Principal SailPoint Engineer | Remote, USA
Apply for this position → Go ad-free with PremiumThis position will be fully remote and can be hired anywhere in the continental U.S.
Optiv is seeking a Principal SailPoint Engineer to join Optiv Security’s 24x7x365 Security Operations Center as a member of the Advanced Fusion Center (AFC) team. The Optiv AFC line of business consists of providing security operations expertise to a robust and growing client base. Our team is comprised of highly technical individuals capable of delivering managed services to clients in all industry verticals.The Optiv AFC specializes in custom-tailored security solutions delivered primarily through three practice teams: Client Engagement, Engineering Operations, and Detection and Response Operations. These teams work in tandem to assist our clients in reaching their security maturity goals.
The Principal SailPointEngineerwill be responsible for following Optiv AFC processes & procedures, as well as managing and maintaining security systems across internal and client environments. The Principal SailPointEngineerwill work closely with Management, Solution Architects, Principal Security Engineers from other internal teams and clients to complete high profile, critical services to existing AFC clients. They will serve as a primary responder for AFC customer systems, taking ownership of client configuration issues, and tracking through resolution.
The ideal candidate will have experience leading the design, implementation and management of identity governance solutions using SailPointISC and IIQ. As well as experience ensuring seamless integration and lifecycle management of user identities and access across clients environments.
How you'll make an impact
The Identity and Access Management (IAM) Engineer will be responsible for designing, implementing, and managingSailPoint ISC and IIQ to safeguard sensitive information and ensure compliance with regulatory standards within our client environments.
SailPoint ISC and IIQ will be the primary tools in scope, with required supporting knowledge in other PAM and IAM products such as: Cyberark and Okta.
You will collaborate with cross-functional teams, lead IAM initiatives, and contribute to the development and execution of the client's overall security strategy.
Review and provide feedback on established strategies and multi-year plans incorporating all parts of IGA and IAM: access requests, lifecycle events, provisioning functions, role-based access, separation of duties, access certifications.
Architect, design, develop and troubleshoot IGA solutions with the ability to provide technical and architectural design documentation, recommendations, specifications, use cases, requirements and test cases.
Create solutions that drive full automation, self-service, and resiliency.
Implement customizations to address customer business requirements.
Participate in security and application troubleshooting and incident problem resolutions with other infrastructure teams, including storage, messaging, server, and network.
The right candidate will collaborate with various stakeholders, including IT teams, security teams, and business units, to implement effective and efficient identity and access management solutions. The difficulty of the work increases with the complexity of the client's IT environment and the evolving landscape of cybersecurity threats.
Provide engineering support for complex and recurring incidents related to IAM platforms and perform root causes analysis in accordance with customer policies and standards.
Responsible for the standards, design, and operation ofSailPoint and elated environments.
Provides expertise in all aspects of the following technologies: Azure Entra ID, Microsoft technologies Active Directory (AD), Active Directory Lightweight Directory Services (ADLDS), Active Directory Federated Services (ADFS),Sailpoint, CyberArk, Okta,BeyondTrustand Public Key Infrastructure (PKI) are included as key technologies.
What we're hiring for
Bachelor's Degree College degree orat least 7 years of related experience and/or training; or equivalent combination of education and experience required.
7-10 years Professional experience in the Information Security field and within discipline required.
7-10 years Advanced information security knowledge in one or more areas to include: Enterprise end-point security products (i.e. McAfee e-Policy Orchestrator, Virus Scan, Anti-Spyware, Host Data Loss Protection, Endpoint Encryption, etc.) Security Information and Event Manager (SIEM), to include:NitroSecurityArcSight Q1 Labs RSA Envision Network Firewall, Web Proxy, E-Mail and Web Gateway etc. to include: Palo Alto / Checkpoint / Juniper / McAfee / Cisco / Blue Coat / Imperva required.
5+ years of experience as a senior level IDAM engineer preferred.
5+ years of engineer levelSailPointexperience required.
Previous SailPoint deployment experience in a production environment preferred.
Experience writing scripts utilizing Java, PowerShell, etc. proffered.
Experience with AWS/GCP cloud environments a bonus.
Knowledge and experience with Identity Management technologies like SSO, SCIM, OAuth, SAML, Encryption, PKI.
Knowledge of Microsoft technology such as Server, AD, DNS, Group Policy, and Office 365/Exchange, Azure, Azure Entra ID.
Excellent communication skills, both verbal and written are required.
Solid understanding of how Role Based Access Control (RBAC) works in large, distributed environments.
Solid understanding of cybersecurity principles and best practices.
Excellent problem-solving and analytical skills.
Experience working with PAM systems.
Experience with MFA protocols and techniques.
GIAC, CISSP, CCSE, CISA, HBSS, NSA, CEH, Cisco Security, Security +, or other security certifications preferred
CCNA, CCDA, CCSA, CCIE, CISSP, CEH, or MCSE preferred
Microsoft technical certifications are preferred.
#LI-TW1
#LI-Remote
What you can expect from Optiv
A company committed to our inclusive value through our Employee Resource Groups
Work/life balance
Professional training resources
Creative problem-solving and the ability to tackle unique, complex projects
Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities.
The ability and technology necessary to productively work remotely/from home (where applicable)
EEO Statement
Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.
Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv’s selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice. If you sign up to receive notifications of job postings, you may unsubscribe at any time.
