OKTA Lead – L3 Consultant & Okta Workflows

Job brief

The Band 8 Senior Lead is accountable for the end-to-end L3 SME ownership OKTA workflow security and 24x7 operational stability of the enterprise OKTA platform as consultant. Lead L3 Technical Operations. The role provides strategic OKTA leadership governance and final escalation support for business-critical authentication services.

Shift: UK hours 24x7

Responsibilities

Key Accountabilities

L3 Consultant and Workflows

• Own and govern the global OKTA platform including workflows standards and roadmap
• Define and approve authentication policies MFA controls and security designs
• Ensure platform scalability resilience and alignment with enterprise security strategy

Operations & Service Leadership (24x7)

• Accountable for 24x7 availability SLA performance and service continuity
• Act as final escalation points for critical authentication and access incidents
• Lead P1/P2 major incidents root cause analysis and remediation actions
• Define and maintain on-call escalation and support readiness models

Security Risk & Compliance

• Ensure OKTA services meet security audit and regulatory requirements
• Partner with SOC GRC and Audit teams on risk assessments and compliance activities
• Own remediation plans for identified security gaps or audit findings

Leadership & Stakeholder Engagement

• Provide technical and functional leadership to global IAM teams
• Act as a trusted advisor to senior IT and Security leadership
• Mentor senior engineers and ensure effective knowledge transfer

Requirements

• Skills & Experience

  Essential

  • 1215 years of experience in IAM / Security / System Administration
  • 2 years of hands-on OKTA administration with strong focus on OKTA
  • Proven experience supporting enterprise IAM platforms in 24x7 environments
  • Strong expertise in authentication MFA and identity federation concepts
  • OKTA Workflow management.
  • Day-to-day OKTA platform support including policy management group updates and rule modifications.
  • Expertise in OKTA App integration.
  • Handling BAU incident tickets including analysis resolution and coordination.
  • Deployment and upgrades of new OKTA agents as required.
  • Maintenance and patching of OKTA AD agents coordination with Kyndryl server teams monitoring agent health and remediation of agent disconnects.
  • Handling day-to-day BAU service requests related to OKTA and IAM services.
  • Managing network zone configurations including addition and updates of IP whitelisting.
  • Regular maintenance and updates of CMDB records including application details and ownership information.
  • Management of OKTA-mastered application lists and approver configurations with regular CMDB updates.
  • Handle OKTA L3 SMEs.
  • Understanding the creation of workflows in OKTA.
  • Provisioning and management of OKTA administrative access.
  • Periodic review and revalidation of OKTA admin access.
  • Provisioning and lifecycle management of service accounts.
  • Periodic revalidation and certification of service account access.
  • Ongoing governance and updates of OKTA-mastered accounts and approver lists within CMDB.
  • Hypercare services for new implementations criteria changes and upgrades including issue resolution post-migration.
  • Single Sign-On
  • Adaptive MFA
  • Lifecycle Management
  • API Access Management
  • Provide performance administration account and service account attestation within the Okta service
  • Provide IP address whitelisting management within the Okta.
  • Perform patch management within the Okta.
  • Provide support for audits including remediation of findings that can be delivered as small changes
  • Provide group creation modification and removal
  • Plan and execute software upgrades including compatibility testing and user migration strategies for new releases
  • Support group synchronization

  Desirable

  • Experience in large global enterprise environments
  • Exposure to Zero Trust and modern identity security frameworks

  Qualifications / Certifications

  • OKTA professional Certified / Consultant or workflows (Mandatory)
  • OKTA admin certified OKTA Certified Consultant Security certifications (CISSP / CISM) desirable

  Decision Making & Impact

  • Makes high-impact L3 and operational decisions affecting global access services
  • Accountable for service stability security posture and risk reduction
  • Influences IAM strategy and platform direction at enterprise level

  Working Conditions

  • 24x7 global support model (rotational on-call)
  • Collaboration across APAC EMEA and NA/LATAM regions
  • Location Bangalore India.