Senior IAM Engineer (Okta Identity Governance and SOX Specialist)
Position Type: Contract / Contract-to-Hire
Location: Remote / Hybrid
Area of Focus: Okta Access Certifications, SOX Control Design, and IGA Modernization
Position Overview
We are seeking a highly specialized, precision-driven Senior IAM Engineer with definitive expertise in Okta Identity Governance (OIG) and a proven track record of designing Sarbanes-Oxley (SOX) compliance controls. This role is tailored for a subject matter expert who can autonomously architect, configure, and transition manual, legacy User Access Review (UAR) processes into a fully automated, audit-ready Okta environment.
The successful candidate must possess deep technical mastery of Okta Access Certifications alongside the compliance acumen required to design airtight internal controls, manage automated remediation, and secure administrative groups.
Key Responsibilities
- Architect, implement, and optimize Sarbanes-Oxley (SOX) compliant internal identity controls and compliance frameworks specifically mapped to the Okta Identity Governance platform.
- Analyze complex manual UAR documentation, spreadsheets, and timelines to execute a complete legacy process transformation, converting legacy Active Directory (AD) group auditing into a modernized automation framework.
- Deliver precision OIG configuration by building high-precision Okta Access Certifications and Access Requests, establishing exact multi-stage approval routing, escalation paths, and logic for orphaned groups.
- Evaluate and harden internal Okta security controls to maintain strict identity hygiene, with a specific focus on automated lifecycle enforcement for deactivated users within administrative or privileged groups.
- Configure and validate end-to-end automated remediation workflows, ensuring that any “Revoke Access” action within Okta instantly and flawlessly triggers membership removal in the on-premises Active Directory.
- Lead a targeted Proof of Value (POV) pilot execution utilizing a controlled subset of reviews to validate system logs, notification layouts, and end-user interfaces prior to global deployment.
- Establish immutable system logging, audit trails, and reporting within Okta, producing final configuration blueprints that serve as definitive proof for external and internal SOX compliance handovers.
- Serve as the core bridge between IT, Security, and Compliance departments to facilitate stakeholder change management, driving the cultural and process shift required to adopt automated governance workflows.
Required Qualifications
- Extensive hands-on mastery configuring Okta Identity Governance (OIG), specifically Access Certifications, Access Requests, and lifecycle workflows, with Okta Certified Consultant or Administrator designations heavily preferred.
- Demonstrated expertise in SOX compliance, including a strong background designing, implementing, or auditing IAM controls under Sarbanes-Oxley (SOX) or similar strict regulatory frameworks such as SOC 2 or HIPAA.
- Deep proficiency with core directory infrastructure, including Active Directory (AD) group architecture, organizational units, and hybrid synchronization mechanisms with Okta.
- Proven experience establishing closed-loop, automated de-provisioning architectures for automated remediation that eliminate manual IT intervention upon access revocation.
- Exceptional consultative and professional communication skills, with the ability to confidently present technical compliance structures to auditors and corporate stakeholders alike.