Senior IAM Systems Engineer III – SailPoint ISC - Remote
IT & Digital/IT
LHH
$44.00 - $73.00 per Hour
Glen allen, VirginiaContractor
IT
IT & Digital
LHH is working with a Financial Services company based on the East Coast that is looking to hire a SailPoint Consultant to join our team for a 1 year project. The role will be 100% remote. Candidates MUST have 7 years of SailPoint IIQ experience and at least 2 years of SailPoint ISC to be considered.
Candidates MUST be willing to work as a w2 employee of LHH to be considered.
We are seeking technical expertise in SailPoint Identity Security Cloud (ISC) and IdentityIQ to lead the design, implementation, and management of IAM solutions across the organization. The ideal candidate will possess a strong technical background in identity governance, lifecycle management, access control, and access certification, and will work closely with information security, infrastructure, and application teams to ensure the security, compliance, and completeness of user access controls.
Position Accountabilities
· Provide strong technical leadership and support to the IAM engineering team and our SailPoint Migration partners as our client transitions from IdentityIQ to SailPoint Identity Security Cloud (ISC)
· Lead the development, configuration, and administration of the SailPoint ISC platform to design, implement, and automate LCM, RBAC, access provisioning, and more
· Design, develop, and implement automated processes for user lifecycle management, access requests, and access certifications to improve efficiency and reduce manual interventions.
· Build custom connectors for our client’s business applications for automated provisioning and user access data aggregation
· Provide second and third-level support for IAM-related issues; investigate, troubleshoot, and resolve issues related to SailPoint, system integrations, or identity management workflows
· Work with risk and compliance, internal audit, external regulatory examiners to demonstrate the design, operation and effectiveness of IAM controls
· Collaborate with Compliance, Audit, HR, and business units to maintain regulatory compliance (e.g., SOX, FFIEC, GLBA, PCI-DSS)
Position Qualifications
· Minimum of 7 years’ very strong engineering experience on SailPoint IGA platforms:
o Must have at least 2 years’ strong engineering experience on SailPoint ISC
o Can have a combination of up to 5 additional years of experience on ISC, IdentityNow, or IdentityIQ
o Up to 2 years of operational support for SailPoint platforms may be substituted for engineering experience
o Up to 2 years of strong engineering experience on other IGA platforms such as Okta, Saviynt, or Microsoft Entra may be substituted for SailPoint experience
· Minimum of 7 years’ experience with formal system engineering discipline through rigorous and systematic application of engineering principles and best practices to design, develop, and deploy systems and solutions
· Experience integrating SailPoint ISC or IIQ with Active Directory, Office 365, UKG Pro, Workday, Avanti, ServiceNow, Splunk, Okta, and other similar platforms
· Minimum 5 years’ experience building custom objects, tasks, rules, applications, workflows, email templates, etc. in SailPoint
· Minimum of 2 years’ experience with JavaScript, PowerShell, Python, or similar scripting/programing languages
· Experience migrating organizations from SailPoint IIQ to SailPoint ISC or other on-prem IGA platforms onto SailPoint ISC required
· Minimum 2 years' experience building custom connectors using SCIM, REST APIs, Web Services, JDBC, LDAP, etc.
· 4+ years of experience with System Development Lifecycle (SDLC) – requirements analysis, design, implementation, testing, deployment, and maintenance
· In-depth understanding of security protocols and frameworks like LDAP, AD, SAML, OAuth, and OpenID Connect
· In-depth understanding of Identity Governance and Administration (IGA), Single Sign-On (SSO), Multifactor Authentication (MFA), and Privileged Access Management (PAM)
· In-depth understanding of Active Directory, Azure AD, Ping Identity, Okta, and similar platforms
· Proficiency with Jira, Ivanti, ServiceNow, or similar ITSM platforms required
· Demonstrated understanding of information security policies, standards, and industry leading practices
· 5+ years of experience writing IAM or Information Security procedures, processes, and standards
Education
· Bachelor’s degree in Computer Engineering, Computer Science, Information Security, or related field required.
· SailPoint Identity Security Professional Certification and/or Identity Security Engineer Certification strongly preferred
· Professional security management certification such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials are a plus
Skills and Abilities
· Self-driven, detail-oriented, with excellent written and verbal communication skills, interpersonal, and collaborative skills
· Ability to communicate complex and technical concepts to diverse audiences, orally and in writing, in an easily understood and actionable manner
· High degree of initiative, dependability, and ability to work with limited supervision
· High level of personal integrity, as well as the ability to professionally handle confidential matters and procedures
Pay Details: $44.00 to $73.00 per hour
Search managed by: William Staadt
Benefit offerings available for our associates include medical, dental, vision, life insurance, short-term disability, additional voluntary benefits, EAP program, commuter benefits and a 401K plan. Our benefit offerings provide employees the flexibility to choose the type of coverage that meets their individual needs. In addition, our associates may be eligible for paid leave including Paid Sick Leave or any other paid leave required by Federal, State, or local law, as well as Holiday pay where applicable.
Equal Opportunity Employer/Veterans/Disabled
To read our Candidate Privacy Information Statement, which explains how we will use your information, please navigate to https://www-uat.lhh.com/us/en/candidate-privacy
The Company will consider qualified applicants with arrest and conviction records in accordance with federal, state, and local laws and/or security clearance requirements, including, as applicable:
- The California Fair Chance Act
- Los Angeles City Fair Chance Ordinance
- Los Angeles County Fair Chance Ordinance for Employers
- San Francisco Fair Chance Ordinance
Massachusetts Candidates Only: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
Senior IAM Systems Engineer III – SailPoint ISC - Remote
IT & Digital/IT
LHH
$44.00 - $73.00 per Hour
Glen allen, VirginiaContractor
IT
IT & Digital
LHH is working with a Financial Services company based on the East Coast that is looking to hire a SailPoint Consultant to join our team for a 1 year project. The role will be 100% remote. Candidates MUST have 7 years of SailPoint IIQ experience and at least 2 years of SailPoint ISC to be considered.
