Esta oferta de empleo ya no se encuentra disponible. Continúa tu búsqueda de puestos aquí.
Security Architect
Bengaluru
Job No. atci-5498577-s2015355
Full-time
Descripción De La Posición
Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : SailPoint IdentityNow
Good to have skills : NA
Minimum 3 year(s) of experience is required
Educational Qualification : 15 years full time education
Summary:
The SailPoint ISC Analyst/Senior Analyst is responsible for the day-to-day administration, monitoring, and operational support of the Identity Security Cloud platform. This role ensures platform stability, operational excellence, and timely execution of identity governance processes. The analyst manages identity lifecycle events, access certifications, and provisioning workflows while maintaining compliance with organizational security policies and regulatory requirements. Senior Analysts additionally provide technical guidance to junior team members and handle more complex troubleshooting scenarios.
Roles & Responsibilities:
- Administer and monitor the SailPoint ISC environment including tenant configuration, source connections, and identity profiles
- Monitor scheduled tasks, aggregation jobs, identity refresh operations, and provisioning queues for timely execution
- Review platform health dashboards, system notifications, and audit logs escalate anomalies and performance issues
- Manage Virtual Appliance (VA) clusters for on-premises source connectivity monitor VA health and perform updates
- Support platform configuration changes including identity attribute mappings, correlation rules, and transform logic
- Execute and oversee Joiner-Mover-Leaver (JML) identity lifecycle events troubleshoot failed lifecycle state transitions
- Process access request fulfillment including approval routing, provisioning verification, and exception handling
- Remediate failed provisioning operations analyze error logs, retry operations, and coordinate with application owners
- Manage identity profile configurations, attribute sync rules, and lifecycle state definitions
- Support onboarding of new sources and applications validate identity correlation and account aggregation accuracy
- Configure, launch, and monitor access certification campaigns per the governance calendar and compliance schedule
- Support certifiers and reviewers during campaign execution address questions, provide guidance, and resolve issues
- Ensure timely campaign completion follow up with non-responsive reviewers and escalate incomplete certifications
- Generate compliance and audit evidence reports for SOX, HIPAA, GDPR, PCI-DSS, and ISO 27001 requirements
- Maintain audit trail integrity produce certification reports, remediation evidence, and access review documentation
- Review Separation of Duties (SoD) policy violations and coordinate remediation actions with business owners
- Monitor and maintain source connections for Active Directory, Azure AD, SaaS applications, HR systems, and databases
- Troubleshoot connector failures, aggregation errors, account correlation issues, and data synchronization problems
- Perform source configuration updates including attribute mappings, transform modifications, and entitlement discovery rules
- Support REST API integrations with ITSM platforms (ServiceNow, Jira) and HRMS systems (Workday, SuccessFactors)
- Validate data quality, identity uniqueness, and entitlement accuracy across connected systems
- Create and modify identity transforms for attribute manipulation, data normalization, and business logic implementation
- Configure access profiles, roles, and entitlement definitions within the ISC governance framework
- Maintain email notification templates, approval workflows, and lifecycle event triggers
- Write basic cloud rules (JavaScript) for custom attribute calculations and identity processing logic
- Develop standard reports using ISC reporting engine create custom queries for operational metrics and compliance data
- Serve as L2 support for IAM incidents triage, diagnose, and resolve ISC-related issues within established SLAs
- Manage operational backlog including access provisioning requests, account unlocks, and entitlement modifications
- Document root cause analyses for major incidents implement preventive measures and update operational procedures
- Maintain operational runbooks, standard operating procedures, and knowledge base articles for common scenarios
- Coordinate with SailPoint Support for platform issues, product bugs, and feature requests requiring vendor intervention
Professional & Technical Skills:
- ISC Modules: Identity Lifecycle Management, Access Certifications, Provisioning, Roles & Access Profiles, Search & Discovery
- Configuration: Transforms, identity profiles, correlation rules, lifecycle states, email templates
- Light Development: Basic JavaScript for cloud rules, REST API calls, JSON manipulation
- Directories & Sources: Active Directory, Azure AD, LDAP (account management, group memberships, troubleshooting)
- Connectors: AD, Azure AD, SaaS connectors (Okta, ServiceNow, Workday, Salesforce), JDBC, Delimited File familiarity with SCIM and Web Services connectors
- Compliance, SOX, HIPAA, GDPR, PCI-DSS — certification campaign management and audit evidence generation
- Authentication: Understanding of SAML, OAuth 2.0, OIDC, SCIM 2.0 protocols for SaaS application integration
- ITSM, ServiceNow, Jira, or equivalent — incident management, SLA tracking, change management
- SailPoint Certified IdentityIQ or ISC certification
- Experience with Virtual Appliance deployment, configuration, and cluster management
- Familiarity with SailPoint IdentityIQ (on-premises) for comparison and migration scenarios
- Exposure to cloud platforms (AWS, Azure, GCP) and understanding of cloud security principles
- Knowledge of PowerShell or Python for automation and data manipulation tasks
- ITIL Foundation certification
Additional Information:
- The candidate should have minimum Analyst: 3–4 years in IAM operations, with 1–2 years hands-on SailPoint ISC administration Senior Analyst, 3-4 years in IAM, with 2–3+ years SailPoint ISC operational experience
- This position is based at our Bengaluru office.
