About the Role The Okta Support Engineer role is a challenging position that requires expertise in identity and access management (IAM), with a focus on Okta's Identity Cloud platform. This individual will have a proven ability to troubleshoot complex authentication issues, configure single sign-on (SSO) and multi-factor authentication (MFA), manage user lifecycle integrations, and enforce security policies. Key Responsibilities - Design, implement, and maintain Okta Universal Directory, SSO, MFA, and lifecycle management solutions. - Implement and manage identity lifecycle workflows (provisioning, de-provisioning, group rules, etc.). - Integrate Okta with software as a service (SaaS), on-premise, and custom applications via protocols such as SAML, OpenID Connect (OIDC), System for Cross-domain Identity Management (SCIM), or APIs. - Maintain and optimize Okta policies, including adaptive MFA, device trust, and conditional access. - Collaborate closely with security and compliance teams to align Okta configurations with organizational policies and industry best practices. - Automate user onboarding/offboarding and role-based access using tools like Workflows, Okta Hooks, or custom scripts. - Monitor and troubleshoot authentication issues, including incident response support. - Stay up-to-date with Okta product updates and IAM security trends. - Document configurations, processes, and procedures, and provide user training when needed. To be successful in this role, you will need: - A strong understanding of IAM concepts, including role-based access control (RBAC), attribute-based access control (ABAC), and least privilege principles. - Proficiency in writing scripts (PowerShell, Python, or similar) for automation. - Familiarity with security compliance frameworks (e.g., SOC 2, ISO). - Strong analytical, troubleshooting, and communication skills. - Fluent in English (written and spoken). While not required, the following qualifications would be beneficial: - Okta Certified Professional or Okta Certified Administrator certification. - Experience with integrations involving Azure AD, Active Directory, AWS IAM, or Google Workspace. - Exposure to Zero Trust security models and device trust policies. We offer a dynamic work environment and competitive compensation package.