Senior IAM Administrator

About The Position

Requirements

• Experience: 5+ years of hands-on experience in Identity and Access Management engineering, with a minimum of 3 years dedicated to Okta administration and engineering.
• Okta Expertise: Deep, demonstrable expertise in Okta's core products, including Okta Workflows, Okta Lifecycle Management, and Okta Adaptive/Contextual MFA.
• Technical Protocols: Expert-level knowledge of authentication and authorization protocols (SAML, OAuth, OIDC, SCIM).
• Scripting: Proficiency in at least one scripting language (e.g., Python, PowerShell) for API interaction and automation.
• SaaS/Cloud Integration: Proven experience integrating Okta with critical enterprise SaaS applications like Google Workspace, Slack, and cloud platforms (AWS, Azure, or GCP).

Nice To Haves

• Okta Certified Administrator or Okta Certified Consultant certification.
• Familiarity with Privileged Access Management (PAM) concepts and systems.
• Experience with a secondary IDP (e.g., Azure AD/Entra ID).

Responsibilities

• Okta Platform Ownership: Administer, maintain, and optimize our Okta tenant, including Universal Directory, Single Sign-On (SSO), and Multi-Factor Authentication (MFA) policies.
• Lifecycle Management (LCM): Design, implement, and maintain advanced user provisioning and deprovisioning solutions (JIT, SCIM) across our entire application ecosystem (e.g., Google Workspace, Slack, etc).
• Automation with Workflows: Develop, test, and manage complex, resilient automation using Okta Workflows to streamline identity processes, orchestrate actions between systems, and enforce security policies.
• Authentication & Authorization: Configure and manage SSO integrations using industry-standard protocols such as SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC).
• Security Posture: Partner with the Security team to enhance and enforce a Zero Trust security model by implementing strong, adaptive authentication rules and least-privilege access across all applications.
• Access Reviews: Manage and automate access certification campaigns and audits to meet compliance requirements (e.g., SOC 2, ISO 27001).
• Troubleshooting: Serve as the Tier 3 escalation point for all complex IAM-related issues, providing expert diagnosis and resolution for identity, federation, and access problems.
• Scripting & API Integration: Utilize scripting languages (Python, PowerShell) and Okta's API to create custom integrations, manage system configurations, and further automate tasks that cannot be handled by built-in connectors or workflows.

Benefits

• Our in-office work policy is designed to keep you connected - with four days a week in the office and Fridays from home for those near one of our offices, plus team and company-wide events depending on location. Whether you’re coming in regularly or are part of our fully remote program, you’ll stay engaged with your work and teammates.
• In-office perks including backup child, elder, and/or pet care, plus a subsidized commuter benefit to support your regular commute
• Competitive salary based on experience
• 401k match plus great medical, dental, vision, life, and disability benefits
• Generous vacation policy and company-wide Chime Days, bonus company-wide paid days off
• 1% of your time off to support local community organizations of your choice
• Annual wellness stipend to use towards eligible wellness related expenses
• Up to 24 weeks of paid parental leave for birthing parents and 12 weeks of paid parental leave for non-birthing parents
• Access to Maven, a family planning tool, with $15k lifetime reimbursement for egg freezing, fertility treatments, adoption, and more.
• In-person and virtual events to connect with your fellow Chimers—think cooking classes, guided meditations, music festivals, mixology classes, paint nights, etc., and delicious snack boxes, too!
• A challenging and fulfilling opportunity to join one of the most experienced teams in FinTech and help millions unlock financial progress