SailPoint Engineer

Description

Job Summary:

Our client is seeking a SailPoint Engineer to join their Identity and Access Management (IAM) team. This role is critical in designing, implementing, and maintaining SailPoint IdentityIQ solutions to support enterprise identity governance. The ideal candidate will have a strong infrastructure background, hands-on experience with SailPoint IdentityIQ, and scripting capabilities. You will play a key role in advancing their cybersecurity posture and identity management capabilities while supporting critical initiatives that ensure a secure and efficient IT infrastructure at the U.S. Department of Transportation (DOT).

Responsibilities:

• Architect, develop, and maintain SailPoint IdentityIQ solutions, including workflows, rules, roles, policies, and connectors.

• Coordinate with external stakeholders to implement Identity Lifecycle Management (ILM) and Mandatory User Re-Authentication (MUR) solutions.

• Integrate SailPoint infrastructure with ServiceNow and maintain ILM across development, testing, and production environments.

• Lead application onboarding efforts and manage access certification campaigns.

• Troubleshoot and maintain SailPoint connectors and integrations, ensuring high availability and performance.

• Ensure seamless interoperability between SailPoint and enterprise systems such as Active Directory, ServiceNow, and CyberArk.

• Integrate SailPoint with CyberArk to enhance privileged access management and organizational security posture.

• Support ILM workflows for PAM tools and Active Directory, including Continuous Diagnostics and Mitigation (CDM) Dashboard integrations.

• Write, read, and modify scripts using PowerShell (required), BeanShell (preferred), and Python (nice to have).

• Administer and support Active Directory, including both front-end (account management, Group Policy) and back-end (AD Schema, PKI, PowerShell scripting) components.

• Maintain and optimize SQL Server 2019 databases, including backups, indexing, integrity checks, and maintenance plans.

• Interpret and work with data models and Entity Relationship Diagrams (ERDs) to support identity data management.

• Conduct proof of concepts, pilots, and demos to evaluate technologies and map functional requirements to technical solutions.

• Evaluate trade-offs between competing solutions and produce quantitative, analysis-driven recommendations.

• Produce clear documentation, including research analysis, evaluation criteria, and rationale for technology decisions.

• Deploy software updates, report on SailPoint IdentityIQ operations, and support remediation of security vulnerabilities.

• Install, deploy, and configure SailPoint IdentityIQ in enterprise environments.

• Provide on-call and after-hours support, participate in annual disaster recovery testing, and document recovery plans.

• Ensure compliance with change management processes and enhance reporting capabilities for dashboard compliance.

Qualifications

• Must have at a minimum a High School Diploma.

• SailPoint Certified IdentityIQ Engineer is highly preferred.

• 8+ years of experience in IT engineering or business solutions engineering, including architectural design, proof of concept development, and technical documentation.

• 3+ years of hands-on experience with SailPoint IdentityIQ, including designing and implementing identity lifecycle management processes.

• 3+ years of hands-on experience with SailPoint IdentityIQ, including administering and configuring SailPoint in large enterprise environments.

• 3+ years of hands-on experience with SailPoint IdentityIQ, including integrating SailPoint with Active Directory and HR systems.

• Proficiency in PowerShell scripting (required), with the ability to read and modify Python and BeanShell scripts.

• Experience developing and troubleshooting SailPoint connectors, workflows, and access certification campaigns.

• Strong understanding of Active Directory, including front-end: account provisioning, group policy management, and back-end: AD schema, PKI, and PowerShell automation.

• Experience with SQL Server 2019, including installation, configuration, maintenance, performing backups, indexing, integrity checks, and troubleshooting.

• Demonstrated ability to integrate SailPoint with ServiceNow and support ILM across development, test, and production environments.

• Experience supporting Privileged Access Management (PAM) workflows and CDM dashboard integrations.

• Experience integrating SailPoint with CyberArk for PAM.

• Familiarity with data modeling, relational schemas, and interpreting Entity Relationship Diagrams (ERDs).

Other:

• Ability to attain the Position of Public Trust clearance.

• Must be able to complete “eApp National Background Investigation Services (NBIS)” form.

Skills

sailpoint, Identity access management, Active directory, Security, Identity management, Access, scripting, powershell, beanshell, identityiq, Servicenow, Azure, aws, Cyberark

Top Skills Details

sailpoint,Identity access management,Active directory,Security,Identity management,Access,scripting,powershell,beanshell,identityiq,Servicenow

Additional Skills & Qualifications

Soft Skills Required:

- Must have excellent communication skills since they will be meeting with the government customer daily.

- Participate in meetings and provide updates to the COR.

- Ability to explain technical concepts clearly to non-technical stakeholders

- Strong interpersonal and communication skills