Candidates MUST be willing to work as a w2 employee of LHH to be considered.
We are seeking technical expertise in SailPoint Identity Security Cloud (ISC) and IdentityIQ to lead the design, implementation, and management of IAM solutions across the organization. The ideal candidate will possess a strong technical background in identity governance, lifecycle management, access control, and access certification, and will work closely with information security, infrastructure, and application teams to ensure the security, compliance, and completeness of user access controls.
Position Accountabilities
· Provide strong technical leadership and support to the IAM engineering team and our SailPoint Migration partners as our client transitions from IdentityIQ to SailPoint Identity Security Cloud (ISC)
· Lead the development, configuration, and administration of the SailPoint ISC platform to design, implement, and automate LCM, RBAC, access provisioning, and more
· Design, develop, and implement automated processes for user lifecycle management, access requests, and access certifications to improve efficiency and reduce manual interventions.
· Build custom connectors for our client’s business applications for automated provisioning and user access data aggregation
· Provide second and third-level support for IAM-related issues; investigate, troubleshoot, and resolve issues related to SailPoint, system integrations, or identity management workflows
· Work with risk and compliance, internal audit, external regulatory examiners to demonstrate the design, operation and effectiveness of IAM controls
· Collaborate with Compliance, Audit, HR, and business units to maintain regulatory compliance (e.g., SOX, FFIEC, GLBA, PCI-DSS)
Position Qualifications
· Minimum of 7 years’ very strong engineering experience on SailPoint IGA platforms:
o Must have at least 2 years’ strong engineering experience on SailPoint ISC
o Can have a combination of up to 5 additional years of experience on ISC, IdentityNow, or IdentityIQ
o Up to 2 years of operational support for SailPoint platforms may be substituted for engineering experience
o Up to 2 years of strong engineering experience on other IGA platforms such as Okta, Saviynt, or Microsoft Entra may be substituted for SailPoint experience
· Minimum of 7 years’ experience with formal system engineering discipline through rigorous and systematic application of engineering principles and best practices to design, develop, and deploy systems and solutions
· Experience integrating SailPoint ISC or IIQ with Active Directory, Office 365, UKG Pro, Workday, Avanti, ServiceNow, Splunk, Okta, and other similar platforms
· Minimum 5 years’ experience building custom objects, tasks, rules, applications, workflows, email templates, etc. in SailPoint
· Minimum of 2 years’ experience with JavaScript, PowerShell, Python, or similar scripting/programing languages
· Experience migrating organizations from SailPoint IIQ to SailPoint ISC or other on-prem IGA platforms onto SailPoint ISC required
· Minimum 2 years' experience building custom connectors using SCIM, REST APIs, Web Services, JDBC, LDAP, etc.
· 4+ years of experience with System Development Lifecycle (SDLC) – requirements analysis, design, implementation, testing, deployment, and maintenance
· In-depth understanding of security protocols and frameworks like LDAP, AD, SAML, OAuth, and OpenID Connect
· In-depth understanding of Identity Governance and Administration (IGA), Single Sign-On (SSO), Multifactor Authentication (MFA), and Privileged Access Management (PAM)
· In-depth understanding of Active Directory, Azure AD, Ping Identity, Okta, and similar platforms
· Proficiency with Jira, Ivanti, ServiceNow, or similar ITSM platforms required
· Demonstrated understanding of information security policies, standards, and industry leading practices
· 5+ years of experience writing IAM or Information Security procedures, processes, and standards
Education
· Bachelor’s degree in Computer Engineering, Computer Science, Information Security, or related field required.
· SailPoint Identity Security Professional Certification and/or Identity Security Engineer Certification strongly preferred
· Professional security management certification such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials are a plus
Skills and Abilities
· Self-driven, detail-oriented, with excellent written and verbal communication skills, interpersonal, and collaborative skills
· Ability to communicate complex and technical concepts to diverse audiences, orally and in writing, in an easily understood and actionable manner
· High degree of initiative, dependability, and ability to work with limited supervision
· High level of personal integrity, as well as the ability to professionally handle confidential matters and procedures
Pay Details: $44.00 to $73.00 per hour
Search managed by: William Staadt
Benefit offerings available for our associates include medical, dental, vision, life insurance, short-term disability, additional voluntary benefits, EAP program, commuter benefits and a 401K plan. Our benefit offerings provide employees the flexibility to choose the type of coverage that meets their individual needs. In addition, our associates may be eligible for paid leave including Paid Sick Leave or any other paid leave required by Federal, State, or local law, as well as Holiday pay where applicable.
Equal Opportunity Employer/Veterans/Disabled
To read our Candidate Privacy Information Statement, which explains how we will use your information, please navigate to https://www-uat.lhh.com/us/en/candidate-privacy
The Company will consider qualified applicants with arrest and conviction records in accordance with federal, state, and local laws and/or security clearance requirements, including, as applicable:
- The California Fair Chance Act
- Los Angeles City Fair Chance Ordinance
- Los Angeles County Fair Chance Ordinance for Employers
- San Francisco Fair Chance Ordinance
Massachusetts Candidates Only: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.