with external customers.

Preferred Qualifications

• Experience with Broadcom SiteMinder (formerly CA SiteMinder).
• Familiarity with the broader Broadcom IAM suite.
• Experience in customer-hosted application environments with multi-tenant authentication models.
• Knowledge of security frameworks and compliance standards (SOC 2, ISO, HITRUST, etc.).
• Okta certification(s) preferred.