IAM Implementer / Architect

We are seeking a seasoned IAM Implementer / Architect to join a high-impact security and identity initiative. This is a hands-on role for a practitioner who has strong implementation experience and is ready to grow into an architectural leadership capacity. The ideal candidate is comfortable working at both the execution level and the design/strategy level, with deep expertise in Azure Active Directory (Microsoft Entra ID), Okta, AWS IAM, and emerging agentic identity patterns.

• Azure Active Directory / Microsoft Entra ID

• Hands-on deployment and configuration experience
• Ability to answer architecture-level questions on Azure AD design, federation, and governance
• Experience with Conditional Access, PIM, Identity Protection, and Entra ID roles

• Okta Identity Platform

• Production deployment and administration experience
• Non-Human Identity (NHI) / Machine Identity management via Okta
• Service accounts, API keys, machine-to-machine (M2M) tokens, OAuth client credentials flow
• Lifecycle automation for non-human identities

• Agentic Identity

• Must understand what agentic identity is and how to secure AI agents, bots, and automated pipelines
• Experience defining identity strategies for agentic workloads (LLM-based agents, RPA bots, etc.)

• AWS IAM

• Roles, policies, permission boundaries, SCPs, and IAM best practices
• Cross-account access, federation with Azure AD / Okta

• Implementor-to-Architect mindset

• Willingness and capability to evolve from hands-on implementation into architectural ownership
• Ability to document, present, and defend design decisions to senior stakeholders

• →Implement and configure Azure AD / Microsoft Entra ID solutions including SSO, MFA, SSPR, and RBAC
• →Deploy and manage Okta environments, including Workforce Identity and non-human identity (NHI) use cases
• →Design and implement Okta lifecycle management for machine identities, service accounts, and API credentials
• →Define and enforce AWS IAM policies, roles, and permission models aligned to least-privilege principles
• →Architect identity solutions for agentic workloads — securing AI agents, automation bots, and service pipelines
• →Lead identity architecture discussions and provide technical guidance to cross-functional teams
• →Perform IAM assessments, gap analyses, and produce architecture diagrams and documentation
• →Collaborate with security, cloud, and application teams to integrate identity into DevSecOps pipelines
• →Troubleshoot and resolve identity-related incidents across all IAM platforms
• →Stay current with emerging identity standards: SPIFFE/SPIRE, OAuth 2.0, OIDC, SCIM, FIDO2/Passkeys

• Microsoft Certified: Identity and Access Administrator Associate (SC-300) or Azure Security Engineer (AZ-500)
• Okta Certified Professional or Okta Certified Administrator
• AWS Certified Security Specialty or Solutions Architect
• Experience with IGA platforms: SailPoint IdentityNow, Saviynt, or Oracle Identity Governance
• Familiarity with PAM solutions: CyberArk, BeyondTrust, or Delinea
• Experience implementing Zero Trust Architecture and Identity-centric security models
• Exposure to DevSecOps pipelines and IAM as Code (Terraform, Pulumi, ARM/Bicep templates)
• Prior experience in financial services, healthcare, or regulated industries a plus