- A 15 years full time education is required.
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : SailPoint IdentityNow
Good to have skills : NA
Minimum 3 year(s) of experience is required
Educational Qualification : 15 years full time education
Summary:
The SailPoint ISC Analyst/Senior Analyst is responsible for the day-to-day administration, monitoring, and operational support of the Identity Security Cloud platform. This role ensures platform stability, operational excellence, and timely execution of identity governance processes. The analyst manages identity lifecycle events, access certifications, and provisioning workflows while maintaining compliance with organizational security policies and regulatory requirements. Senior Analysts additionally provide technical guidance to junior team members and handle more complex troubleshooting scenarios.
Roles & Responsibilities:
- Administer and monitor the SailPoint ISC environment including tenant configuration, source connections, and identity profiles
- Monitor scheduled tasks, aggregation jobs, identity refresh operations, and provisioning queues for timely execution
- Review platform health dashboards, system notifications, and audit logs escalate anomalies and performance issues
- Manage Virtual Appliance (VA) clusters for on-premises source connectivity monitor VA health and perform updates
- Support platform configuration changes including identity attribute mappings, correlation rules, and transform logic
- Execute and oversee Joiner-Mover-Leaver (JML) identity lifecycle events troubleshoot failed lifecycle state transitions
- Process access request fulfillment including approval routing, provisioning verification, and exception handling
- Remediate failed provisioning operations analyze error logs, retry operations, and coordinate with application owners
- Manage identity profile configurations, attribute sync rules, and lifecycle state definitions
- Support onboarding of new sources and applications validate identity correlation and account aggregation accuracy
- Configure, launch, and monitor access certification campaigns per the governance calendar and compliance schedule
- Support certifiers and reviewers during campaign execution address questions, provide guidance, and resolve issues
- Ensure timely campaign completion follow up with non-responsive reviewers and escalate incomplete certifications
- Generate compliance and audit evidence reports for SOX, HIPAA, GDPR, PCI-DSS, and ISO 27001 requirements
- Maintain audit trail integrity produce certification reports, remediation evidence, and access review documentation
- Review Separation of Duties (SoD) policy violations and coordinate remediation actions with business owners
- Monitor and maintain source connections for Active Directory, Azure AD, SaaS applications, HR systems, and databases
- Troubleshoot connector failures, aggregation errors, account correlation issues, and data synchronization problems
- Perform source configuration updates including attribute mappings, transform modifications, and entitlement discovery rules
- Support REST API integrations with ITSM platforms (ServiceNow, Jira) and HRMS systems (Workday, SuccessFactors)
- Validate data quality, identity uniqueness, and entitlement accuracy across connected systems
- Create and modify identity transforms for attribute manipulation, data normalization, and business logic implementation
- Configure access profiles, roles, and entitlement definitions within the ISC governance framework
- Maintain email notification templates, approval workflows, and lifecycle event triggers
- Write basic cloud rules (JavaScript) for custom attribute calculations and identity processing logic
- Develop standard reports using ISC reporting engine create custom queries for operational metrics and compliance data
- Serve as L2 support for IAM incidents triage, diagnose, and resolve ISC-related issues within established SLAs
- Manage operational backlog including access provisioning requests, account unlocks, and entitlement modifications
- Document root cause analyses for major incidents implement preventive measures and update operational procedures
- Maintain operational runbooks, standard operating procedures, and knowledge base articles for common scenarios
- Coordinate with SailPoint Support for platform issues, product bugs, and feature requests requiring vendor intervention
Professional & Technical Skills:
- ISC Modules: Identity Lifecycle Management, Access Certifications, Provisioning, Roles & Access Profiles, Search & Discovery
- Configuration: Transforms, identity profiles, correlation rules, lifecycle states, email templates
- Light Development: Basic JavaScript for cloud rules, REST API calls, JSON manipulation
- Directories & Sources: Active Directory, Azure AD, LDAP (account management, group memberships, troubleshooting)
- Connectors: AD, Azure AD, SaaS connectors (Okta, ServiceNow, Workday, Salesforce), JDBC, Delimited File familiarity with SCIM and Web Services connectors
- Compliance, SOX, HIPAA, GDPR, PCI-DSS — certification campaign management and audit evidence generation
- Authentication: Understanding of SAML, OAuth 2.0, OIDC, SCIM 2.0 protocols for SaaS application integration
- ITSM, ServiceNow, Jira, or equivalent — incident management, SLA tracking, change management
- SailPoint Certified IdentityIQ or ISC certification
- Experience with Virtual Appliance deployment, configuration, and cluster management
- Familiarity with SailPoint IdentityIQ (on-premises) for comparison and migration scenarios
- Exposure to cloud platforms (AWS, Azure, GCP) and understanding of cloud security principles
- Knowledge of PowerShell or Python for automation and data manipulation tasks
- ITIL Foundation certification
Additional Information:
- The candidate should have minimum Analyst: 3–4 years in IAM operations, with 1–2 years hands-on SailPoint ISC administration Senior Analyst, 3-4 years in IAM, with 2–3+ years SailPoint ISC operational experience
- This position is based at our Bengaluru office.
- A 15 years full time education is required.
Requisitos
15 years full time education
