Sr. SailPoint Engineer- ISC & IIQ | Remote, USA

Optiv Security Inc.

Job Overview

Location

6 Locations

Job Type

Full-time

Full Job Description

📋 Description

• Maintain and optimize SailPoint IdentityIQ (IIQ) and Identity Security Cloud (ISC) environments to ensure healthy identity lifecycle management, access requests, certifications, and policy enforcement.
• Build, tune, and troubleshoot workflows, transforms, and policies including SoD (Segregation of Duties) and RBAC models within IIQ and ISC.
• Monitor and resolve aggregation failures, account correlation issues, provisioning errors, and campaign anomalies by adjusting schedules, thresholds, and connector configurations.
• Manage Virtual Appliance (VA) health, connector upgrades, and connectivity to sources such as Active Directory, Entra ID, HRIS systems, SaaS applications, and databases.
• Develop and maintain low-code workflows, access request catalog items, and access profiles to support automated identity governance processes.
• Conduct monthly operational health checks and deliver KPI-driven reports on trends, incidents, changes, and compliance risk signals.
• Serve as Tier-2 escalation point for Tier-1 issues: triage, contain, restore, perform root cause analysis, and implement durable fixes to prevent recurrence.
• Create, update, and automate runbooks and standard operating procedures (SOPs) to reduce manual effort and improve operational consistency.
• Plan and execute low-risk changes—including connector tuning, attribute mapping updates, workflow edits, and catalog revisions—within ITSM governance frameworks.
• Support release readiness activities: validate changes in sandbox environments, coordinate UAT, document deployment plans, and prepare rollback strategies.
• Translate operational data and system alerts into clear, actionable insights for client IAM owners and application teams.
• Advise on access modeling best practices, including the distinction between Access Profiles and Roles, birthright vs. requestable access, and campaign design.
• Provide backlog intake and sizing for Tier-3 architecture-level changes requiring code modifications or complex redesigns.
• Integrate SailPoint with Okta and Entra ID via SCIM/API to govern downstream identity flows, align joiner/mover/leaver processes, and validate group and entitlement posture.
• Support CyberArk PAM integrations by enabling entitlement visibility, facilitating approval workflows within SailPoint, and assisting with privilege variance clean-up campaigns.
• Feed identity events and metrics to SIEM/SOC systems via webhooks and APIs to enrich tickets and contribute to correlation use cases such as excessive privilege detection and orphaned account identification.
• Collaborate with compliance teams to deliver attestation evidence, align control testing cadence, and respond to audit requests for SOC 2, SOX, HIPAA, or PCI.
• Utilize ITSM tools (ServiceNow, Jira), Confluence for knowledge management, and basic API tooling (Postman, Curl) to interact with IIQ v3 endpoints.
• Apply basic scripting (PowerShell or Python) for automation tasks, data fixes, and operational efficiency improvements.

🎯 Requirements

• 5+ years of verifiable IAM operations or consulting experience, with at least 2 years of hands-on production experience in SailPoint IIQ and ISC.
• Recent (within 12 months) hands-on production experience with SailPoint ISC/IDP.
• Proven ownership of Tier-2 responsibilities including aggregation, correlation, provisioning, certifications, workflow/transform tuning, catalog hygiene, and VA/connector health.
• Solid understanding of identity lifecycle (joiner/mover/leaver), request/approval patterns, SoD policy design, and RBAC in large, distributed environments.
• Comfortable interpreting logs, metrics, and SLAs to turn noisy failures into stable, automated solutions.
• Strong written and verbal communication skills to deliver clear incident timelines, executive status updates, and precise change plans.

🏖️ Benefits

• Work/life balance
• Professional training resources
• Creative problem-solving opportunities on unique, complex projects
• Volunteer opportunities through the "Optiv Chips In" program
• Technology and infrastructure provided to productively work remotely from home
• Inclusive company culture supported by Employee Resource Groups

Skills & Technologies

Python

AWS

GCP

Senior

Remote

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

AI Job Fit Analysis

Pro

See exactly how your profile matches this role — strengths, skill gaps, and what to do about them.

Optiv Security Inc.

Visit Website

About Optiv Security Inc.

Optiv Security provides cybersecurity advisory, technology integration, and managed security services to large enterprises and government agencies. The company designs, implements, and operates layered defenses that combine strategy, risk management, identity protection, cloud security, threat intelligence, and incident response. It partners with hundreds of technology vendors to deliver vendor-neutral solutions, helping clients reduce complexity, close security gaps, and maintain compliance across hybrid environments.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.