Identity & Security Architect

SailPoint, the industry leader in Identity Security, is looking for an Identity professional to contribute to our company's internal corporate Identity program. The Identity Security Engineer will support SailPoint's internal Identity & Access Management (IAM) & Privileged Access Management (PAM) systems and operations. This position will report to the Manager of Identity Security Architecture & Engineering and will work with cross-functional teams across IT, Cybersecurity, DevOps & Desktop Engineering, Support, Professional Services, and Corporate Compliance. Job Responsibilities

• Design, build, configure and deploy SailPoint's IAM and PAM services & solutions, including identity & accounts management, access management policies & controls, identity verification & authentication, secrets management, privileged access management, and audit & reporting.
• Conduct analysis, generate designs & procedures, define use-cases with stakeholders, maintain inventories, and develop documentation & diagrams.
• Support IAM infrastructure operations, including troubleshooting user issues, change management, and system administration & maintenance.
• Monitor capacity and performance needs; participate in rotational on-call support for the IAM infrastructure.
• Provide regular reports to leadership regarding security, data governance, capacity, performance, usage and licensing.
• Lead projects, provide security consultations, and develop detailed project plans for PoC, Pilot, Production rollouts.
• Recommend and implement modifications to enhance usability & reliability while analyzing the existing infrastructure.
• Foster collaboration with business analysts, app/system owners, architects and engineers to advance automation, integrations, and enterprise services & capabilities.
• Provide training on changes to system architecture/UX, document support procedures, and analyze user feedback to maximize value to the business.
• Develop and implement SOPs, SLAs, supporting workflows and approval criteria.
• Collect and analyze identity and security metrics to improve policy configurations and UX.

• 2-4 years of experience using, installing, and administering IAM solutions.
• Solid understanding of IAM concepts, controls, terminology & technology.
• Experience administering tier-zero identity infrastructure providing AAA services (eg, MS Active Directory, Azure Active Directory), including MFA services & controls.
• Preferred: Bachelor's degree in Information Security, Cybersecurity, Computer Science, Engineering.
• Solid knowledge of IAM patterns with Active Directory, GPO, Azure Active Directory, and cloud platforms (AWS, GCP).
• Experience with PowerShell scripting.
• Strong customer service and interpersonal skills.
• Knowledge of security standards such as NIST & GDPR.
• Experience managing infrastructure & endpoints in an enterprise setting; strong troubleshooting and problem-solving skills.
• Ability to work with stakeholders and end-users globally; able to communicate complex topics to non-technical stakeholders, from individual contributors to C-level.
• Ability to produce and maintain detailed technical documentation, business processes and training material.
• Basic understanding of QA methodology (usability, performance, automated testing, test scripts/cases/plans) and familiarity with agile processes.
• Must be flexible and able to undertake a wide variety of tasks while driving results.
• Must be a US Citizen.

Preferred Skills

• 4+ years administering and supporting IAM across large enterprise environments; industry certifications desirable.
• Extensive experience with Microsoft IAM products and services (AD, AAD, Conditional Access, Azure AD Connect, MIM, PIM, Azure MFA).
• Experience with SailPoint IdentityNow and/or IdentityIQ (IIQ) IGA products.
• Experience with SSO, Federated Identity Management, and virtual directory concepts.
• Experience building and maintaining ISO27001, SOC2, FedRAMP & SOX environments.
• Experience with APIs and Scripting languages (eg, JavaScript, Python).
• Experience with JSON, XML, SOAP, REST web services.

• Within 30 days: SailPoint Overview; Meet the Team & Key Stakeholders; Mentorship; Understand the Environment; Tools & Systems.
• Within 60 days: Enablement & Training; Shadowing & Analysis; Stakeholder Engagement.
• Within 90 days: Lead a Project; Enhance System Reliability; Develop & Report; Proactive Collaboration; Continuous Learning.

Benefits and Compensation

Benefits and compensation vary by location and role. The package may include a corporate bonus plan, role-specific commissions, equity participation, and a base salary range typical for the US-based market.

Base salary estimate for US-based employees: $67,500 - $113,752.00. Salaries for other locations are competitive for the home location. Benefits Overview

• Health and wellness coverage: Medical, dental, and vision
• Disability coverage: Short-term and long-term
• Life insurance and AD&D
• Flexible spending accounts (FSA/HSA)
• 401(k) with company matching
• Flexible vacation policy and 8 paid holidays
• Sick leave and parental leave
• Employee Assistance Program (EAP) and Care Counselors
• Voluntary benefits: Legal, Critical Illness, Accident, Hospital Indemnity, Pet Insurance
• Home location-based salary considerations

SailPoint is an equal opportunity employer. All qualified candidates will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other protected status. Reasonable accommodations are available on request.