The IAM Engineer is responsible for the administration, support and continuous improvement of the company’s identity and access management environment, with Okta as the primary platform. This role owns day-to-day identity lifecycle operations, application onboarding, SSO, MFA and provisioning across the company’s SaaS ecosystem.

The position will operate as a hands-on engineer focused on reliable execution, strong process discipline and scalable access management practices, while supporting future governance and access control initiatives as the environment matures.

Responsibilities
● Administer and support the company’s IAM ecosystem, with primary responsibility for Okta and related identity tools.
● Manage identity lifecycle processes including joiner, mover and leaver activities, access changes and deprovisioning.
● Configure and support SSO, MFA, provisioning and application access across business-critical systems.
● Lead application onboarding into the IAM environment, including integration design, testing, troubleshooting and rollout.
● Maintain reliable and secure access controls across SaaS platforms and connected systems.
● Partner with IT, Security and business system owners to resolve access issues and improve identity-related processes.
● Support implementation of IAM standards, access controls and future governance requirements defined by leadership.
● Develop and maintain documentation, operating procedures and technical standards for IAM administration.
● Monitor and troubleshoot IAM-related incidents and service issues in a timely and disciplined manner.
● Identify opportunities to improve automation, reduce manual effort and strengthen the user access experience.

Requirements
● 2+ years of experience in an IAM, identity administration or access management role.
● Experience supporting Okta or comparable IAM platforms such as Duo, SailPoint or similar tools.
● Experience with identity lifecycle management, SSO, MFA, provisioning and SaaS application access.
● Familiarity with application integration, troubleshooting and access-related operational support.
● Ability to work hands-on within established processes and execute reliably in a fast-moving environment.
● Strong written and verbal English communication skills.
● Demonstrated ownership, reliability, sound judgment and ability to adapt to new challenges.

An Equal Opportunity Employer - All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

By submitting your application, you acknowledge that Sembi, Inc. will process and retain your resume and related personal information solely for recruitment and hiring purposes. Resumes of unsuccessful candidates will be securely deleted within twelve (12) months of the hiring decision, unless a longer period is required by law or you provide explicit consent for continued retention (e.g., for consideration for future opportunities).

In compliance with applicable privacy laws, including the EU General Data Protection Regulation (GDPR), you have the right to request access to, correction of, or deletion of your personal information at any time by contacting compliance@sembi.com. Sembi, Inc. does not sell candidate data and will ensure that all personal information is processed securely and in accordance with relevant data protection regulations.