Join our client's TechOps & Enablement team as a Senior IAM & SaaS Administration Engineer. This hands-on, high-ownership role involves leading the evolution and maturation of the client's identity and access management environment. The ideal candidate will have 4+ years of experience in IT systems, IAM, or SaaS administration/IT engineering.
Key Highlights
Key Responsibilities
Technical Skills Required
Benefits & Perks
Nice to Have
Job Description
Senior IAM & SaaS Administration Engineer
Company Overview
Radost Solutions is a growing consulting firm based in Portland, Oregon, specializing in innovative solutions for complex business challenges within various industries. We are dedicated to delivering exceptional service and expertise to our clients, and our consultants are often deployed to client sites and remote teams to lead and manage critical projects. Learn more about us at www.radost.us.
About the Client
Our client is a fast-growing eCommerce and consumer products company based in Los Angeles, California, known for its innovative, machine-washable home goods. With a team spanning corporate offices and fulfillment and manufacturing facilities, the client operates a modern SaaS tool stack and is investing in building IT operations that scale alongside the business. This role offers the opportunity to lead the evolution and maturation of the client's identity and access management environment and shape its access governance practices.
Position Summary
We are seeking a Senior IAM & SaaS Administration Engineer to join our client's TechOps & Enablement team on a W2 contract basis, with potential for extension. This is a hands-on, high-ownership role on a lean team, reporting to the Director of TechOps and Enablement. The Senior IAM & SaaS Administration Engineer will own the technical administration layer of the client's SaaS portfolio, with Identity and Access Management (IAM) and Okta administration as the core focus.
This is not a ticket-driven role. The right candidate will be the person who notices what is broken, figures out why, and fixes it before it becomes a bigger problem. The role begins with an audit of the current Okta and IAM environment and progresses toward remediating the highest-risk gaps, standardizing provisioning and deprovisioning, and establishing a durable operating model for access governance. The Senior IAM & SaaS Administration Engineer will partner closely with the client's existing IAM owners and Security Team, and together the team is responsible for the systems, security, and experience every employee depends on to do their job.
Key Functions/Responsibilities
Identity and Access Management (IAM) & Okta Administration
- Own day-to-day Okta administration, including application integrations, group and rule management, and SSO/SCIM configuration
- Lead the cleanup and hardening of the client's IAM environment: audit existing access, remediate orphaned accounts and excess permissions, and standardize provisioning and deprovisioning
- Manage the full identity lifecycle (joiners, movers, leavers) across SaaS applications, ensuring access is granted, changed, and revoked accurately and on time
- Partner closely with existing IAM owners and the Security Team to define and enforce access governance policies, least-privilege standards, and periodic access reviews
- Build and maintain documentation for IAM processes, Okta configurations, and access policies
- Serve as the go-to technical owner for identity and access questions across the organization
SaaS Administration
- Own the day-to-day technical administration of Google Workspace, Atlassian (Jira, Confluence, JSM), and the broader SaaS application portfolio
- Design, build, and maintain integrations and automated workflows across the tool stack
- Serve as the technical owner for application configuration, licensing, and provisioning workflows
- Troubleshoot application issues across the stack and serve as the escalation point for technical SaaS problems
- Support the application governance process: intake, evaluation, configuration standards, and decommission
Interested in remote work opportunities in Product Management? Discover Product Management Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.
What Success Looks Like in the First 90 Days
- 30 days: The current Okta and IAM environment is audited, key SaaS integrations are mapped, and the highest-risk cleanup priorities are aligned with the team
- 60 days: Key IAM cleanup items are resolved (orphaned accounts, provisioning gaps), Okta workflows and integrations are documented, and access reviews are underway
- 90 days: The highest-risk IAM gaps are closed, an operating model and recurring access review cadence are established and documented, clear ownership exists for ongoing administration of SaaS and IAM, and you are the go-to person for anything SaaS- or identity-technical
Required Experience and Qualifications
- 4+ years in an IT systems, IAM, or SaaS administration/IT engineering role with hands-on technical ownership
- Deep, hands-on experience administering Okta or a similar identity provider: SSO, SCIM provisioning, app integrations, groups/rules, and lifecycle management
- Strong understanding of IAM fundamentals: least-privilege access, joiner/mover/leaver processes, deprovisioning, and periodic access reviews
- Deep experience administering Google Workspace (Admin Console, groups, provisioning, security settings)
- Experience with Atlassian products (Jira, Confluence, JSM) at an admin level
- Familiarity with SaaS integration platforms and workflow automation tools (Zapier, Workato, or similar)
- Strong documentation skills, with decisions, configurations, and processes documented as part of how you work
- Experience producing documentation and reporting that supports internal audits, access reviews, and security governance
- Comfortable operating independently in an ambiguous environment and creating structure where a playbook does not yet exist
Preferred Qualifications
- Experience leading an IAM cleanup, audit, or access governance initiative
- Experience in a high-growth DTC, eCommerce, or tech company
- Exposure to ITSM platforms, particularly Jira Service Management
- Understanding of data classification, vendor risk assessment, or information security fundamentals
- Curiosity about or experience with AI tools and AI governance
Core Competencies
Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.
- High-ownership mindset with strong independent judgment
- Proactive problem-solver who identifies and resolves issues before they escalate
- Security- and governance-minded, with a bias toward least-privilege access
- Strong documentation and process discipline
- Comfortable operating in a fast-paced, evolving environment with a lean team
Travel Requirements
- This is a remote role; no regular travel is required
- Occasional travel may be requested for key team or planning sessions
Position Type and Rate
- W2 contract position; 7-month duration with potential to convert
- Not open to C2C or B2C arrangements
- Remote, with a preference for candidates based in the Los Angeles area
- Target rate range: $45 to 55/hour, commensurate with experience and location
Benefits
- Competitive compensation
- 401(k) retirement plan
- Health insurance stipend
- Paid Time Off
- Paid Holidays
- Professional development opportunities
Radost Solutions is an equal opportunity employer, welcoming diversity and inclusivity in our workforce. We do not engage in discrimination based on any personal attributes.
Similar Jobs
Explore other opportunities that match your interests