Principal SailPoint Engineer | Remote, USA

This position will be fully remote and can be hired anywhere in the continental U.S. 

The Principal SailPoint Engineer will work closely with our clients, SOC team, and various business units to lead the design, implementation and management of identity governance solutions using SailPoint ISC. In this role, you will work to ensure seamless integration and lifecycle management of user identities and access across our clients environments. 

How you'll make an impact 

• The Identity and Access Management (IAM) Engineer will be responsible for designing, implementing, and managing SailPoint ISC to safeguard sensitive information and ensure compliance with regulatory standards within our client environments. 

• SailPoint ISC will be the primary tool in scope, with required supporting knowledge in Cyberark and Okta 

• You will collaborate with cross-functional teams, lead IAM initiatives, and contribute to the development and execution of the client's overall security strategy. 

• Review and provide feedback on established strategies and multi-year plans incorporating all parts of IGA and IAM: access requests, lifecycle events, provisioning functions, role-based access, separation of duties, access certifications 

• Architect, design, develop and troubleshoot IGA solutions with the ability to provide technical and architectural design documentation, recommendations, specifications, use cases, requirements and test cases 

• Create solutions that drive full automation, self-service, and resiliency 

• Implement customizations to address customer business requirements. 

• Participate in security and application troubleshooting and incident problem resolutions with other infrastructure teams, including storage, messaging, server, and network. 

• The right candidate will collaborate with various stakeholders, including IT teams, security teams, and business units, to implement effective and efficient identity and access management solutions. The difficulty of the work increases with the complexity of the client's IT environment and the evolving landscape of cybersecurity threats. 

• Provide engineering support for complex and recurring incidents related to IAM platforms and perform root causes analysis in accordance with customer policies and standards. 

• Responsible for the standards, design, and operation of SailPoint and elated environments.  

• Provides expertise in all aspects of the following technologies: Azure Entra ID, Microsoft technologies Active Directory (AD), Active Directory Lightweight Directory Services (ADLDS), Active Directory Federated Services (ADFS), Sailpoint, CyberArk, Okta, BeyondTrust and Public Key Infrastructure (PKI) are included as key technologies.  

What we're hiring for 

• Bachelor’s degree in Engineering, Information Technology, Computer Science, or related discipline required.  

• 5+ years of experience as a senior level IDAM engineer preferred.  

• 5+ years of engineer level Sailpoint experience required.  

•  Experience with AWS/GCP cloud environments a bonus. 

• Microsoft Certified IT Professional (Enterprise Administrator) preferred.  

• CISSP certification is a plus. Microsoft technical certifications are preferred.  

• Knowledge and experience with Identity Management technologies like SSO, SCIM, OAuth, SAML, Encryption, PKI. 

• Knowledge of Microsoft technology such as Server, AD, DNS, Group Policy, and Office 365/Exchange, Azure, Azure Entra ID. 

• Excellent communication skills, both verbal and written are required. 

• Solid understanding of how Role Based Access Control (RBAC) works in large, distributed environments. 

• Solid understanding of cybersecurity principles and best practices. 

• Excellent problem-solving and analytical skills. 

• Experience working with PAM systems. 

• Experience with MFA protocols and techniques.