Job Description

Position Summary
We are seeking an experienced Identity and Access Management (IAM) professional with over 12-15 years of expertise in Identity Governance, Access Management, and IT Security. The ideal candidate will have strong hands-on experience in SailPoint IdentityIQ/IdentityNow, Ping Federate, and ForgeRock, as well as a deep understanding of identity lifecycle management, access reviews, role-based access control (RBAC), and application onboarding. This role involves design, implementation, customization, and support of enterprise-level IAM solutions across multiple platforms.
Key Responsibilities
Lead end-to-end implementation of SailPoint IdentityIQ (IIQ) and IdentityNow solutions including installation, configuration, customization, and integration with enterprise systems.
Conduct requirement analysis and design workshops with stakeholders to define IAM strategies, architecture, and business processes.
Develop custom connectors, workflows, forms, rules, and reports to meet specific business requirements.
Implement lifecycle management (Joiner-Mover-Leaver) workflows and ensure seamless access provisioning/deprovisioning.
Configure and manage Access Certifications, Policy Violations, Business and IT roles, and Entitlement management.
Integrate SailPoint with Active Directory/LDAP, Azure AD, Databases, and Cloud applications.
Work on custom plugins, BeanShell scripting, and REST API-based integrations for non-standard requirements.
Collaborate with cross-functional teams to define IAM architecture, data models, and governance frameworks.
Troubleshoot and resolve critical production issues, ensuring compliance and availability of IAM services.
Participate in upgrades, patching, and environment migrations for IAM platforms.
Work with Ping Identity, ForgeRock, and other SSO/OAuth2.0 technologies for federated identity and access management.
Provide technical leadership, mentorship, and guidance to junior IAM engineers.
Support audit and compliance activities and assist in security certification reviews.
Required Skills and Experience
Well exp in Identity and Access Management (IAM).
Strong expertise in SailPoint IdentityIQ (7.x/8.x) and IdentityNow-installation, configuration, customization, and upgrade.
Experience integrating with Active Directory, Azure AD, Databases (Oracle, SQL Server, MySQL), and other target systems.
Hands-on programming experience using Java, J2EE, BeanShell, JDBC, REST APIs, and related technologies.
Familiarity with Ping Federate / PingOne / ForgeRock OpenAM/OpenIDM for SSO and federation.
Experience designing and implementing RBAC, Access Reviews, Certification Campaigns, and Password Management.
Strong knowledge of IT Security concepts, OAuth2.0, SAML, OIDC, and authentication/authorization frameworks.
Experience working in Windows and Linux environments with tools like Jenkins, Git/Bitbucket, Jira, Maven.
Excellent analytical, troubleshooting, and communication skills.
Ability to interact effectively with technical and business stakeholders.
Certifications (Preferred)
SailPoint Certified IdentityIQ Engineer
SailPoint Certified IdentityNow Professional
CyberArk Trustee Certification (added advantage)
Security+ (CompTIA) or CISSP preferred
Java Certifications (SCJP/SCWCD)
Education
Bachelor's or Master's degree in Computer Science, Information Technology, or related discipline.

Skills Required