SIGN IN
Global Identity Architect (Okta) jobs in United States
cer-icon
Apply on Employer Site
company-logo

TKO · 13 hours ago

Global Identity Architect (Okta)

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
money$170K/yr - $200K/yr
date8+ years exp
TKO is a next-generation technology, sports, and entertainment powerhouse formed by uniting recognizable brands such as UFC and WWE. The Identity Architect will lead the design and delivery of enterprise identity services, ensuring secure and scalable identity solutions across various platforms, including Okta and Microsoft Entra ID.
Media and EntertainmentSports

Responsibilities

Lead the design and execution of identity services across Okta, Active Directory, and Microsoft Entra ID, supporting the stand-up of TKO’s greenfield IT environment
Lead and drive complex cross-enterprise identity migrations as part of M&A or divestiture programs, leveraging tools such as Quest Migration Manager, Quest OnDemand Migration (ODM), BitTitan MigrationWiz, or equivalent platforms to ensure secure, phased transitions across forests, tenants, and domains
Architect and deploy secure, scalable directory structures, trust relationships, and authentication flows across on-prem and cloud systems
Own configuration and integration of Okta Identity Cloud as the primary identity provider, including SSO, MFA (e.g., Verify + Fastpass), SCIM provisioning, API provisioning, and directory integrations
Design and operate Identity Lifecycle Management (ILM) workflows integrated with Workday, ensuring automated joiner/mover/leaver processes are secure, scalable, and auditable
Architect, lead, and drive the development of automated identity lifecycle workflows using Workday, Okta Workflows, and Okta Identity Governance, including access certifications and entitlement reviews
Design and implement AD forest/domain strategy, including OU structure, GPO hierarchy, DNS, and replication models
Manage and maintain Microsoft Entra ID joined devices, with accountability for device compliance, enrollment, and configuration policies via Microsoft Intune
Oversee synchronization and federation patterns between Active Directory (AD), Okta, and Entra ID, ensuring high availability and alignment with security and compliance requirements
Ensure architectural decisions and implementations meet or exceed identity governance requirements aligned with SOX, PCI DSS, and other relevant compliance standards
Collaborate with Infrastructure, Security, and Application teams to ensure frictionless integration with enterprise systems and SaaS platforms
Proactively identify risks and blockers in identity architecture or execution, and drive solutions forward
Maintain tight alignment with TKO stakeholders and cross-functional delivery teams
Occasionally, you may be requested to travel and work long days and weekends during critical change events to support identity orchestration and migration efforts architecturally

Qualification

Okta Identity CloudMicrosoft Active DirectoryMicrosoft Entra IDIdentity Lifecycle ManagementIdentity GovernanceAuthentication protocolsCross-Platform ExpertiseArchitectural LeadershipAnalytical ThinkingMentorship & CollaborationResilienceCustomer OrientationDocumentation ExcellenceCommunication

Required

Bachelor's degree in computer science, Information Technology, Engineering, or a related field, or equivalent hands-on experience
8+ years of experience in identity and access management, enterprise infrastructure
Demonstrated experience leading identity architecture and delivery for large-scale, hybrid environments
Hands-on, expert-level proficiency with Okta Identity Cloud (SSO, MFA, Workflows, Lifecycle Management, Identity Governance)
Hands-on, expert-level proficiency with Microsoft Active Directory (forest/domain design, GPOs, trusts, replication)
Hands-on, expert-level proficiency with Microsoft Entra ID / Azure AD (hybrid join, conditional access, identity federation)

Preferred

Development and operationalization of an automated identity lifecycle management (ILM) processes, using Workday, Okta Workflows, Active Directory, Microsoft Entra ID / Azure AD, and Identity Governance tools
Successful implementation of a greenfield Okta environment, including directory integration, policy configuration, and application onboarding
Experience supporting identity and access projects in regulated industries with alignment to compliance frameworks such as SOX, PCI DSS, or NIST
End-to-end participation in enterprise IAM modernization efforts such as privileged access management (PAM), privileged identity management (PIM), and phishing-resistant MFA (e.g., Microsoft Passkey, FastPass, Yubikey, FIDO2)
Cross-functional leadership in M&A or divestiture-driven identity migrations, including TSA exit planning
Okta Certified Professional / Okta Certified Consultant
Microsoft Certified: Identity and Access Administrator Associate (SC-300)
Microsoft Certified: Azure Solutions Architect Expert
Certified Information Systems Security Professional (CISSP) or GIAC certifications (IAM/GRC)
Training or certification in Zero Trust Architecture, PIM/PAM Design, IAM Governance

Company

TKO

twittertwittertwitter
company-logo
TKO Group Holdings, Inc. (NYSE: TKO) is a premium sports and entertainment company.
dateFounded in 2023
location
New York, New York, USA
people-size1001-5000 employees
web-link
https://tkogrp.com

Funding

Current Stage
Public Company
Total Funding
$1.08B
2024-03-04Post Ipo Secondary· $411.95M
2023-11-09Post Ipo Secondary· $670.32M
2023-09-12IPO

Leadership Team

leader-logo
Sana Shuaib
Senior Vice President, Partnership Marketing & Digital, TKO Global Partnerships
linkedin

Recent News

Benzinga.com
Delta Air, Exxon Mobil, TKO Group And A Financial Stock On CNBC's 'Final Trades'
2026-01-16
DBusiness Magazine
Ram Updates Lineup for 2026, Adds Tough New Partnerships
2025-12-24
PR Newswire
Ram Named Official Truck Partner of WWE, UFC and PBR
2025-12-11
Company data provided by crunchbase