Identity Infrastructure

Block.

Identity & access management infrastructure at enterprise scale

Engineering secure identity infrastructure for internal operations—managing access for thousands of employees across 1000+ applications

Okta/IAM SCIM AWS Security Automation
My Role

Identity Infrastructure
Engineer

Building identity infrastructure with Okta for employee lifecycle management at Block—engineering the systems that control access to 1000+ applications for thousands of employees.

My work focuses on SCIM provisioning, replacing unreliable systems with accurate documentation-based solutions, and taking on stalled projects that others couldn't complete.

Security is paramount—I engineer systems that prevent catastrophic failures like mass deprovisioning while ensuring immediate access revocation when employees leave.

Core Focus Areas

  • >

    SCIM provisioning for 1000+ applications in Okta

  • >

    Employee onboarding/offboarding automation with IaC

  • >

    AI-powered support infrastructure serving 500+ users

  • >

    Unblocking projects stalled for 1+ years

<Technical Work />

Key
Projects.

Building identity infrastructure, AI-powered tools, and enterprise automation at scale

AI-Powered Support Infrastructure

Replaced hallucinating Slack bot with Goose-powered system serving 500+ users daily with accurate, documentation-based answers and automatic Jira ticket creation.

  • > Built custom Docker infrastructure with npm tooling
  • > Integration with internal MCP server for Jira
  • > Eliminated false information, reduced team intervention

Enterprise SCIM Provisioning

Managing identity provisioning across 1000+ Okta applications with automatic account creation and immediate security-critical access revocation.

  • > Complex cutover management preventing mass deprovisioning
  • > Built and debugged custom SCIM connectors
  • > Immediate access revocation when employees leave

Infrastructure Debugging & Problem Solving

Debugged complex AWS/ECR configurations, CI/CD pipelines, and authentication systems—completing projects stalled in backlog for 1+ years.

  • > Navigated enterprise infrastructure constraints
  • > Fixed Dockerfiles, static paths, authentication issues
  • > Coordinated across teams to unblock integrations

Employee Lifecycle Automation

Infrastructure as Code for employee onboarding/offboarding with identity governance architecture—preventing accidental deletions and mass deprovisioning.

  • > Meeting with teams to understand real requirements
  • > Building tools around actual problems, not assumptions
  • > Risk management for security-critical operations

Technologies Used

Production tools and frameworks for enterprise identity infrastructure

Okta

Identity Management

AWS

Cloud Infrastructure

Terraform

Infrastructure as Code

Docker

Containerization

Goose

AI Agent Framework

Slack

Integration Platform

Jira

Ticketing System

SCIM

Provisioning Protocol

PostgreSQL

Database

ECR

Container Registry

500+

Daily Slack Users

Getting accurate support from AI bot

1000+

Applications in Okta

With SCIM provisioning management

1+ Years

Project Backlog Cleared

Through persistent debugging

What This
Demonstrates

Identity infrastructure engineering at enterprise scale with real impact

Domain Expertise

Deep knowledge of identity infrastructure, Okta, SCIM, and IAM systems at enterprise scale—managing access for thousands of employees across 1000+ applications.

Execution Capability

Completes stalled projects others couldn't finish—pushing through complex debugging of AWS, Docker, CI/CD pipelines until resolution. Projects backlogged for 1+ years delivered.

Risk Awareness

Understands catastrophic failure modes (mass deprovisioning, data deletion) and engineers defensively. Ensures immediate access revocation while preventing disasters.

$ cd ../portfolio

Explore
Other Work.

View my full portfolio to see additional case studies and technical projects

View Full Portfolio