Identity Security Engineer (REMOTE)

SailPoint is the leader in identity security for the cloud enterprise. Our identity security solutions secure and enable thousands of companies worldwide, giving our customers unmatched visibility into the entirety of their digital workforce, ensuring workers have the right access to do their job - no more, no less.
SailPoint is looking for an Identity professional to contribute to our company's internal corporate Identity program. The Identity Security Engineer will be a key team member in our growing and impactful organization as SailPoint continues to scale globally as the industry leader in Identity Security. This position will report to the Manager of Identity Security Architecture & Engineering and will support SailPoint's internal Identity & Access Management (IAM) & Privileged Access Management (PAM) systems and operations.
As an Identity Security Engineer, you will be responsible for the design, installation, operation and maintenance of our IAM infrastructure(s) and capabilities. You will analyze, develop, and build / implement processes & technology to ensure the comprehensive and timely delivery of Identity Security services. Expect to work in cross-functional teams across IT, Cybersecurity, DevOps & Desktop Engineering, Support, Professional Services, and Corporate Compliance in support of the program. Make your mark in a high energy environment at one of the most consistently highest rated "best places to work" in Austin over the past 10 years!
Job Responsibilities

• Design, build, configure and deploy SailPoint's IAM and PAM services & solution(s), including identity & accounts management, access management policies & associated controls, identity verification & authentication, secrets management, privileged access management as well as audit & reporting.
• Conduct analysis, generate designs & procedures, work closely with stakeholders to define use-cases, keep & maintain inventories, and develop comprehensive documentation & diagrams.
• Support IAM infrastructure operations, including troubleshooting user issues, change management, and performing system administration & maintenance.
• Monitor and respond to any capacity and/or performance needs, including rotational on-call support for the IAM infrastructure.
• Provide regular reports to leadership regarding security, data governance, capacity, performance, usage and licensing.
• Lead projects, provide security consultation(s), and develop detailed project plans for various projects & phases (PoC, Pilot, Production rollouts).
• Recommend and implement modifications that will enhance system usability & reliability while analyzing all aspects of the existing infrastructure.
• Proactively establish and grow a broad collaboration with business analysts, app / system owners, architects and engineers focusing on strategy, proliferation of automation & integrations, as well as defining / building and refining enterprise services & capabilities.
• Provide training on changes to system architecture and/or user experience (UX), document support procedures, and analyze user feedback to minimize impacts and maximize value to the business.
• Devise, develop and implement SOPs, SLAs and supporting workflows and approval criteria.
• Collect, analyze and decipher identity and security metrics & event data in order to provide meaningful recommendations to improve current policy configurations, and improvements to the UX.

Essential Skills

• Due FedRAMP requirements, US Citizenship is required to be considered for this role
• 2-4 years of experience using, installing, and administering IAM solutions.
• Solid understanding of IAM concepts, associated controls, terminology & technology.
• Experience administering and integrating tier zero identity infrastructure that provides AAA services such as MS Active Directory, Azure Active Directory, including Multi-Factor Authentication (MFA) services & controls.
• Preferred but not required: Bachelor's degree in Information Security, Cybersecurity, Computer Science, Engineering.
• Solid knowledge / understanding of IAM patterns with Active Directory, GPO, Azure Active Directory, and cloud platforms such as AWS and GCP.
• Experience with developing and using PowerShell scripting.
• Strong customer service and interpersonal skills.
• Knowledge of common security standards such as NIST & GDPR.
• Good knowledge of managing infrastructure & endpoints in an enterprise setting.
• Must be a team player and analytical thinker, with robust troubleshooting skills and a creative problem-solving approach.
• Must be able to work with stakeholders & end-users who are located across the globe.
• Ability to work independently, present and describe highly technical topics in a non-technical manner, and effectively communicate with / educate business stakeholders at all levels, from individual contributors to C-level executives.

• Ability to produce and maintain detailed technical documentation, business processes and training material.
• Basic understanding of QA methodology including usability testing, performance testing, automated testing, test scripts, test cases and test plans.
• Familiarity with continuous delivery model and agile development processes.
• Must be flexible, willing to undertake a wide variety of new and challenging tasks all while driving results.

Preferred Skills

• 4+ years of experience with administering & supporting the technology and associated business processes across the IAM domain for larger enterprise environments; ideally, within the software industry vertical. Industry and platform certifications are desirable.
• Extensive knowledge & experience designing, implementing, managing, and supporting Microsoft's IAM products & services, including Microsoft Active Directory, Azure Active Directory (AAD), Conditional Access Policies, Azure AD Connect, Microsoft Identity Manager (MIM), Privileged Identity Management (PIM), and Azure MFA.
• Experience with implementing, administering, and supporting SailPoint's IdentityNow and/or IdentityIQ (IIQ) IGA products.
• Experience with protocol-based Single Sign-On (SSO), Federated Identity Management (FIM), and virtual directory concepts & technology.
• Experience building, managing & maintaining ISO27001, SOC2, FedRAMP & SOX environments.
• 4+ years of experience with APIs and scripting languages (e.g. JavaScript, Python, etc).
• Experience with JSON, XML, SOAP and REST web-services.

SailPoint is an equal opportunity employer and we welcome everyone to our team. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.