Required Skills: Identity & Access Management , SailPoint IdentityIQ , Java, Beanshell, XML REST/SOAP APIs Rules, workflows, tasks, application onboarding JDBC, LDAP, SCIM, Active Directory

Job Description

Job Title: SailPoint IdentityIQ (IIQ) Lead Engineer

Overview

We are seeking a highly experienced SailPoint IdentityIQ (IIQ) Lead Engineer to architect, implement, and optimize enterprise-wide Identity & Access Management (IAM) solutions. This role requires deep SailPoint IIQ expertise, strong engineering skills, and the ability to lead IAM initiatives across security, compliance, and business teams.

Key Responsibilities

Solution Architecture & Design

• Lead the end-to-end design and architecture of SailPoint IdentityIQ (workflows, provisioning, connectors, integrations).

• Translate complex business and security needs into scalable IAM technical designs.

• Define and enforce best practices, coding standards, and development patterns for SailPoint.

Development & Customization

• Configure, customize, and extend IIQ modules:

  • Lifecycle Manager

  • Compliance Manager

  • Access Request

  • Certification Campaigns

  • SoD (Segregation of Duties)

• Develop custom rules, workflows, task definitions, and connectors using:

  • Java, Beanshell, XML, REST/SOAP

Identity Governance & Access Controls

• Implement RBAC, ABAC, and automated identity lifecycle processes.

• Support access certifications, governance policies, and compliance controls.

• Build integrations with directories, HR systems, cloud apps, and enterprise applications.

Operations, Troubleshooting & Optimization

• Troubleshoot IdentityIQ issues including provisioning failures, task errors, and performance bottlenecks.

• Ensure stability of connectors, aggregation jobs, and identity refresh tasks.

• Maintain system health, conduct log analysis, and support production environments.

Compliance & Security

• Ensure IAM processes meet regulatory standards:

  • SOX, HIPAA, GDPR, PCI

• Improve audit readiness and optimize access review campaigns.

Leadership & Collaboration

• Mentor junior IAM/SailPoint developers and analysts.

• Collaborate with InfoSec, Infrastructure, HR, App Owners, Compliance, and Architecture teams.

• Lead Agile ceremonies, sprint planning, technical sessions, and documentation efforts.

Required Skills & Qualifications

• 5–10+ years in Identity & Access Management.

• 3–7+ years hands-on SailPoint IdentityIQ experience.

• Strong experience with:

  • Java, Beanshell, XML

  • REST/SOAP APIs

  • Rules, workflows, tasks, application onboarding

  • JDBC, LDAP, SCIM, Active Directory

• Experience implementing RBAC/ABAC and identity lifecycle automation.

• Knowledge of SSO/federation technologies (SAML, OAuth, OIDC) is a plus.

• Understanding of Zero Trust, identity governance, and least privilege.

• Familiarity with CI/CD, Git, Jenkins, containers, or cloud IAM (AWS/Azure/GCP) preferred.

Preferred Qualifications

• SailPoint IdentityIQ Engineer or Architect Certification.

• Experience with cloud identity platforms:

  • SailPoint IDN, Saviynt, Okta, Ping.

• Experience leading IAM modernization or transformation initiatives.

• Strong communication, documentation, and stakeholder management skills.