Lead Iga Engineer

Job Title: Lead IGA Engineer

Location: Bury

Job Type: Full-Time

Job Description:

We are seeking a skilled and experienced Identity Governance & Administration (IGA) Engineer to deliver best-in-class design, implementation and management of our IGA solution in a large-scale, fast-paced retail environment.

You will be joining the Identity & Access Management (IAM) team reporting to the Head of IAM, all of which is part of our growing Information Security function.

This role requires deep SailPoint ISC expertise, strong operational knowledge and the ability to work effectively across security, infrastructure, application and business teams.

Key Responsibilities:

• Lead the design, configuration, and deployment of SailPoint ISC, including identity lifecycle access certifications, provisioning, and access request workflows
• Collaborate with business and technical stakeholders to gather requirements and translate them into scalable SailPoint configurations
• Integrate SailPoint ISC with enterprise systems and applications (both on-prem and cloud) via out-of-the-box connectors or custom-built connectors
• Implement identity governance policies, role models, access reviews, and segregation of duties (SoD) controls
• Monitor and maintain the health of the SailPoint ISC platform, troubleshoot issues, and implement enhancements
• Automate provisioning and de-provisioning for user access across multiple systems
• Participate in security audits and contribute to compliance efforts by providing evidence and supporting documentation
• Stay current with SailPoint updates, new feature,s and industry best practices in identity and access management

• Proven experience within Identity and Access Management, with significant hands-on experience with SailPoint (preferably ISC)
• Strong understanding of identity lifecycle management, JML, RBAC/ABAC/PBAC, access certification and provisioning
• Experience with SailPoint features such as:
  
  • IdentityNow configuration and deployment
  • Custom connector development
  • REST APIs and web services
  • Rules, roles, polices, and workflows in SailPoint ISC
• Familiarity with directory services (AD, Entra ID), HR system,s and enterprise applications
• Solid understanding of Windows/Linux systems, and cloud platforms (AWS, Azure, GCP)
• Proficient in scripting and development languages such as PowerShell, Java or Python, and experienced at utilising SailPoint’s own REST APIs
• Excellent problem-solving skills and attention to detail
• Strong written and verbal communication and collaboration skills
• Detail-oriented with a strong security mindset and ability to think proactively.

• SailPoint certification (e.g. SailPoint IdentityNow Engineer or Architect)
• Background in broader IAM concepts such as PAM, SSO, or MFA.
• Security certifications such as CISSP, CISM or CCSP are a plus.
• Knowledge of security frameworks, regulatory requirements, and compliance standards (e.g. NIST, PCI DSS, GDPR).