Sail Point Security Cloud Architect

SailPoint Identity Security Cloud Job Description Role Description & Scope The Identity & Access Governance (IAG) Solutions Architect is the technical authority for the SailPoint Identity Security Cloud platform and its integration with authoritative identity sources, downstream applications, and supporting infrastructure. This role is responsible for designing and governing the enterprise identity correlation model, joiner/mover/leaver (JML) automation, entitlement review campaigns, and secure application onboarding patterns. The architect reports to Enterprise Architecture and works closely with IAM engineering teams, application owners, audit and risk stakeholders, and platform partners to ensure secure, compliant, and scalable identity services across the enterprise. The scope of this role spans: Authoritative identity sources and identity correlation Application onboarding and integration patterns Identity lifecycle automation and governance controls Cross-platform integration with ServiceNow and downstream systems Responsibilities & Deliverables Design and govern the enterprise identity correlation (golden record) model, including attribute mappings and identity resolution rules Architect joiner, mover, and leaver (JML) lifecycle automation, birthright access models, and policy-driven access changes Define and standardize application onboarding patterns, including connector-based integrations and validated manual feeds Design and govern entitlement review and access certification campaigns aligned to audit and risk requirements Establish reconciliation, aggregation, and exception-handling controls for identity data and access records Govern SailPoint platform configuration, upgrade planning, and feature adoption Produce solution designs, architecture decision records (ADRs), and integration specifications Support audit and compliance activities, including evidence design and control mapping Collaborate with ServiceNow architects to define and maintain entitlement catalog synchronization and request workflows Qualifications & Domain Knowledge Required 5+ years of experience as a Solutions Architect or Senior Engineer in identity and access management Deep hands-on experience with SailPoint Identity Security Cloud (ISC / ISC+), including identity correlation, lifecycle management, access requests, certification campaigns, and connectors Strong understanding of Workday HCM integration patterns for employee lifecycle events Experience designing JML automation at enterprise scale Familiarity with regulated environments and compliance frameworks such as

SOC 1, SOC

2, SOX, and NYDFS Proven ability to produce architecture artifacts (solution designs, data flows, sequence diagrams, ADRs) Strong communication skills, with the ability to translate complex technical concepts for audit and executive stakeholders Preferred SailPoint certification (Engineer or Architect) Experience integrating non-employee identity sources (e.g., vendor management systems) Familiarity with Active Directory group structures and mainframe identity concepts Experience retiring legacy identity middleware platforms Knowledge of Separation of Duties (SoD) rule design and conflict detection Background in financial services, insurance, or similarly regulated industries