SailPoint Engineer | W2 Role

Remote • Posted 2 hours ago • Updated 2 hours ago

Contract W2

Remote

Depends on Experience

Fitment

Dice Job Match Score™

👾 Reticulating splines...

Job Details

Skills

Data Quality
Collaboration
Continuous Delivery
Continuous Integration
Dashboard
Data Modeling
API
Access Control
Agile
Git
Groovy
HR Management System
Engineering Design
Enterprise Software
FOCUS
Flat File
Management
Forms
IDP
INSPECT
IPS
IQ
JDBC
Java
KPI
LDAP
Auditing
Business Software
Clustering
Database
Directory Services
OIDC
Estimating
Mapping
Microsoft
Microsoft Azure
Microsoft IAS
Scripting
SAP HCM
Release Management
SAFE
SAML
SAP
SAP BASIS
SAP GRC
Modeling
Onboarding
Open Data Protocol
Operational Excellence
Orchestration
Security Operations
Software Development Methodology
Splunk
Sprint
SuccessFactors
SOAP
SOD
SSO
SaaS
SailPoint
Salesforce.com
Scrum
Promotions
Provisioning
Python
RBAC
Real-time
Regulatory Compliance
Servers
Team Leadership
Web Services
Windows PowerShell
Workflow

Summary

Role: SailPoint Engineer 970-1

Location: Louisville, KY/Allentown, PA/Providence RI, or Allentown, PA (Once in a quarter to any of these location)

Duration: 6 months+

Rate: $85/hr on W2 + Benefits

We are seeking a hands-on SailPoint Engineer to support and enhance our SailPoint IdentityIQ (IIQ) platform with a strong focus on application onboarding and access provisioning. You will design and implement end-to-end identity integrations, develop lifecycle event workflows, onboard new applications to IIQ, and ensure reliable provisioning to target systems. This role partners closely with Application Owners, Security, Operations, and Audit to drive consistent identity governance at scale.

Immediate needs will be integrations between SailPoint IdentityIQ (IIQ) and SAP SuccessFactors Employee Central to enable HRdriven identity lifecycle automation (Joiner/Mover/Leaver). You will own the end-to-end engineering from data modeling and connector configuration to policy/rule logic, workflow orchestration, and access certification enablement while partnering closely with our SAP/HR technology organization operating in a SAFe Agile model for planning and delivery.

What You ll Do (Key Responsibilities)

Integration Engineering

Design and implement SailPoint connectors/integrations for SAP SuccessFactors Employee Central (e.g., via OData APIs, SF EC Compound Employee API, IPS, SCIM, flat-file** ingestion as needed).
Build and maintain attribute mappings, transformations, and correlation logic to create/maintain unique digital identities and entitlements.
Engineer HR driven provisioning to downstream directories and apps (e.g., AD/Azure AD, key business apps) using JML events.
Implement delta/near real time feeds, handle edge cases (contingent workers, rehires, LOA, concurrent employment), and ensure resiliency and replay strategies.
Build identity data exports from SailPoint to legacy IGA systems

JML Lifecycle & Governance

Translate HR events (Joiner, Mover, Leaver) into SailPoint lifecycle events, workflows, and policies (e.g., birthright access, department/location changes, manager transitions, deprovisioning).
Implement roles, entitlements, policy violations, SOD checks, and certification campaigns driven by HR attributes.
Develop detection & remediation for orphaned accounts, rehire rules, and multi-contract scenarios within SuccessFactors.

Data Quality & Controls

Define and enforce authoritative source logic, identity uniqueness rules, and account correlation rules.
Build validation, reconciliation, and exception handling to minimize manual remediation.
Instrument monitoring (dashboards, alerts, audit trails); define operational SLIs/SLOs for provisioning latency and data accuracy.

SAFe / Agile Delivery

Participate in PI Planning, backlog refinement, story slicing, and cross team coordination with the SAP Scaled Agile teams (HRIS, SAP Basis, Security).
Provide engineering estimates, produce architecture diagrams, and deliver incremental value via sprints.
Collaborate with product owners, scrum masters, and release train engineers; contribute to system demos and Inspect & Adapt events.

Platform Engineering & Support

Administer, monitor, and optimize the SailPoint Identity IQ platform (app servers, task scheduler, connectors, clustering, job tuning, and logs).
Develop and maintain IIQ objects (rules, workflows, tasks, roles, policies, certifications, forms, email templates, aggregation jobs).
Troubleshoot and resolve production incidents (connector failures, provisioning errors, aggregation/job performance, identity refresh issues).
Maintain environment parity across Dev/Test/Prod and support release management/SDLC with change controls.

Application Onboarding & Provisioning

Lead onboarding of applications to IIQ including scoping, integration design, schema mapping, authoritative/non-authoritative source integration, and access modeling (entitlements/roles).
Implement and tune provisioning connectors (e.g., AD/LDAP, Azure AD/Microsoft Entra ID, databases/JDBC, web services/REST/SOAP, SCIM, SaaS apps).
Build and maintain joiner-mover-leaver (JML) processes, automated birthright access, and role-based access controls (RBAC).
Define and execute account aggregation, entitlement aggregation, and credential management (password sync/management if applicable).
Create certification campaigns and policy controls (SoD, toxic combinations), and enable continuous compliance.

Required Qualifications

47+ years of IAM engineering with SailPoint IdentityIQ and/or IdentityNow (custom rules, workflows, connectors, role model, certifications).
Hands-on integration experience with SAP SuccessFactors Employee Central as an authoritative identity source (preferably using Compound Employee and/or OData; familiarity with IPS/IAS advantageous).
Strong grasp of HR data models (worker/assignment, manager, position, org structures) and practical handling of rehire, LOA, contingent, concurrent employment.
Proficiency with JML automation, correlation rules, and provisioning to AD/Azure AD and common enterprise apps.
Scripting/development: Java (IdentityIQ), BeanShell, Groovy, PowerShell and/or Python for transformations, rules, and operational tooling.
Experience working in SAFe/Scaled Agile environments (PI Planning, story estimation, release planning, demos).
Solid understanding of directory services (LDAP), SSO/SAML/OIDC, SCIM, REST, and webhook/event patterns.
Strong troubleshooting across identity data pipelines, logs, API errors, and connector behavior.

Preferred

SailPoint certifications (Engineer, IdentityIQ/IdentityNow).
Prior delivery of HRdriven provisioning with SAP SuccessFactors at enterprise scale (>10k identities).
Exposure to SAP IAS/IDP, BTP, and downstream SAP app provisioning patterns.
Knowledge of SoD frameworks, GRC integrations, and experience with audit/regulatory requirements.
CI/CD for IAM (Git, pipelines), config as code, and environment promotion strategies.
Experience with data platforms for monitoring (e.g., Splunk, ELK, Azure Monitor) and dashboarding for identity KPIs.

Key Competencies

System thinking & data modeling
API integration and rule logic design
Agile delivery & stakeholder communication
Risk & control mindset (SOD, least privilege)
Operational excellence (observability, runbooks, SLAs)

Tools & Technologies

SailPoint IdentityIQ
SAP SuccessFactors EC (Compound Employee, OData)
SAP IAS/IPS
SCIM/REST
SAML/OIDC
AD/Azure AD
Java/BeanShell/Groovy/PowerShell/Python
Git/CI-CD
SQL
JSON/XML
Postman

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 90922281
Position Id: 8890983
Posted 2 hours ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

SailPoint Engineer | W2 Role

Dice Job Match Score™

Job Details

Skills

Summary

Similar Jobs