Lead end-to-end SailPoint IdentityIQ implementations, design IAM architectures, and optimize identity governance solutions.
Responsibilities
Lead installation, configuration, and customization of SailPoint IdentityIQ, including user provisioning, deprovisioning, and access request workflows.
Integrate SailPoint with HR systems (Workday, SAP), Active Directory, LDAP, SaaS apps (Salesforce, ServiceNow), and custom applications using REST/SOAP APIs.
Design and execute access certification campaigns, Segregation of Duties (SOD) policies, and audit reporting to ensure compliance with SOX, GDPR, and HIPAA.
Develop custom rules, workflows, and task definitions using BeanShell and JavaScript to extend SailPoint functionality and optimize identity aggregation.
Serve as the technical SME for SailPoint, guiding development teams, conducting architectural reviews, and mentoring junior engineers.
Required Skills
10+ years of experience in Identity & Access Management (IAM) and SailPoint IdentityIQ implementation.
Deep expertise in access governance, lifecycle management, and role-based (RBAC) or attribute-based (ABAC) access control models.
Strong experience with application integration, including REST and SOAP APIs for automated user lifecycle management.
Proficiency in configuring connectors (Flat File, JDBC, Web Services) and optimizing performance.
Hands-on development experience with BeanShell and JavaScript for custom SailPoint rules and workflows.
Knowledge of Active Directory and LDAP protocols.
Experience integrating with SaaS applications and HRIS platforms.
Ability to troubleshoot complex connector configurations and identity reconciliation processes.