Apolis
Title: Solution Architect - Identity & Access Management (IAM)
Location: 100% Remote (EST)
Duration : 6months +
Overview We are seeking a Solution Architect specializing in Identity & Access Management (IAM) to lead the design and implementation of enterprise-grade solutions using Java/Spring Boot, AWS with EKS, React, and PostgreSQL. This role requires expertise in integrating Okta Universal Directory and Microsoft Active Directory, along with experience in Entra ID, Okta APIs, and delivering advanced IAM capabilities across authentication, lifecycle management, recovery flows, administrative access, and migration from legacy systems.
Key Responsibilities Architecture & Development
Design and deliver scalable solutions using Java, Spring Boot, React, and PostgreSQL in an AWS EKS containerized environment Architect microservices and cloud-native IAM-enabled applications Oversee full feature implementation for Okta UD and Microsoft AD Identity & Access Management (IAM) Integration
Okta Universal Directory:
Lifecycle Management: Create users (with/without password), manage application groups, control profiles, perform user lookups, disable/delete users, revoke sessions and OIDC tokens Factor Management: Register and validate authentication factors, support MFA bypass Recovery: Handle forgot password and username scenarios Emulation: Implement SAML Bridge impersonation per application Reporting: Connect Tableau for custom reporting capabilities Administrative Access: Link backend AD groups with OAuth clients under US domain policies Directory Connections: Establish PKI-based OAuth connections
Microsoft Active Directory:
Lifecycle Management: User creation, group assignment, profile control, lookup, disable/delete Administrative Access: Backend AD group connections governed by domain policies Directory Connections: Integrate via API key
Migration from Legacy Platforms
Decommission CA Identity Manager including API connection removal and Windows server deprovisioning
Required Skills & Qualifications
Minimum 7 years of experience in Solution Architecture Strong coding and integration skills using Java, Spring Boot, React, PostgreSQL Deep experience with AWS EKS and containerized cloud environments Advanced understanding of IAM protocols, Okta and Entra ID APIs, OAuth flows Familiarity with SAML, OIDC, PKI, and API integrations Experience with Tableau or similar enterprise reporting tools Strong knowledge of US domain security policies
Preferred Attributes
Certifications in AWS, Okta, or relevant IAM technologies Successful track record migrating identity platforms Familiarity with CI/CD and DevOps practices Excellent written and verbal communication
Overview We are seeking a Solution Architect specializing in Identity & Access Management (IAM) to lead the design and implementation of enterprise-grade solutions using Java/Spring Boot, AWS with EKS, React, and PostgreSQL. This role requires expertise in integrating Okta Universal Directory and Microsoft Active Directory, along with experience in Entra ID, Okta APIs, and delivering advanced IAM capabilities across authentication, lifecycle management, recovery flows, administrative access, and migration from legacy systems.
Key Responsibilities Architecture & Development
Design and deliver scalable solutions using Java, Spring Boot, React, and PostgreSQL in an AWS EKS containerized environment Architect microservices and cloud-native IAM-enabled applications Oversee full feature implementation for Okta UD and Microsoft AD Identity & Access Management (IAM) Integration
Okta Universal Directory:
Lifecycle Management: Create users (with/without password), manage application groups, control profiles, perform user lookups, disable/delete users, revoke sessions and OIDC tokens Factor Management: Register and validate authentication factors, support MFA bypass Recovery: Handle forgot password and username scenarios Emulation: Implement SAML Bridge impersonation per application Reporting: Connect Tableau for custom reporting capabilities Administrative Access: Link backend AD groups with OAuth clients under US domain policies Directory Connections: Establish PKI-based OAuth connections
Microsoft Active Directory:
Lifecycle Management: User creation, group assignment, profile control, lookup, disable/delete Administrative Access: Backend AD group connections governed by domain policies Directory Connections: Integrate via API key
Migration from Legacy Platforms
Decommission CA Identity Manager including API connection removal and Windows server deprovisioning
Required Skills & Qualifications
Minimum 7 years of experience in Solution Architecture Strong coding and integration skills using Java, Spring Boot, React, PostgreSQL Deep experience with AWS EKS and containerized cloud environments Advanced understanding of IAM protocols, Okta and Entra ID APIs, OAuth flows Familiarity with SAML, OIDC, PKI, and API integrations Experience with Tableau or similar enterprise reporting tools Strong knowledge of US domain security policies
Preferred Attributes
Certifications in AWS, Okta, or relevant IAM technologies Successful track record migrating identity platforms Familiarity with CI/CD and DevOps practices Excellent written and verbal communication