Business Analyst

The role requires expertise in SailPoint IdentityIQ access management best practices. Candidate will perform system enhancements, bug fixes, audit enablement, workflow improvements, and process optimization to ensure seamless operations and compliance.

Key Responsibilities:

• Manage the upgrade of SailPoint from version 8.3to 8.4/8.5, ensuring minimal disruption and compatibility with existing integrations.
• Design and implement a new database for Access History to incorporate current approval workflow history.
• Enable and configure audit logging across the SailPoint environment.
• Identify, troubleshoot, and correct bugs and process inefficiencies in the current implementation.
• Conduct comprehensive reviews of current coding and business processes, recommending improvements to reduce errors and facilitate future upgrades.
• Evaluate and address TOSC Review Status malfunctions, including potential removal or modification.
• Customize and optimize email notification templates and timing for various workflows.
• Configure notifications to approval workgroups and address user management nuances (e.g., OT System User Table managers vs. notification recipients).
• Manage and reconcile supervisor accounts, including those with disabled statuses.
• Assess roles vs. entitlement requirements for Active Directory (AD) integration, ensuring workflows function correctly regardless of integration presence.
• Develop role workflows supporting multiple approvers for associated entitlements.
• Modify background check fields and automate suspension processes upon expiration for contractor accounts.
• Implement deprovisioning alerts to system administrators and oversee lifecycle management from disabled to deprovisioned states.
• Develop and implement rehire workflows that reactivate suspended, disabled, or inactive user attributes.
• Document SailPoint maintenance reports and develop advanced analytics queries.
• Maintain and audit service account inventories.
• Define and enforce onboarding processes, role definitions, permission sets, and approval group naming conventions within the OT environment.
• Review and enhance account approval workflows, particularly for privileged and service accounts, ensuring compliance with organizational policies.
• Lead data validation, cleanup efforts, and transitions to discretionary access models, including certification processes.
• Address TOSC review status updates and ensure inactive or disabled accounts are appropriately managed.

Required Skills & Qualifications:

• Proven experience with SailPoint IdentityIQ implementations and upgrades.
• Strong knowledge of identity governance concepts, workflow automation, and access management.
• Experience with database design and management related to identity systems.
• Familiarity with audit logging, compliance, and reporting in SailPoint environments.
• Skilled in writing and reviewing complex SailPoint Beanshell or Java code and XML configurations.
• Experience integrating SailPoint with Active Directory and other enterprise systems.
• Ability to analyze and optimize notification systems, approval workflows, and role/entitlement models.
• Excellent problem-solving skills and attention to detail.
• Strong documentation and communication skills.
• Experience working in OT or regulated environments is a plus.

Preferred:

• SailPoint certification.
• Experience with advanced analytics and reporting tools.