Lead SailPoint Engineer

The SailPoint Engineer is responsible for designing, implementing, and maintaining identity access management (IAM) and identity governance administration (IGA) solutions using SailPoint. This role includes identifying opportunities for automation, driving the implementation of solutions to create value, and enhancing IAM and IGA capabilities. Key responsibilities include application onboarding, workflow automation, and access policy configuration.

1. Collaborate with key stakeholders to analyze business and technical requirements to onboard applications to SailPoint
2. Configure access policies and ensure compliance with security and audit standards
3. Deliver high-quality, secure SailPoint solutions including enhancements, upgrades, and optimizations to meet evolving business and security needs
4. Perform hands-on configuration and customization of the SailPoint IdentityNow or Identity Security Cloud platform
5. Configure and integrate SailPoint IdentityNow or Identity Security Cloud with other applications, directories, and systems as required
6. Document the design, configuration, and customizations made to the SailPoint IdentityNow or Identity Security Cloud platform
7. Work closely with the IAM Architect, implementation partner, and other team members to ensure seamless delivery of the IAM solution
8. Define and enforce access control policies, including RBAC, least privilege principle, and segregation of duties (SoD)
9. Monitor system performance and optimize configurations
10. Work with application and security teams to troubleshoot provisioning, authentication, and access-related issues
11. Ensure compliance with security policies, audit requirements, and industry standards
12. Support audits by providing documentation, logs, or reporting as needed

• In-depth knowledge of SailPoint features and functionality
• Hands-on engineering experience with IGA capabilities including application onboarding, RBAC, access request configuration, access reviews, and lifecycle events
• Understanding of IAM concepts like RBAC, SOD, and attribute-based access control
• Knowledge of data integration tools and connectors used with SailPoint
• Strong knowledge of SailPoint architecture, configurations, capabilities, and workflows
• Experience with IAM and IGA best practices and industry standards

• Bachelor's degree in Computer Science, security, or a related field (or equivalent experience)
• 5+ years in IAM or security engineering
• SailPoint Certified Engineer (IdentityNow or Identity Security Cloud)
• 3+ years of hands-on technical IAM engineering experience
• 2+ years of SailPoint Identity Security Cloud or IdentityNow engineering experience
• Experience with ForgeRock/Ping Identity is a plus
• Experience with JAVA, PowerShell, REST API, BeanShell, and Database Technologies

#LI-Hybrid

High school degree or equivalent required unless otherwise noted above

Boston

Full time

$160,290.00 - $195,910.00

The job posting range is the lowest to highest salary we believe we would pay for this role at the time of posting. The range may be modified in the future. An employee's pay within this range will be based on relevant education, qualifications, certifications, experience, skills, performance, shift, travel, and organizational needs. This job is also eligible for variable pay.

We offer a comprehensive package including paid time off, medical/dental/vision insurance, 401(k), and well-being benefits.

We encourage diverse candidates to apply and bring their true colors, perspectives, and experiences. We are committed to an inclusive workplace and supporting your career development. Learn more about our culture and opportunities on our website. Join our Talent Community to stay informed. We value work/life balance and wellness.