Identity Solutions Architect

Okta Okta · Enterprise · Sydney, Australia · Sec - IAM-185

Okta is seeking an Identity Solutions Architect to drive the technical execution of their Identity Security & Agentic Identity portfolio. This role will focus on securing AI agents and non-human identities, designing authentication and authorization patterns, and integrating Okta's identity solutions with AI orchestration layers and model providers. The architect will act as Customer Zero, testing and deploying new features from Alpha to Early Availability, and will also lead efforts in anti-session hijacking, advanced threat protection, and identity governance.

What you'd actually do

  1. Lead the internal Customer Zero deployment of Okta IGA and PAM. You will blueprint workflows for least-privilege access, ensuring robust compliance and security over Okta's most sensitive administrative, server, and infrastructure entitlements.
  2. Act as the lead architect testing and deploying Alpha identity security features within Okta’s internal IAM environment. Author the technical rollout blueprints and provide the core engineering teams with critical feedback.
  3. Design the internal implementation blueprint for how Okta DBSSO and Chrome DBSC complement one another, creating an ironclad, layered defense that protects corporate endpoints from token and cookie exfiltration.
  4. Lead the technical effort to open-source the complimentary tools our Customer Zero team builds, transitioning our internal innovations into a massive, thriving community effort with our customers.
  5. Take the microphone. You will help lead a dedicated "how-to" video series and a potential podcast this year, and take the stage at major events to share our internal playbook.

Skills

Required

  • 8+ years of overall IT/software development and technical architecture experience
  • 3+ years specifically focused on IAM/Security Architecture
  • proven track record of securing non-human identities (NHIs) or machine-to-machine infrastructure in production
  • Demonstrated experience deploying Identity Governance (IGA) and Privileged Access Management (PAM) solutions
  • Knowledge of core protocols: OAuth2/OIDC (especially Token Exchange), SAML, mTLS, JWT, and Model Context Protocol (MCP)
  • Strong technical understanding of modern identity threat vectors (AiTM phishing, info-stealer malware, session hijacking)

Nice to have

  • customer-obsessed
  • technical execution
  • internal deployment blueprints
  • public stage
  • Alpha through Early Availability (EA)
  • workforce and developer platforms
  • O4AA (Okta for AI Agents)
  • A4AA (Auth0 for AI Agents)
  • secure authentication and authorization patterns
  • Next-Gen Guardrails
  • token exchange patterns
  • security gateways
  • Model Context Protocol (MCP)
  • agent-to-data interactions
  • Hardware-Bound Session Security
  • Okta DBSSO
  • Chrome DBSC
  • Advanced Threat & Posture Management
  • Identity Threat Protection (ITP)
  • Identity Security Posture Management (ISPM)
  • human and machine identities
  • Identity Governance & Administration (IGA)
  • automated lifecycle management
  • self-service access request workflows
  • continuous access certification
  • Okta Identity Governance
  • Privileged Access Management (PAM)
  • just-in-time (JIT) access
  • managing secrets
  • securing privileged sessions
  • Okta Privileged Access
  • least-privilege access
  • robust compliance and security
  • Okta's most sensitive administrative, server, and infrastructure entitlements
  • Customer Zero Lifecycle Execution (Alpha to EA)
  • technical rollout blueprints
  • core engineering teams
  • critical feedback
  • Anti-Session Hijacking Architecture
  • ironclad, layered defense
  • corporate endpoints
  • token and cookie exfiltration
  • Open-Source & Community Leadership
  • open-source the complimentary tools
  • massive, thriving community effort
  • Thought Leadership & Personal Brand
  • dedicated "how-to" video series
  • potential podcast
  • major events
  • internal playbook
  • Ecosystem Integration
  • orchestration layers
  • LangChain/Graph
  • n8n
  • AWS AgentCore
  • Google Vertex ADK
  • model providers
  • Azure Foundry
  • AWS Bedrock
  • OpenAI
  • Anthropic
  • Massive Industry Collaboration
  • technical face
  • strategic engineering and identity infrastructure teams
  • major enterprise tech companies
  • leading cloud service providers
  • top-tier security vendors
  • just-in-time (JIT) access
  • infrastructure security
  • lifecycle management
  • access certification
  • mTLS
  • JWT

What the JD emphasized

  • secure non-human identities (NHIs) or machine-to-machine infrastructure in production
  • proven track record of securing non-human identities (NHIs) or machine-to-machine infrastructure in production

Other signals

  • Architecting how Okta governs non-human, autonomous AI workloads across O4AA (Okta for AI Agents) and A4AA (Auth0 for AI Agents), defining secure authentication and authorization patterns.
  • Designing token exchange patterns, security gateways, and implementing the Model Context Protocol (MCP) to secure agent-to-data interactions.
  • Define how Okta identity is woven into modern orchestration layers (LangChain/Graph, n8n, AWS AgentCore, Google Vertex ADK) and model providers (Azure Foundry, AWS Bedrock, OpenAI, Anthropic).