ICAM Engineer

Job#: 2091455

Job Description:

Apex Systems is seeking an ICAM Engineer to work onsite in Washington, D.C.

Summary:

The ICAM Engineer will be responsible for leading the implementation, configuration, and ongoing optimization of Okta for identity management across the organization. In this role, you will work closely with cross-functional teams to design and manage authentication, authorization, and access control systems that protect enterprise applications and resources. You will also lead efforts to ensure compliance with security standards, governance policies, and industry regulations, while continually driving improvements.

Key Responsibilities:

• Lead the implementation of Okta for Single Sign-On (SSO), Multi-Factor Authentication (MFA), and User Lifecycle Management across on-premises and cloud-based applications.
• Develop, update, and maintain GPOs to manage users across Active Directory domains
• Collaborate with cybersecurity teams to align ICAM controls with Zero Trust principles
• Document architecture, policies, and procedures for identity lifecycle management
• Design and architect Okta solutions to ensure seamless, secure access for internal and external users.
• Configure Okta Adaptive MFA, SSO integrations, Okta API Access Management, and Okta Lifecycle Management.
• Design and implement role-based access control (RBAC), entitlement management, and access governance policies using Okta.
• Integrate Okta with third-party applications, directories, and cloud-based services (e.g., Office 365, Salesforce, G Suite, etc.).
• Ensure robust API integrations to facilitate seamless authentication and user data synchronization across internal and external applications.
• Troubleshoot and resolve integration and access issues, working with cross-functional teams to provide technical solutions.
• Monitor Okta's performance and usage, providing reports on login trends, user activities, and potential security risks.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Relevant certifications are a plus.
• 5+ years of experience in Identity and Access Management (ICAM) with at least 3 years of hands-on experience specifically in Okta.
• In-depth knowledge of Okta Identity and Access Management platform, including SSO, MFA, Lifecycle Management, and API Access Management.
• Experience with Okta integrations with cloud and on-premises applications such as Office 365, Salesforce, Google Workspace, etc.
• Strong understanding of role-based access control (RBAC), entitlement management, and user provisioning/de-provisioning workflows.
• Familiarity with IAM-related protocols such as SAML, OAuth, OpenID Connect, and LDAP.
• Knowledge of cloud platforms such as AWS, Azure, or Google Cloud and how they integrate with Okta for IAM.
• Experience with API integrations and Okta's API Access Management.
• Understanding of security frameworks and regulations such as GDPR, HIPAA, and FISMA.
• Ability to troubleshoot complex Okta-related issues and implement solutions to meet security and compliance requirements.
• Excellent verbal and written communication skills, with the ability to explain complex IAM concepts to both technical and non-technical stakeholders.
• Ability to work effectively with cross-functional teams, including security, infrastructure, and business units.
• Desired Certifications: Okta Certified Administrator, AZ 300, AZ 500.
• Experience with Identity Governance tools and technologies such as SailPoint or Saviynt a plus
• Exposure to cloud security practices and experience securing cloud-based applications using Okta and Azure preferred

Other Requirements:

EEO Employer

Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or .

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.

Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.