IAM Architect – SailPoint IIQ & Enterprise Identity Security

Location: 100% remote work

Salary: 190 – 200 PLN net/h (B2B via Experis)

Tasks:

• Lead the architecture, design, and roadmap for enterprise IAM capabilities with SailPoint IIQ as the core IGA platform

• Define IAM reference architectures, patterns, and reusable frameworks for identity lifecycle, access governance, and policy enforcement

• Develop architectural governance for IAM capabilities across IGA, PAM, AD, MFA/SSO, and Zero Trust models

• Provide architectural guidance for cloud (Azure/AWS) identity integrations and hybrid identity models

• Architect and oversee the implementation of IdentityIQ modules: Lifecycle Manager, Access Certifications, Compliance Manager, Rule/Workflow development, custom connectors and plugin architecture

• Design scalable models for identity correlation, account aggregation, RBAC, access request workflows, and SoD policies and remediation

• Guide engineering teams on best practices for connector development using REST, JDBC, AD, LDAP, and SaaS systems

• Collaborate with PAM teams to integrate privileged access flows with IGA

• Design and optimize AD identity architecture including OU structure, group strategy, and delegation model

• Partner with SSO/MFA teams to align SailPoint with Azure AD/Entra ID, Okta, or Ping

• Create robust API integration patterns to securely and consistently onboard applications

• Ensure IAM architecture aligns with security controls, regulatory requirements, and audit expectations

• Establish access governance models, SoD frameworks, risk scoring, and policy driven access

• Provide guidance during internal and external audits regarding IAM controls and design decisions

• Promote DevOps practices for IIQ including CI/CD, automated testing pipelines, and version controlled identity configurations

• Drive automation for provisioning, deprovisioning, certifications, and identity lifecycle operations

• Identify opportunities to modernize legacy identity services

• Act as the IAM technical authority across business, IT, and security stakeholders

• Translate business needs into secure, scalable IAM solutions

• Guide developers, engineers, and operations teams and create clear architectural documentation and standards

• Mentor teams on IAM best practices, IAM maturity, and emerging technologies

• Integrate solutions with JDBC, Active Directory, Exchange, SAP, ERP and other systems

• Contribute to designing and implementing workflows

• Apply strong programming skills in Java, J2EE, BeanShell scripting, and databases

• Work with web services, XML, SOAP, and JMS

• Support patch and version upgrade activities

• Communicate clearly with peers and supervisors, providing regular updates to team leads and project managers

Requirements:

• Strong experience in enterprise IAM architecture with SailPoint IdentityIQ

• Expertise in designing IAM reference architectures, governance models, and security patterns

• Solid understanding of cloud identity models across Azure and AWS

• Hands on proficiency with IdentityIQ modules, workflows, custom connectors, and plugin development

• Experience with identity correlation, provisioning models, RBAC, SoD design, and certification processes

• Strong knowledge of REST, JDBC, AD, LDAP, and SaaS integrations

• Experience collaborating with PAM, SSO/MFA, and AD engineering teams

• Knowledge of regulatory and audit requirements related to IAM

• Understanding of DevOps practices and CI/CD pipelines for IGA platforms

• Strong Java, J2EE, BeanShell, and database programming skills

• Experience with XML, SOAP, JMS, and API based integrations

• Ability to contribute to workflow design and system integrations

• Strong communication skills, both written and verbal

Offer:

• Multisport card

• Private healthcare

• Access to an e learning platform

• Group life insurance