Apply on Employer Site

MorganFranklin Cyber · 5 days ago

SailPoint IIQ Engineer

United States

Full-time

Remote

Mid Level

$115K/yr - $130K/yr

3+ years exp

MorganFranklin Cyber is a leading professional services firm specializing in comprehensive solutions for cybersecurity, AI, and adjacent services. They are seeking a hands-on SailPoint IdentityIQ (IIQ) Engineer to lead application onboarding development efforts for a large government contractor client, focusing on designing and implementing connectors and driving governance and lifecycle automation.

Cloud SecurityCyber Security

Hiring Manager

Patrick Stokes

Responsibilities

Application onboarding development in SailPoint IIQ: analyze source/target systems, define schemas/entitlement models based on requirements, and configure both OOTB and custom connectors

Configure and customize IIQ: develop rules and workflows using BeanShell/Java. Add customization to existing objects as needed

Implement connectors: AD/Azure AD, JDBC/database connections, cloud and on-prem systems via APIs

Build scalable connectors & scripts: handle complex entitlements, custom attributes, delta reconciliation, and error handling

Enable governance & access review: design rules to certify access, implement SOD policies, evidence collection, and support internal/external audits

Partner with stakeholders: run discovery workshops, capture app requirements, create onboarding playbooks, and provide technical guidance to app teams

Automate and document: CI/CD for IIQ artifacts, version control, runbooks, and standardized templates for onboarding

Qualification

SailPoint IdentityIQCustom connectorsLifecycle automationGovernance featuresAD/Azure AD connectorsBeanShell/Java scriptingAPI integrationsDocumentation skillsSoft skills

Required

3–5+ years hands-on with SailPoint IdentityIQ implementing custom connectors, lifecycle and governance features

Application onboarding experience across a mix of SaaS, on-prem, and custom apps

Connector expertise: AD/Azure AD, JDBC/LDAP connectors, SCIM/REST APIs, comfortable with custom connectors

Scripting & programming: BeanShell/Java for IIQ rules/tasks; familiarity with JSON/XML and API integrations

Identity fundamentals: RBAC/ABAC, SOD, certification campaigns, access requests, approval schemas, role mining

Testing and debugging troubleshooting issues during development and testing phases, and error remediation in IIQ

Documentation & stakeholder engagement: must be able to document technical requirements, solution design additions and changes, deployment runbooks, and the ability to participate in client requirement discussions and translate requirements into designs