Identity Security Engineer (Okta & Identity Governance) – Bangkok Based, Relocation provided

Job Duties

• Design and deploy Okta Identity Governance modules including access requests, certifications, and entitlement management.

• Develop custom workflows and policies within Okta IGA to enforce Segregation of Duties rules during provisioning.

• Create access certification campaigns and remediation workflows to satisfy internal and external audit requirements.

• Manage Okta organization architecture using Terraform to ensure version control and minimize configuration drift.

• Build advanced logic and lifecycle automation using Okta Workflows for custom notifications and complex identity tasks.

• Implement Multi-Factor Authentication and Risk-Based Authentication policies to secure the global enterprise.

• Develop custom integrations using Okta APIs, Event Hooks, and scripts to automate downstream application provisioning.

• Collaborate with Detection Engineering to ingest Okta System Logs into the SIEM for proactive threat monitoring.

• Partner with Governance, Risk, and Compliance teams to support SOX and NIST security framework requirements.

Requirements

• Operate Okta in a high-scale production environment with a focus on identity-centric security controls.

• Demonstrate proficiency in managing Okta configuration as code using the Terraform Okta Provider.

• Write custom scripts in Python, JavaScript, or TypeScript for complex API-based integrations.

• Integrate identity platforms with downstream applications to achieve seamless user lifecycle automation.

• Enforce session policies and multi-factor authentication across a diverse, global workforce.

• Maintain auditable and measurable identity controls to satisfy global regulatory standards.

Qualifications

• Six years of hands-on experience in identity security engineering, specifically focused on the Okta platform.

• Proven track record with Okta Identity Governance (OIG), including review campaigns and entitlements.

• Strong background in Infrastructure-as-Code (IaC) for identity management.

• Experience in Governance, Risk, and Compliance (GRC) within a technology or travel-sector environment.

• Bachelor’s degree in Computer Science, Cybersecurity, or a related technical field is typically expected.