Remote (Country)

GuidePoint Security is hiring an IAM Architect - Okta (Remote in the US)

About the Role

GuidePoint Security is hiring an IAM Architect to join our Access Management implementation team. This fully remote role requires deep expertise in Okta platform solutions, focusing on Okta Access Gateway, Okta Workflows, and API development. You will design and architect enterprise-grade Identity and Access Management solutions, ensuring secure authentication, authorization, and access governance across cloud and on-premises applications for large, complex enterprise environments.

What You'll Do

Design, deploy, configure, and manage complex Okta environments including Universal Directory, Lifecycle Management, Workflows, and API Access Management.
Architect and implement Okta Access Gateway solutions for header-based authentication and legacy application integration.
Design and manage user lifecycle governance including provisioning, deprovisioning, and access certification workflows.
Architect authentication policies, authorization rules, access workflows, and security controls for enterprise-scale deployments.
Implement and oversee Single Sign-On, Multi-Factor Authentication, and Adaptive Authentication across diverse application portfolios.
Ensure adherence to least-privilege and Zero-Trust principles for all user and application identities.
Lead implementation of modern IAM capabilities such as Just-in-Time access provisioning, Conditional Access, API access management, and passwordless authentication.
Design and build automated identity workflows using Okta Workflows for application onboarding, user access requests, and complex business processes.
Architect low-code/no-code automation solutions to streamline identity operations.
Lead technical architecture and design for large-scale, complex Okta implementations across global enterprises.
Design integration patterns between Okta and AD/LDAP, cloud directories, SIEM, SCIM provisioning, SAML/OIDC applications, and cloud services.
Design and implement complex Okta Workflows solutions including custom connectors, API integrations, and multi-step automation processes.
Develop custom integrations and automation using API development languages including Python, JavaScript/Node.js, PowerShell, and REST APIs.
Architect identity providers, service providers, federation protocols, and API gateways for complex enterprise requirements.
Design access governance policies, role-based access control, and attribute-based access control frameworks.
Architect directory synchronization, identity federation, and hybrid identity solutions for complex organizational structures.
Lead identity threat detection, anomaly monitoring, and security incident response architecture.
Create technical architecture documentation, solution designs, and implementation roadmaps for enterprise clients.
Lead technical architecture on very large and complex IAM transformation projects.
Provide both strategic and tactical oversight on either a single large client engagement or multiple smaller projects concurrently.
Provide technical guidance and mentorship to delivery team members.
Identify and mitigate technical and project risks, escalating issues when necessary.
Develop and refine standard operating procedures and templates to improve consistency and quality across engagements.

What We're Looking For

Bachelor's degree in Computer Science, Information Security, or related field — or equivalent work experience.
5–7+ years of experience in Identity and Access Management engineering or Consulting.
Extensive hands-on experience with Okta including Universal Directory, Lifecycle Management, Workflows, and API Access Management.
Proven experience designing and implementing Okta Access Gateway solutions.
Strong experience developing complex Okta Workflows including custom connectors and API integrations.
Proficiency in API development languages including Python, JavaScript/Node.js, and PowerShell.
Experience with REST API development and integration.
Proven track record leading technical architecture on large-scale, complex IAM projects for enterprise organizations.
Strong understanding of identity governance, SSO protocols, MFA, and access certification.
Experience with Windows/Linux server administration and Active Directory.
Deep knowledge of common security frameworks and access control principles.
Demonstrated ability to design and document complex technical architectures.

Nice to Have

5-7+ years of IT Professional services and consulting experience.
Experience with very large and complex enterprise IAM transformations.
Professional certifications such as Okta Certified Professional / Okta Certified Administrator / Okta Certified Consultant.
Professional certifications such as CISSP, CISM, Security+, CCSP, or similar.
Advanced experience with Okta Workflows including helper flows, error handling, and performance optimization.
Experience with additional API development languages such as Java, Go, or Ruby.
Experience with Microsoft Entra ID including Conditional Access and Identity Protection.
Working knowledge of Ping Identity solutions.
Exposure to modern IAM capabilities: Passwordless authentication, Decentralized identity and verifiable credentials, Identity threat detection and response, API security and OAuth 2.0 / OpenID Connect.
Experience with CI/CD pipelines and Infrastructure as Code.
Experience with containerization and orchestration.

Technical Stack

Okta, Okta Access Gateway, Okta Workflows, Universal Directory, API Access Management
Python, JavaScript, Node.js, PowerShell, REST APIs
SAML, OIDC, OAuth, Active Directory, LDAP, SIEM, SCIM
AWS, Azure, GCP

Team & Environment

You will be part of the Access Management team, partnering with other engineers and architects. Mentorship at all levels is foundational to our culture, and colleagues are knowledgeable, skilled, and experienced, seeking to collaborate and provide guidance at every opportunity.

Benefits & Compensation

Remote workforce primarily (U.S. based only).
Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans).
Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans.
12 corporate holidays and a Flexible Time Off program.
Healthy mobile phone and home internet allowance.
Eligibility for retirement plan.

Work Mode

This is a fully remote role open to candidates anywhere within the United States.

GuidePoint Security is an equal opportunity employer.

Required Skills

OktaOkta Access GatewayOkta WorkflowsUniversal DirectoryAPI Access ManagementPythonJavaScriptNode.jsPowerShellREST APIsIAM ArchitectureIdentity GovernanceSSOMFASecurity Protocols

Starting a business in Thailand?

Company registration done right

Foreign ownership rules, licenses, tax registration — Thai business setup has many moving parts. SVBL guides you through every step with full legal compliance.

Company registration & structure

Foreign ownership solutions

License & tax registration

BOI promotion eligibility

Start your business

100% foreign ownership possible

About company

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.

Visit website

Job Details

Category security

Posted a month ago