Sr. Business Analyst SailPoint IdentityIQ (Hybrid) - Richmond, VA (In-person) - 100% Only locals with valid DL copy.

Job Title: Business Analyst SailPoint IdentityIQ (Hybrid)

Location: Richmond, VA (On-site/In-person required)
Duration: Long Term
Interview Mode: In-person

Job Description:

We are seeking a highly skilled Business Analyst with strong experience in SailPoint IdentityIQ to support ongoing access management initiatives and system enhancements. This hybrid role involves working closely with technical and business stakeholders to implement upgrades, troubleshoot existing workflows, and ensure the system aligns with compliance requirements and operational goals.

Key Responsibilities:

• Manage the upgrade of SailPoint IdentityIQ from version 8.3 to 8.4/8.5, ensuring compatibility with integrations.
• Design and implement a new database for Access History to include current approval workflow data.
• Enable and configure audit logging for the SailPoint environment.
• Identify, troubleshoot, and fix system bugs and workflow inefficiencies.
• Review and optimize current coding, configurations, and business processes to reduce errors and simplify future upgrades.
• Analyze and address TOSC Review Status issues, including their removal or revision.
• Customize and optimize email notifications and workflow timing.
• Configure approval workgroup notifications and manage discrepancies in user notification configurations.
• Reconcile supervisor accounts, including management of disabled accounts.
• Evaluate and improve Active Directory (AD) integration in relation to roles and entitlements.
• Develop workflows for roles with multiple entitlement approvers.
• Automate background check field updates and contractor suspension upon expiration.
• Implement deprovisioning alerts and manage lifecycle states from disabled to deprovisioned.
• Create rehire workflows for reactivating suspended or inactive users.
• Maintain documentation and generate maintenance reports and advanced analytics queries.
• Audit and manage service account inventories.
• Define and enforce onboarding processes, permission sets, and role naming conventions.
• Improve approval workflows for privileged and service accounts to meet policy standards.
• Lead data validation and access model transitions, including certification processes.
• Ensure disabled or inactive accounts are correctly updated and managed.

Required Skills & Qualifications:

• Proven hands-on experience with SailPoint IdentityIQ implementations and upgrades.
• Strong understanding of identity governance, workflow design, and access management best practices.
• Proficiency in writing and reviewing Beanshell scripts, Java code, and XML configurations in SailPoint.
• Experience integrating SailPoint with Active Directory (AD) and other enterprise systems.
• Database design and data management skills specific to identity/access systems.
• Familiarity with audit logging, compliance, and reporting in SailPoint environments.
• Ability to optimize workflows, notifications, and entitlement management.
• Strong analytical, problem-solving, and documentation skills.
• Experience working in regulated (OT/IT) environments is a plus.

Preferred Qualifications:

• SailPoint Certification (e.g., IdentityIQ Engineer or Architect).
• Experience with advanced analytics and identity reporting tools.

Required Skills Matrix: