SailPoint Solutions Architect
Key Responsibilities
1 SailPoint IdentityIQ Implementation & Configuration
Lead end-to-end SailPoint IIQ implementations, including installation, configuration, and customization.
Design and deploy user provisioning, deprovisioning, and access request workflows.
Configure role-based (RBAC) and attribute-based (ABAC) access control models.
Develop and manage entitlements, access policies, and certification campaigns.
2 Application Integration & Automation
Integrate SailPoint with HR systems (Workday, SAP), Active Directory (AD), LDAP, SaaS apps (Salesforce, ServiceNow), and custom applications.
Implement REST/SOAP API-based integrations for automated user lifecycle management.
Troubleshoot and optimize connector configurations (Flat File, JDBC, Web Services, etc.)
3 Access Governance & Compliance
Design and execute access certification campaigns, SOD (Segregation of Duties) policies, and audit reporting.
Configure out-of-the-box (OOTB) and custom workflows for access reviews.
Ensure compliance with SOX, GDPR, HIPAA, and other regulatory requirements.
4 Customization & Advanced Development
Develop custom rules (BeanShell, JavaScript), workflows, and task definitions to extend SailPoint functionality.
Optimize identity aggregation, correlation, and reconciliation processes.
Implement event-driven automation for real-time access management.
5 Leadership & Collaboration
Serve as the technical SME for SailPoint, guiding development teams and stakeholders.
Conduct architectural reviews, performance tuning, and scalability assessments.
Mentor junior engineers and provide SailPoint best practice guidance.
Required Skills & Qualifications
7+ years of hands-on experience in SailPoint IdentityIQ (configuration, administration, and deployment).
In-depth knowledge of IAM concepts (provisioning, RBAC/ABAC, certifications, audit compliance).
Strong expertise in:
User Lifecycle Management (Joiner-Mover-Leaver processes).
Entitlement Management & Governance (aggregation, role mining, access policies).
Application Onboarding (AD, LDAP, JDBC, REST/SOAP APIs).
Customization (BeanShell, SailPoint workflows, UI customization).
Experience with SailPoint IdentityNow (Cloud IAM) is a plus.
Certifications: SailPoint Certified Architect (preferred).
Soft Skills: Strong problem-solving, communication, and leadership abilities.
Preferred Qualifications
Experience with CI/CD pipelines for SailPoint deployments.
Knowledge of privileged access management (PAM) and multi-factor authentication (MFA).
Familiarity with cloud IAM (Azure AD, AWS IAM, Okta).
Experienced SailPoint Solutions Architect to design, implement, and optimize Identity & Access Management (IAM) solutions using SailPoint IdentityIQ. The ideal candidate will have deep expertise in access governance, lifecycle management, application integration, and automation, with a strong ability to lead technical teams and deliver scalable IAM solutions.
Key Responsibilities
1 SailPoint IdentityIQ Implementation & Configuration
Lead end-to-end SailPoint IIQ implementations, including installation, configuration, and customization.
Design and deploy user provisioning, deprovisioning, and access request workflows.
Configure role-based (RBAC) and attribute-based (ABAC) access control models.
Develop and manage entitlements, access policies, and certification campaigns.
2 Application Integration & Automation
Integrate SailPoint with HR systems (Workday, SAP), Active Directory (AD), LDAP, SaaS apps (Salesforce, ServiceNow), and custom applications.
Implement REST/SOAP API-based integrations for automated user lifecycle management.
Troubleshoot and optimize connector configurations (Flat File, JDBC, Web Services, etc.)
3 Access Governance & Compliance
Design and execute access certification campaigns, SOD (Segregation of Duties) policies, and audit reporting.
Configure out-of-the-box (OOTB) and custom workflows for access reviews.
Ensure compliance with SOX, GDPR, HIPAA, and other regulatory requirements.
4 Customization & Advanced Development
Develop custom rules (BeanShell, JavaScript), workflows, and task definitions to extend SailPoint functionality.
Optimize identity aggregation, correlation, and reconciliation processes.
Implement event-driven automation for real-time access management.
5 Leadership & Collaboration
Serve as the technical SME for SailPoint, guiding development teams and stakeholders.
Conduct architectural reviews, performance tuning, and scalability assessments.
Mentor junior engineers and provide SailPoint best practice guidance.
Required Skills & Qualifications
7+ years of hands-on experience in SailPoint IdentityIQ (configuration, administration, and deployment).
In-depth knowledge of IAM concepts (provisioning, RBAC/ABAC, certifications, audit compliance).
Strong expertise in:
User Lifecycle Management (Joiner-Mover-Leaver processes).
Entitlement Management & Governance (aggregation, role mining, access policies).
Application Onboarding (AD, LDAP, JDBC, REST/SOAP APIs).
Customization (BeanShell, SailPoint workflows, UI customization).
Experience with SailPoint IdentityNow (Cloud IAM) is a plus.
Certifications: SailPoint Certified Architect (preferred).
Soft Skills: Strong problem-solving, communication, and leadership abilities.
Preferred Qualifications
Experience with CI/CD pipelines for SailPoint deployments.
Knowledge of privileged access management (PAM) and multi-factor authentication (MFA).
Familiarity with cloud IAM (Azure AD, AWS IAM, Okta).
Key job details
About Virtusa
Teamwork, quality of life, professional and personal development: values that Virtusa is proud to embody. When you join us, you join a team of 27,000 people globally that cares about your growth — one that seeks to provide you with exciting projects, opportunities and work with state of the art technologies throughout your career with us.
Great minds, great potential: it all comes together at Virtusa. We value collaboration and the team environment of our company, and seek to provide great minds with a dynamic place to nurture new ideas and foster excellence.
Virtusa is an Equal Opportunity Employer. All applicants will receive fair and impartial treatment without regard to race, color, religion, sex, national origin, ancestry, age, legally protected physical or mental disability, protected veteran status, status in the U.S. uniformed services, sexual orientation, gender identity or expression, marital status, genetic information or on any other basis which is protected under applicable federal, state or local law.
Applicants may be required to attend interviews in person or by video conference. In addition, candidates may be required to present their current state or government-issued ID during each interview. All candidates must be authorized to work in the USA.
Learn more
Awards and recognition
Syncing your Virtusa Information
Syncing Complete
Exporting your personal Virtusa brand items
Export Complete
Check your downloads folder for files and implementation instructions.
Assets are now available in your profile for future editing and use.
Loading your existing headshots
Please select any one of the images below
Downloading Secure Assets
Signing out