Similar Jobs
Staff Devops Engineer
The Athletic Media Company · USA
Security Engineer, Cloud
Vercel · USA
Infrastructure Engineer
Gauntlet · USA,Canada
Sr. Zscaler Engineer
Optiv · USA
DevSecOps Engineer
Roadie · USA
Principal SailPoint Engineer | Remote, USA
This position will be fully remote and can be hired anywhere in the continental U.S.
Optiv is seeking a Principal SailPoint Engineer to join Optiv Security’s 24x7x365 Security Operations Center as a member of the Advanced Fusion Center (AFC) team. The Optiv AFC line of business consists of providing security operations expertise to a robust and growing client base. Our team is comprised of highly technical individuals capable of delivering managed services to clients in all industry verticals.The Optiv AFC specializes in custom-tailored security solutions delivered primarily through three practice teams: Client Engagement, Engineering Operations, and Detection and Response Operations. These teams work in tandem to assist our clients in reaching their security maturity goals.
The Principal SailPointEngineerwill be responsible for following Optiv AFC processes & procedures, as well as managing and maintaining security systems across internal and client environments. The Principal SailPointEngineerwill work closely with Management, Solution Architects, Principal Security Engineers from other internal teams and clients to complete high profile, critical services to existing AFC clients. They will serve as a primary responder for AFC customer systems, taking ownership of client configuration issues, and tracking through resolution.
The ideal candidate will have experience leading the design, implementation and management of identity governance solutions using SailPointISC and IIQ. As well as experience ensuring seamless integration and lifecycle management of user identities and access across clients environments.
How you'll make an impact
The Identity and Access Management (IAM) Engineer will be responsible for designing, implementing, and managingSailPoint ISC and IIQ to safeguard sensitive information and ensure compliance with regulatory standards within our client environments.
SailPoint ISC and IIQ will be the primary tools in scope, with required supporting knowledge in other PAM and IAM products such as: Cyberark and Okta.
You will collaborate with cross-functional teams, lead IAM initiatives, and contribute to the development and execution of the client's overall security strategy.
Review and provide feedback on established strategies and multi-year plans incorporating all parts of IGA and IAM: access requests, lifecycle events, provisioning functions, role-based access, separation of duties, access certifications.
Architect, design, develop and troubleshoot IGA solutions with the ability to provide technical and architectural design documentation, recommendations, specifications, use cases, requirements and test cases.
Create solutions that drive full automation, self-service, and resiliency.
Implement customizations to address customer business requirements.
Participate in security and application troubleshooting and incident problem resolutions with other infrastructure teams, including storage, messaging, server, and network.
The right candidate will collaborate with various stakeholders, including IT teams, security teams, and business units, to implement effective and efficient identity and access management solutions. The difficulty of the work increases with the complexity of the client's IT environment and the evolving landscape of cybersecurity threats.
Provide engineering support for complex and recurring incidents related to IAM platforms and perform root causes analysis in accordance with customer policies and standards.
Responsible for the standards, design, and operation ofSailPoint and elated environments.
Provides expertise in all aspects of the following technologies: Azure Entra ID, Microsoft technologies Active Directory (AD), Active Directory Lightweight Directory Services (ADLDS), Active Directory Federated Services (ADFS),Sailpoint, CyberArk, Okta,BeyondTrustand Public Key Infrastructure (PKI) are included as key technologies.
What we're hiring for
Bachelor's Degree College degree orat least 7 years of related experience and/or training; or equivalent combination of education and experience required.
7-10 years Professional experience in the Information Security field and within discipline required.
7-10 years Advanced information security knowledge in one or more areas to include: Enterprise end-point security products (i.e. McAfee e-Policy Orchestrator, Virus Scan, Anti-Spyware, Host Data Loss Protection, Endpoint Encryption, etc.) Security Information and Event Manager (SIEM), to include:NitroSecurityArcSight Q1 Labs RSA Envision Network Firewall, Web Proxy, E-Mail and Web Gateway etc. to include: Palo Alto / Checkpoint / Juniper / McAfee / Cisco / Blue Coat / Imperva required.
5+ years of experience as a senior level IDAM engineer preferred.
5+ years of engineer levelSailPointexperience required.
Previous SailPoint deployment experience in a production environment preferred.
Experience writing scripts utilizing Java, PowerShell, etc. proffered.
Experience with AWS/GCP cloud environments a bonus.
Knowledge and experience with Identity Management technologies like SSO, SCIM, OAuth, SAML, Encryption, PKI.
Knowledge of Microsoft technology such as Server, AD, DNS, Group Policy, and Office 365/Exchange, Azure, Azure Entra ID.
Excellent communication skills, both verbal and written are required.
Solid understanding of how Role Based Access Control (RBAC) works in large, distributed environments.
Solid understanding of cybersecurity principles and best practices.
Excellent problem-solving and analytical skills.
Experience working with PAM systems.
Experience with MFA protocols and techniques.
GIAC, CISSP, CCSE, CISA, HBSS, NSA, CEH, Cisco Security, Security +, or other security certifications preferred
CCNA, CCDA, CCSA, CCIE, CISSP, CEH, or MCSE preferred
Microsoft technical certifications are preferred.
#LI-TW1
#LI-Remote
What you can expect from Optiv
A company committed to our inclusive value through our Employee Resource Groups
Work/life balance
Professional training resources
Creative problem-solving and the ability to tackle unique, complex projects
Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities.
The ability and technology necessary to productively work remotely/from home (where applicable)
EEO Statement
Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.
Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv’s selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice. If you sign up to receive notifications of job postings, you may unsubscribe at any time.