Job Specifications
The IAM Systems Engineer is responsible for deployment, configuration, integration, and operation of IAM systems that implement IAM regulatory controls.
We are seeking technical expertise in SailPoint Identity Security Cloud (ISC) and IdentityIQ to design, implement, and manage IAM solutions across the organization. The ideal candidate will possess a strong technical background in identity governance, lifecycle management, access control, and access certification, and will work closely with information security, infrastructure, and application teams to ensure the security, compliance, and completeness of user access controls.
Position Responsibilities
Provide strong technical support to the IAM engineering team and our SailPoint Migration partners through transitions from IdentityIQ to SailPoint Identity Security Cloud (ISC)
Provide operational support for IdentityIQ while migration to ISC in progress
Collaborate in the development, configuration, and administration of the SailPoint ISC platform to design, implement, and automate LCM, RBAC, access provisioning, and more
Design, develop, and implement automated processes for user lifecycle management, access requests, and access certifications to improve efficiency and reduce manual interventions.
Build custom connectors for business applications for automated provisioning and user access data aggregation
Provide second and third-level support for IAM-related issues; investigate, troubleshoot, and resolve issues related to SailPoint, system integrations, or identity management workflows
Work with risk and compliance, internal audit, external regulatory examiners to demonstrate the design, operation and effectiveness of IAM controls
Collaborate with Compliance, Audit, HR, and business units to maintain regulatory compliance (e.g., SOX, FFIEC, GLBA, PCI-DSS)
Required Experience
Minimum of 5 years’ very strong engineering experience on SailPoint IGA platforms
Must have at least 1 years strong engineering experience on SailPoint ISC
Can have a combination of up to 4 additional years of experience on ISC, IdentityNow, or IdentityIQ
Up to 2 years of operational support for SailPoint platforms may be substituted for engineering experience
Up to 2 years of strong engineering experience on other IGA platforms such as Okta, Saviynt, or Microsoft Entra may be substituted for SailPoint experience
Minimum of 5 years’ experience with formal system engineering discipline through rigorous and systematic application of engineering principles and best practices to design, develop, and deploy systems and solutions
Experience integrating SailPoint ISC or IIQ with Active Directory, Office 365, UKG Pro, Workday, Avanti, ServiceNow, Splunk, Okta, and other similar platforms
Minimum 5 years’ experience building custom objects, tasks, rules, applications, workflows, email templates, etc. in SailPoint
Minimum of 1 years’ experience with JavaScript, PowerShell, Python, or similar scripting/programing languages
Experience migrating organizations from SailPoint IIQ to SailPoint ISC or other on-prem IGA platforms onto SailPoint ISC required
Minimum 2 years' experience building custom connectors using SCIM, REST APIs, Web Services, JDBC, LDAP, etc.
4+ years of experience with System Development Lifecycle (SDLC) – requirements analysis, design, implementation, testing, deployment, and maintenance
In-depth understanding of security protocols and frameworks like LDAP, AD, SAML, OAuth, and OpenID Connect
In-depth understanding of Identity Governance and Administration (IGA), Single Sign-On (SSO), Multifactor Authentication (MFA), and Privileged Access Management (PAM)
In-depth understanding of Active Directory, Azure AD, Ping Identity, Okta, and similar platforms
Proficiency with Jira, Ivanti, ServiceNow, or similar ITSM platforms required
Demonstrated understanding of information security policies, standards, and industry leading practices
5+ years of experience writing IAM or Information Security procedures, processes, and standards
Required Education
Associates or bachelor’s degree in Computer Engineering, Computer Science, Information Security, or related field required.
Associate or bachelor’s degree in other fields with 8+ years’ experience in IAM or related fields acceptable
SailPoint Identity Security Professional Certification and/or Identity Security Engineer Certification strongly preferred
Professional security management certification such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials are a plus
Required Skills And Abilities
Self-driven, detail-oriented, with excellent written and verbal communication skills, interpersonal, and collaborative skills
Ability to communicate complex and technical concepts to diverse audiences, orally and in writing, in an easily understood and actionable manner
High degree of initiative, dependability,