Okta Engineering Lead

Client: healthcare companyLocation: 100% Remote from anywhere in the USJob type: 6 month contractPay: $80 per hour W-2Job Summary:Okta Architecture & EngineeringServe as the SME for the full Okta suite, including:Identity Management (IM)Provisioning & DeprovisioningAccess Request PortalsAccess Attestation & CertificationsVerification & Validation workflowsPrivileged Access Management (PAM)Single Sign-On (SSO)Design and implement scalable identity workflows that align with security and compliance requirements.Configure and optimize Okta integrations across ~87 internal and customer-facing applications.SiteMinder to Okta MigrationLead migration of SSO integrations from Broadcom SiteMinder to Okta.Analyze existing SiteMinder configurations and replicate successful authentication and authorization workflows within Okta.Rebuild approximately 30+ federated customer connections currently managed through SiteMinder.Ensure minimal disruption to customers during authentication cutover.Customer-Facing Identity EngineeringPartner directly with customer technical teams to design and implement SSO integrations into hosted applications.Translate identity requirements between customer IAM tools and internal Okta configurations.Act as a trusted technical advisor when engaging leadership and cross-functional teams.Facilitate technical discussions around federation protocols (SAML, OIDC, OAuth), token exchanges, and trust configurations.Access Governance & AttestationDesign and implement structured access attestation workflows in Okta.Improve and automate manual attestation processes to ensure clarity for managers and approvers.Build certification campaigns based on application inventories and entitlement mappings.Ensure role-based access control (RBAC) and least-privilege principles are enforced.Workflow Development & AutomationCreate scalable identity lifecycle workflows supporting:Joiner/Mover/Leaver processesAutomated provisioning/deprovisioningFederated SSO onboarding for customersDevelop standardized processes to accelerate customer migrations from SiteMinder to Okta.Troubleshooting & OptimizationDiagnose and resolve authentication, federation, and entitlement issues.Improve identity architecture maturity across internal and customer-facing environments.Identify process inefficiencies and recommend automation opportunities.Required Qualifications5+ years of hands-on experience with Okta in enterprise environments.Deep experience implementing and supporting:SAML 2.0OAuth 2.0OpenID Connect (OIDC)Demonstrated experience migrating SSO solutions from legacy IAM platforms.Strong working knowledge of access governance and attestation design.Experience configuring lifecycle management, provisioning, and deprovisioning workflows.Ability to communicate complex IAM concepts to both technical and executive audiences.Experience managing federated identity integrations with external customers.Preferred QualificationsExperience with Broadcom SiteMinder (formerly CA SiteMinder).Familiarity with the broader Broadcom IAM suite.Experience in customer-hosted application environments with multi-tenant authentication models.Knowledge of security frameworks and compliance standards (SOC 2, ISO, HITRUST, etc.).Okta certification(s) preferred.