Apex Systems
Job#: 2091455
Job Description
Apex Systems is seeking an ICAM Engineer to work onsite in Washington, D.C.
Summary The ICAM Engineer will be responsible for leading the implementation, configuration, and ongoing optimization of Okta for identity management across the organization. In this role, you will work closely with cross-functional teams to design and manage authentication, authorization, and access control systems that protect enterprise applications and resources. You will also lead efforts to ensure compliance with security standards, governance policies, and industry regulations, while continually driving improvements.
Key Responsibilities
Lead the implementation of Okta for Single Sign-On (SSO), Multi-Factor Authentication (MFA), and User Lifecycle Management across on-premises and cloud-based applications.
Develop, update, and maintain GPOs to manage users across Active Directory domains
Collaborate with cybersecurity teams to align ICAM controls with Zero Trust principles
Document architecture, policies, and procedures for identity lifecycle management
Design and architect Okta solutions to ensure seamless, secure access for internal and external users.
Configure Okta Adaptive MFA, SSO integrations, Okta API Access Management, and Okta Lifecycle Management.
Design and implement role-based access control (RBAC), entitlement management, and access governance policies using Okta.
Integrate Okta with third-party applications, directories, and cloud-based services (e.g., Office 365, Salesforce, G Suite, etc.).
Ensure robust API integrations to facilitate seamless authentication and user data synchronization across internal and external applications.
Troubleshoot and resolve integration and access issues, working with cross-functional teams to provide technical solutions.
Monitor Okta’s performance and usage, providing reports on login trends, user activities, and potential security risks.
Qualifications
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Relevant certifications are a plus.
5+ years of experience in Identity and Access Management (ICAM) with at least 3 years of hands‑on experience specifically in Okta.
In-depth knowledge of Okta Identity and Access Management platform, including SSO, MFA, Lifecycle Management, and API Access Management.
Experience with Okta integrations with cloud and on-premises applications such as Office 365, Salesforce, Google Workspace, etc.
Strong understanding of role-based access control (RBAC), entitlement management, and user provisioning/de‑provisioning workflows.
Familiarity with IAM‑related protocols such as SAML, OAuth, OpenID Connect, and LDAP.
Knowledge of cloud platforms such as AWS, Azure, or Google Cloud and how they integrate with Okta for IAM.
Experience with API integrations and Okta’s API Access Management.
Understanding of security frameworks and regulations such as GDPR, HIPAA, and FISMA.
Ability to troubleshoot complex Okta‑related issues and implement solutions to meet security and compliance requirements.
Excellent verbal and written communication skills, with the ability to explain complex IAM concepts to both technical and non‑technical stakeholders.
Ability to work effectively with cross‑functional teams, including security, infrastructure, and business units.
Desired Certifications: Okta Certified Administrator, AZ‑300, AZ‑500.
Experience with Identity Governance tools and technologies such as SailPoint or Saviynt a plus.
Exposure to cloud security practices and experience securing cloud‑based applications using Okta and Azure preferred.
Other Requirements
Must be a U.S. Citizen with ability to obtain Public Trust
EEO Employer
Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178.
Apex Benefits Overview:
Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our ‘Welcome Packet’ as well, which an Apex team member can provide.
#J-18808-Ljbffr
Summary The ICAM Engineer will be responsible for leading the implementation, configuration, and ongoing optimization of Okta for identity management across the organization. In this role, you will work closely with cross-functional teams to design and manage authentication, authorization, and access control systems that protect enterprise applications and resources. You will also lead efforts to ensure compliance with security standards, governance policies, and industry regulations, while continually driving improvements.
Key Responsibilities
Lead the implementation of Okta for Single Sign-On (SSO), Multi-Factor Authentication (MFA), and User Lifecycle Management across on-premises and cloud-based applications.
Develop, update, and maintain GPOs to manage users across Active Directory domains
Collaborate with cybersecurity teams to align ICAM controls with Zero Trust principles
Document architecture, policies, and procedures for identity lifecycle management
Design and architect Okta solutions to ensure seamless, secure access for internal and external users.
Configure Okta Adaptive MFA, SSO integrations, Okta API Access Management, and Okta Lifecycle Management.
Design and implement role-based access control (RBAC), entitlement management, and access governance policies using Okta.
Integrate Okta with third-party applications, directories, and cloud-based services (e.g., Office 365, Salesforce, G Suite, etc.).
Ensure robust API integrations to facilitate seamless authentication and user data synchronization across internal and external applications.
Troubleshoot and resolve integration and access issues, working with cross-functional teams to provide technical solutions.
Monitor Okta’s performance and usage, providing reports on login trends, user activities, and potential security risks.
Qualifications
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Relevant certifications are a plus.
5+ years of experience in Identity and Access Management (ICAM) with at least 3 years of hands‑on experience specifically in Okta.
In-depth knowledge of Okta Identity and Access Management platform, including SSO, MFA, Lifecycle Management, and API Access Management.
Experience with Okta integrations with cloud and on-premises applications such as Office 365, Salesforce, Google Workspace, etc.
Strong understanding of role-based access control (RBAC), entitlement management, and user provisioning/de‑provisioning workflows.
Familiarity with IAM‑related protocols such as SAML, OAuth, OpenID Connect, and LDAP.
Knowledge of cloud platforms such as AWS, Azure, or Google Cloud and how they integrate with Okta for IAM.
Experience with API integrations and Okta’s API Access Management.
Understanding of security frameworks and regulations such as GDPR, HIPAA, and FISMA.
Ability to troubleshoot complex Okta‑related issues and implement solutions to meet security and compliance requirements.
Excellent verbal and written communication skills, with the ability to explain complex IAM concepts to both technical and non‑technical stakeholders.
Ability to work effectively with cross‑functional teams, including security, infrastructure, and business units.
Desired Certifications: Okta Certified Administrator, AZ‑300, AZ‑500.
Experience with Identity Governance tools and technologies such as SailPoint or Saviynt a plus.
Exposure to cloud security practices and experience securing cloud‑based applications using Okta and Azure preferred.
Other Requirements
Must be a U.S. Citizen with ability to obtain Public Trust
EEO Employer
Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178.
Apex Benefits Overview:
Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our ‘Welcome Packet’ as well, which an Apex team member can provide.
#J-18808-Ljbffr