SailPoint Architect
1 month ago
Charlotte, United States
Gardner Resources Consulting, LLC
Full time
JOB DESCRIPTION:
- Responsible to lead the day-to-day plan, design, architect of IAM Identity governance and administration program; and support implementation
- Lead and conduct discussion effectively and create solution artifacts such as business requirements documents, solution design documents, etc.
- Provide technical leadership and guidance on IAM best practices, ensuring compliance with industry standards and security regulations
- Proactively identify and resolve program technical bottle necks, risks and dependencies and lead the team to resolutions
- Articulate the business value of IAM new features/capabilities and leverage IAM features/capabilities to fulfill business requests
- Create and provide regular presentation/roadmaps/status updates to leadership (business and executive level)
General requirements:
- The person must be able to work in a team and independently.
- Able to understand business requirements and convert them into technical artifacts.
- Able to work based on US Eastern or Central time zone.
- 100% remote work
- Team player
Technical requirements:
- Overall 15+ years of hands-on working experience in the Identity governance and administration area at the enterprise level.
- The person must understand and gather business requirements, translate them to technical requirements and design secure and scalable solutions to meet the tactical and strategic objectives.
- The person must be able to create architectural patterns and solution design documents.
- Hands-on technical experience is required to conduct the POC and solution design in a development environment.
- Must have the ability to lead discussions with various stakeholders, including business, engineering teams, and operation teams.
- Provisioning & De-provisioning: (10+ years)
- Architect, design, plan and implement a full end-to-end Identity Governance and Administration solution.
- Working experience to build the request access process with automation.
- Hands-on experience in provisioning various business applications access, on-premises, cloud, and SaaS.
- Must be able to design the entitlement data warehouse with a better user experience
- Working knowledge of building different workflows and processes for managing account and application lifecycle.
- Implementation experience of the self-service request process with automation
- Should have experience in building the RBAC model
- Directory & Data service space: (5+ years)
- Must have expertise in designing LDAP directory schema and data modelling.
- Working experience of LDAP protocol
- Must have REST APIs and data mapping knowledge
- Good knowledge of open protocol such as SCIM, LDAP, etc.
- Should have knowledge of Graph database and GraphQL language
- Integration with cloud and on-premises systems including Azure AD, GCP, Salesforce, etc.
- Integration: (5+ years)
- Must have experience in integrating with different data stores (LDAP, SQL, NoSQL, REST, etc.) and business systems for provisioning & de-provisioning
- Should have a working knowledge of infrastructure component integration such as ServiceNow, HR system, and logging framework.
- Integration with cloud and on-premises systems, including Ping, GCP, AWS, Azure AD, Salesforce, etc.
- Should have REST API and JSON working experience.
- Access Review: (2+ years)
- Should have a good understanding of security and compliance requirements
- Should know about implementing the different types of access review models such as transfer and periodic review
- Working knowledge of IAM products and technology is required.
- SailPoint, Saviynt, Omada, Oracle Identity Manager, CA Identity & Governance Manager, ForgeRock Identity Governance, etc.
- PingDirectory, ForgeRock Directory, Oracle Directory
Preferred:
- CISSP certification
- Expertise in other IAM subdomains such as Access Management, Privileged Access Management, Directory & Data Service
- Bachelor's degree in computer science, information technology or other related fields
- Development experience in any technologies, Java, PowerShell, etc.