Okta Architect

Position Description

We are seeking an experienced Okta Architect to design, implement, and manage identity and access management (IAM) solutions using the Okta platform. The Okta Architect will collaborate with cross-functional teams to ensure secure, scalable, and efficient identity management systems that align with organizational goals. This role requires deep expertise in Okta, IAM best practices, and integration with enterprise applications and systems.

Your future duties and responsibilities

• Design and architect Okta-based IAM solutions to meet business and security requirements.
• Configure and deploy Okta services, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Lifecycle Management, and Universal Directory.
• Integrate Okta with on-premises and cloud-based applications, such as Active Directory, LDAP, SaaS platforms, and custom applications.
• Lead the implementation of Okta workflows, policies, and authentication protocols (e.g., SAML, OAuth, OIDC).
• Collaborate with stakeholders to define identity governance strategies, user provisioning, and de-provisioning processes.
• Provide technical expertise and guidance on Okta best practices, security standards, and compliance requirements (e.g., GDPR, HIPAA, SOC 2).
• Troubleshoot and resolve complex Okta-related issues, including performance optimization and system scalability.
• Develop and maintain documentation, including architecture diagrams, configuration guides, and operational procedures.
• Stay current with Okta product updates, emerging IAM trends, and industry standards to recommend improvements.
• Mentor and train team members on Okta platform usage and administration.
  
  

Required Qualifications To Be Successful In This Role

• Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent experience).
• 5+ years of experience in identity and access management, with at least 3 years focused on Okta.
• Okta Certified Professional, Administrator, or Consultant certification (preferred).
• Strong understanding of IAM concepts, including SSO, MFA, role-based access control (RBAC), and privileged access management (PAM).
• Hands-on experience with Okta integrations, API usage, and custom workflows.
• Proficiency in authentication protocols such as SAML, OAuth 2.0, and OpenID Connect.
• Experience with cloud platforms (e.g., AWS, Azure, Google Cloud) and directory services (e.g., Active Directory, LDAP).
• Familiarity with scripting languages (e.g., Python, PowerShell) for automation is a plus.
• Excellent problem-solving skills and ability to work in a fast-paced environment.
• Strong communication skills to collaborate with technical and non-technical stakeholders.
  
  

Preferred Skills:

• Experience with other IAM platforms (e.g., SailPoint, Ping Identity, CyberArk) is a plus.
• Knowledge of DevOps practices and tools (e.g., CI/CD pipelines, Terraform).
• Understanding of zero-trust security models and implementation.
  
  

Together, as owners, let’s turn meaningful insights into action.

Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…

You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.

Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.

You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.

At CGI, we recognize the richness that diversity brings. We strive to create a work culture where all belong and collaborate with clients in building more inclusive communities. As an equal-opportunity employer, we want to empower all our members to succeed and grow. If you require an accommodation at any point during the recruitment process, please let us know. We will be happy to assist.

Come join our team—one of the largest IT and business consulting services firms in the world.