Identity Security Engineer (Okta & Identity Governance) – Bangkok Based, Relocation provided

Job Duties

• Design and deploy Okta Identity Governance (OIG) modules, specifically focusing on Access Requests, Certifications, and Entitlement Management.

• Develop and maintain custom workflows and policies within Okta IGA to strictly enforce Segregation of Duties (SOD) during provisioning.

• Engineer Okta architecture (Groups, Rules, Policies) using Terraform (Infrastructure-as-Code) to maintain version control and prevent configuration drift.

• Build advanced automation using Okta Workflows for complex lifecycle management, custom notifications, and logic beyond native platform features.

• Implement security controls, including Multi-Factor Authentication (MFA) policies, Risk-Based Authentication, and Global Session Policies.

• Create custom integrations utilizing Okta APIs, Event Hooks, and scripts (Python/JavaScript) for seamless provisioning to downstream applications.

• Support threat monitoring by partnering with Detection Engineering to ingest Okta System Logs into the SIEM.

• Collaborate with GRC and Audit teams to ensure all identity controls meet SOX and NIST compliance requirements.

• Manage access certification campaigns and remediation workflows to satisfy internal and external audit demands.

• Operate and evolve the identity centric security controls across the global enterprise.

Requirements

• Hands-on Okta Expertise: Demonstrated ability to manage and operate an Okta organization in a high-scale production environment.

• Identity Governance: Proficiency in setting up Access Requests, Review Campaigns, and Entitlements within the OIG framework.

• Infrastructure-as-Code: Strong experience using Terraform, specifically the Okta Provider, to manage security configurations.

• Programming Skills: Ability to write and maintain scripts in Python or JavaScript/TypeScript for custom API integrations.

• Security Mindset: Deep understanding of identity-centric security, including MFA, session management, and authentication risk.

• Compliance Knowledge: Familiarity with audit frameworks such as SOX and NIST.

• Analytical Problem Solving: Ability to design custom logic for advanced lifecycle automation and notifications.

Qualifications

• Experience: 6+ years of hands-on experience operating Okta in a production environment.

• Technical Depth: Proven track record in developing custom workflows and API-based integrations.

• Collaborative Skills: Experience partnering with internal Security, GRC, and Audit stakeholders.