17 Apr
|
None
|
Vancouver
Apply on Kit Job: kitjob.ca/job/2fxapp
This role is located in Vancouver and is a hybrid role.
We are looking for a IAM Engineer Okta for the IAM Team, focused on Okta Identity Governance (OIG) and Okta Workflows, you will build and run identity governance and automation at scale in a complex hub-and-spoke environment. You will implement birthright access and entitlements across multiple brands and Okta tenants while centralizing policy, controls, and workflow automation. You will partner with brand stakeholders and cross-functional teams to define access models, automate approvals and reviews, and deliver auditable outcomes.
This role is execution-forward. We need an engineer who can take direction, translate requirements into working Okta Workflows and OIG configurations, and deliver reliable automations with minimal supervision. Broader IAM engineering experience is a plus, but the core need is strong OIG and Okta Workflows delivery.
Okta certifications are highly desired, especially Okta Workflows, but we will prioritize demonstrated hands-on delivery in OIG and Workflows over credentials.
What you'll do:
● Build and operate Okta Identity Governance (OIG) and Okta Workflows across multiple brands and Okta tenants
● Implement access request flows in OIG, including policies, approvals, and routing aligned to role and entitlement models
● Build and maintain birthright access and entitlement bundles with brand owners, and keep them current as roles and applications change
● Develop advanced Okta Workflows automations for provisioning and deprovisioning, including disconnected applications using APIs
● Where Okta cannot complete automation end to end,
build workflows that trigger downstream actions such as Slack notifications and Jira ticket creation to drive manual provisioning and exception handling
● Implement reliable workflow patterns (error handling, retries, rate limits, pagination, alerting) and maintain operational logging and traceability
● Onboard applications to Okta and OIG via SCIM, APIs, connectors, and CSV where needed, prioritized by risk and impact
● Support SLAs, metrics, and Tier 3 support for complex access and governance process issues
What you’ll be working with:
● Okta Identity Governance (OIG), Okta Workflows, Okta Lifecycle Management
● Workflow-driven integrations with Slack, Jira, and similar tools for notifications, ticketing, and exception handling
Skills you need to be successful:
● Strong Okta Workflows experience building and operating workflow-driven automations, including API-based provisioning for disconnected applications
● Experience integrating Okta Workflows with downstream systems (for example Slack and Jira) to drive manual provisioning, exception handling, and operational follow-up when full automation is not possible
● Advanced Okta administration in multi-tenant environments (Org2Org, SAML, OIDC, SCIM)
● Strong understanding of identity data flows, attribute mastering concepts, and entitlement modeling across hub-and-spoke brands and tenants
● Ability to design approvals and logging that produce auditable outcomes and operational traceability
● Hands on IGA implementation and administration with robust proficiency in Okta Identity Governance (OIG)
● 3+ years IGA experience, with Okta Identity Governance (OIG) experience strongly preferred
● 5+ years in applicable IT or related roles
Apply on Kit Job: kitjob.ca/job/2fxapp
📌 IAM Engineer-Okta (Vancouver)
🏢 None
📍 Vancouver