Logo
Tangerine Search, Inc.

Senior Java Engineer - Okta

Tangerine Search, Inc., Newark, California, United States, 94560

Save Job

About the Role

We are looking for a Senior Java Engineer with deep expertise in OAuth protocols and strong experience building API integrations with Okta. This role focuses on creating seamless and secure user provisioning workflows - especially CRUD operations for external supplier users - by leveraging Okta's APIs and identity management capabilities.

Key Responsibilities Design, develop, and maintain Java-based microservices for external user provisioning and lifecycle management (Create, Read, Update, Delete). Build secure, scalable, and automated integrations with Okta, using OAuth 2.0 and SCIM APIs. Develop automated onboarding and de-provisioning workflows for supplier and third-party users. Work closely with security and identity teams to ensure compliance and alignment with enterprise IAM standards. Troubleshoot and resolve integration issues across the stack (OAuth token handling, API errors, SCIM compliance). Build tests, monitor health, and ensure the reliability of user identity flows. Document system architecture, workflows, and API contracts. Required Qualifications

5+ years of experience in Java development (Spring Boot or similar frameworks). Strong understanding and hands-on experience with OAuth 2.0, OpenID Connect, and token-based authentication flows. Deep experience working with Okta APIs (including Management and SCIM APIs). Experience implementing user provisioning and identity lifecycle automation. Familiarity with external identity federation, SAML, and Just-In-Time (JIT) provisioning is a plus. Strong grasp of RESTful API design principles and security best practices. Comfortable with CI/CD, logging, monitoring, and observability tools. Preferred Qualifications

Experience with Okta Workflows, Okta Hooks, or similar no-code/low-code identity automation tools. Previous work in supplier/vendor management systems or third-party access platforms. Familiarity with RBAC, group management, or policy-driven access control. Experience with tools like Postman, Swagger/OpenAPI, and identity testing tools. What Success Looks Like

Within 30 days: Stand up a working test environment for Okta API integration. Within 60 days: Deliver a working prototype for external user CRUD via Java service. Within 90 days: Launch automated supplier provisioning into production with full audit logging and error handling. Tech Stack You'll Work With

Languages: Java (Spring Boot), Groovy (optional) Identity Platform: Okta Protocols: OAuth 2.0, OpenID Connect, SCIM Tooling: Postman, Swagger, Git, Jenkins/GitHub Actions Cloud: AWS/Azure/GCP (as applicable)

From Tangerine Search:

Tangerine Search is an equal opportunity agency that values diversity. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment.