The Okta Engineer will play a central role in advancing the Identity & Access Management (IAM) framework within a progressive workplace environment. Reporting to the Workplace Identity Team, this position supports the ongoing operation and evolution of critical identity systems, including Okta and internal Joiners, Movers, Leavers (JML) platforms. This is a 12-month fixed-term role based in London White City, with a hybrid model requiring 1–2 days per week on-site.
Key Responsibilities
- Manage and maintain core identity services, including Okta and proprietary JML systems, ensuring accurate and secure account provisioning and de-provisioning.
- Sustain and enhance Single Sign-On (SSO) integrations across platforms such as Active Directory, Google Workspace, Oracle Fusion, and internal applications.
- Lead the onboarding of new applications into Okta, collaborating with application owners to define integration requirements and implementation paths.
- Diagnose and resolve issues related to authentication, authorization, access rights, and identity workflows.
- Support system stability through monitoring, patching, and operational oversight of IAM infrastructure.
- Identify design limitations and recommend improvements to strengthen system reliability and security.
- Work with Cyber Security, operational teams, and business units to refine provisioning processes and support roadmap planning.
- Develop automation strategies to enhance identity management efficiency and reduce manual effort.
- Stay current with industry developments to propose strategic enhancements to IAM practices.
- Produce and maintain detailed technical documentation for configurations, integrations, and operational procedures.
- Participate in technology upgrades, migrations, and new implementations as part of broader IAM initiatives.
Qualifications and Experience
Candidates must hold a bachelor's degree in Computer Science or a related technical field, or demonstrate equivalent experience in second-line technical support. Okta certification is mandatory. Familiarity with PowerShell, DNS, and SSL certificate management is essential. Preferred qualifications include Microsoft Active Directory or Entra ID (Azure AD) certification, experience with CyberArk, and knowledge of Privileged Access Management (PAM) systems.
Work Environment and Benefits
This role operates under a hybrid model, balancing remote flexibility with in-person collaboration. The organization offers an annual bonus, competitive pension contributions, and a share purchase plan. Additional benefits include generous holiday allowances, wellbeing initiatives, volunteering days, and support for a balanced lifestyle.
The company is committed to inclusivity and accessibility, welcoming applicants with disabilities. As a Disability Confident Leader, it guarantees interview progression to disabled candidates who meet minimum role criteria, subject to operational constraints.
