SailPoint Architect

JOB DESCRIPTION:

1. Responsible to lead the day-to-day plan, design, architect of IAM Identity governance and administration program; and support implementation
2. Lead and conduct discussion effectively and create solution artifacts such as business requirements documents, solution design documents, etc.
3. Provide technical leadership and guidance on IAM best practices, ensuring compliance with industry standards and security regulations
4. Proactively identify and resolve program technical bottle necks, risks and dependencies and lead the team to resolutions
5. Articulate the business value of IAM new features/capabilities and leverage IAM features/capabilities to fulfill business requests
6. Create and provide regular presentation/roadmaps/status updates to leadership (business and executive level)

General requirements:

1. The person must be able to work in a team and independently.
2. Able to understand business requirements and convert them into technical artifacts.
3. Able to work based on US Eastern or Central time zone.
4. 100% remote work
5. Team player

Technical requirements:

1. Overall 15+ years of hands-on working experience in the Identity governance and administration area at the enterprise level.
2. The person must understand and gather business requirements, translate them to technical requirements and design secure and scalable solutions to meet the tactical and strategic objectives.
3. The person must be able to create architectural patterns and solution design documents.
4. Hands-on technical experience is required to conduct the POC and solution design in a development environment.
5. Must have the ability to lead discussions with various stakeholders, including business, engineering teams, and operation teams.
6. Provisioning & De-provisioning: (10+ years)
7. Architect, design, plan and implement a full end-to-end Identity Governance and Administration solution.
8. Working experience to build the request access process with automation.
9. Hands-on experience in provisioning various business applications access, on-premises, cloud, and SaaS.
10. Must be able to design the entitlement data warehouse with a better user experience
11. Working knowledge of building different workflows and processes for managing account and application lifecycle.
12. Implementation experience of the self-service request process with automation
13. Should have experience in building the RBAC model
14. Directory & Data service space: (5+ years)
15. Must have expertise in designing LDAP directory schema and data modelling.
16. Working experience of LDAP protocol
17. Must have REST APIs and data mapping knowledge
18. Good knowledge of open protocol such as SCIM, LDAP, etc.
19. Should have knowledge of Graph database and GraphQL language
20. Integration with cloud and on-premises systems including Azure AD, GCP, Salesforce, etc.
21. Integration: (5+ years)
22. Must have experience in integrating with different data stores (LDAP, SQL, NoSQL, REST, etc.) and business systems for provisioning & de-provisioning
23. Should have a working knowledge of infrastructure component integration such as ServiceNow, HR system, and logging framework.
24. Integration with cloud and on-premises systems, including Ping, GCP, AWS, Azure AD, Salesforce, etc.
25. Should have REST API and JSON working experience.
26. Access Review: (2+ years)
27. Should have a good understanding of security and compliance requirements
28. Should know about implementing the different types of access review models such as transfer and periodic review
29. Working knowledge of IAM products and technology is required.
30. SailPoint, Saviynt, Omada, Oracle Identity Manager, CA Identity & Governance Manager, ForgeRock Identity Governance, etc.
31. PingDirectory, ForgeRock Directory, Oracle Directory

Preferred:

1. CISSP certification
2. Expertise in other IAM subdomains such as Access Management, Privileged Access Management, Directory & Data Service
3. Bachelor's degree in computer science, information technology or other related fields
4. Development experience in any technologies, Java, PowerShell, etc.