**Job Title: OKTA/SSO Engineer** **Job Summary:** We are seeking a skilled OKTA/SSO Engineer to support and enhance our Identity and Access Management infrastructure. This role will focus on the design, implementation, and maintenance of OKTA-based SSO solutions, ensuring secure and seamless access to enterprise applications. The ideal candidate will have hands-on experience in OKTA configuration, SAML/OAuth integrations, lifecycle management, and security policy enforcement. **Key Responsibilities:** + Implement and manage **OKTA Identity and Access Management** solutions, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and lifecycle management. + Integrate third-party and in-house applications with OKTA using **SAML 2.0, OAuth 2.0, OIDC** , and SCIM protocols. + Configure and manage user authentication flows, group assignments, and access policies. + Monitor and maintain system performance, availability, and security compliance related to identity services. + Support user provisioning/de-provisioning using **OKTA Workflows or Lifecycle Management** tools. + Troubleshoot access and authentication issues; provide Tier 2/3 support for identity-related incidents. + Collaborate with security, infrastructure, and development teams to ensure secure and scalable access control implementations. + Maintain documentation and contribute to IAM policy and procedure development. + Assist with audits, compliance requirements, and security reviews as related to identity services. **Required Qualifications:** + Bachelor’s degree in Computer Science, Information Security, or related field; or equivalent experience. + 3+ years of experience with OKTA Identity solutions, including SSO and MFA. + Strong knowledge of **authentication/authorization protocols** (SAML, OAuth, OIDC, LDAP). + Hands-on experience with integrating cloud and on-prem applications with OKTA. + Familiarity with **IAM governance, role-based access control (RBAC),** and least-privilege principles. + Working knowledge of **security best practices** and compliance standards (e.g., SOC2, HIPAA, ISO 27001). + Excellent troubleshooting, communication, and documentation skills. **Preferred Qualifications:** + OKTA Certified Professional or Administrator certification. + Experience with **OKTA Workflows, API integration** , or **custom scripting** (e.g., PowerShell, Python). + Familiarity with **Zero Trust architecture** and modern identity trends. + Exposure to other IAM tools (e.g., Azure AD, Ping Identity, SailPoint) is a plus. Cognizant is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.