Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : SailPoint IdentityIQ
Good to have skills : NA
Minimum 7.5 Year(s) Of Experience Is Required
Educational Qualification : 15 years full time education
Summary:
The SailPoint IIQ SME serves as the organization s primary technical authority on Identity Governance and Administration (IGA), leading the design, implementation, and continuous improvement of the IdentityIQ platform to ensure secure, compliant, and efficient identity lifecycle management.
Roles & Responsibilities:
- Platform Ownership & Architecture
- Serve as the technical lead and go-to expert for all SailPoint IIQ deployments, upgrades, and integrations
- Design and maintain the IIQ architecture including connectors, workflows, rules, and role models
- Lead platform upgrades, patch management, and environment migrations
- Identity Governance
- Define and implement Joiner-Mover-Leaver (JML) lifecycle processes
- Build and manage Role-Based Access Control (RBAC) frameworks and entitlement catalogs
- Develop and maintain Separation of Duties (SoD) policies and conflict matrices
- Access Certification & Compliance
- Design and run access certification/recertification campaigns
- Ensure alignment with regulatory frameworks such as SOX, HIPAA, GDPR, ISO 27001, and PCI-DSS
- Support internal and external audits by producing IIQ compliance reports and evidence packages
- Connector & Integration Development
- Develop and maintain connectors for applications including Active Directory, LDAP, SAP, Workday, ServiceNow, Azure AD, and custom apps
- Integrate IIQ with ITSM, HRMS, and PAM tools via REST/SOAP APIs and flat-file feeds
- Customization & Development
- Write and maintain BeanShell/Java rules, custom workflows, email templates, and task definitions
- Develop custom reports and dashboards using Jasper Reports or IIQ s native reporting engine
- Governance & Documentation
- Maintain solution design documents, runbooks, and operational guides
- Define IAM policies, standards, and best practices for the organization
- Stakeholder Engagement
- Collaborate with business owners, application teams, HR, and security to gather and translate requirements into IIQ configurations
- Provide training and knowledge transfer to L1/L2 support teams
- Act as the escalation point for complex IAM incidents and service requests
Professional & Technical Skills:
- Experience in IAM, with 5–7+ years hands-on SailPoint IIQ
- IIQ Modules LCM, Compliance Manager, Workflows, Role Management, Provisioning
- Development BeanShell, Java, XML, REST/SOAP APIs
- Directories Active Directory, LDAP, Azure AD
- Connectors SAP, Workday, ServiceNow, Oracle, flat-file, JDBC
- Compliance SOX, HIPAA, GDPR, PCI-DSS audit support
- Databases MySQL, MS SQL, or Oracle (for IIQ backend)
- Platforms Linux/Windows server environments, Tomcat application server
- SailPoint Certified IdentityIQ Engineer or Architect certification
- Experience with SailPoint IdentityNow (cloud) or IIQ-to-IDN migration
- Familiarity with CyberArk, BeyondTrust, or other PAM tools
- Exposure to Zero Trust architecture principles
- ITIL Foundation certification
- Experience in large-scale enterprise environments (10,000+ identities)
Additional Information:
- The candidate should have minimum 7.5 years of experience in SailPoint IdentityIQ.
- This position is based at our Bengaluru office.
- A 15 years full time education is required.
