Senior IAM Engineer

WHY BETTER. WHY NOW.

Better is rebuilding home finance as an AI-native platform—turning a process that once took weeks into something that can happen in seconds.

With over $110B in loans funded and $1.2B+ raised, we operate at real scale while rethinking how homeownership works from the ground up.

The category hasn’t caught up yet. That’s the opportunity.

Role Summary

We are looking for a Senior IAM Engineer to own and advance our identity and access management program. You will be the subject matter expert for Okta and the broader IAM ecosystem at Better — administering the platform end to end, integrating it with the systems our teams rely on every day, and partnering closely with Security to ensure our access controls are strong, scalable, and easy to use. You will lead lifecycle automation, harden application integrations, and serve as the senior escalation point for complex identity issues. This is a hands-on, high-impact role for someone who enjoys solving complex identity problems and continuously improving the experience for the business.

Key Responsibilities

• Administer Okta end to end, including users, groups, applications, authentication policies, sign-on rules, network zones, and Okta Workflows across the full product suite.

• Configure and support Okta authentication and access standards, including OAuth/OIDC, SAML, SCIM, Okta FastPass, Device Trust, device-bound SSO, and Device Access.

• Integrate and manage third-party SaaS applications in Okta, including SSO setup, SCIM-based provisioning and de-provisioning, group push, and role mapping.

• Own Okta's integrations with core enterprise systems, including Microsoft (Entra ID / Active Directory) and Workday as the HR system of record driving joiner, mover, and leaver events.

• Design and operate the joiner/mover/leaver lifecycle, ensuring timely, accurate, and auditable provisioning and de-provisioning across all in-scope applications.

• Ensure application integrations meet security best practices, including least-privilege access, MFA enforcement, strong authentication policies, and well-structured group and role design.

• Partner with the Security team to design and implement Okta and application-level security controls, policies, and risk-based / adaptive access rules.

• Support audit, compliance, and access certification activities (e.g., SOX, SOC 2) with reporting, evidence collection, and periodic access reviews.

• Build and maintain Okta Workflows and other automations to streamline identity processes such as onboarding, offboarding, group membership, and access reviews.

• Provide tier 2 and tier 3 support for IAM-related issues, including triage, root-cause analysis, and remediation, and serve as the escalation point for the helpdesk.

• Document configurations, runbooks, and processes to support team continuity, onboarding, and audit readiness.

Qualifications

• 5+ years of experience in an Identity and Access Management, IT security, or systems enginee