Senior IAM Engineer - SailPoint

The Senior Identity and Access Management (IAM) Engineer is essential in managing and optimizing Verisign’s identity and access management systems. This role is centered on the operational aspects of IAM, focusing on maintaining comprehensive and resilient security, reliability, and efficiency of these systems. The Senior Engineer will collaborate with various teams, providing strategic and operational expertise, and support the continuous improvement of IAM practices.

Responsibilities:

• Provide hands-on technical administration of critical IAM systems and applications, ensuring optimal performance, integration, security, and delivering senior operational support
• Design, implement, and manage Single Sign-On (SSO) solutions using Ping Identity
• Develop and execute the MFA strategy, integrating MFA solutions into the existing IAM framework
• Implement IGA projects using SailPoint, including Application Onboarding, Access Certification, Identity and Account lifecycle events (Joiner/Mover/Leaver), as well as role and entitlement analysis
• Oversee the deployment and ongoing management of Privileged Access Management (PAM) solutions to secure critical systems and monitor privileged access, ensuring alignment with security policies and adapting to evolving security needs
• Participate in strategic planning for IAM, aligning the IAM architecture with Verisign’s security objective and  compliance with security frameworks like NIST and CIS
• Work collaboratively with cross-functional teams to enhance IAM solutions. Manage relationships with vendors, assessing new technologies and contributing to procurement decisions
• Mentor junior engineers and lead technical teams. Communicate IAM strategies and security principles effectively across the organization
• Create and maintain operational documentation with collaboration tools like Confluence Wiki for systems configurations, operational procedures, and best practices

Qualifications and Preferred Expertise:

• Bachelor’s degree in computer science, technology, or a related discipline
• Relevant certifications such as CIAM, CISSP, or equivalent IAM vendor-specific certifications
• 10+ years of related experience in an IT role, with specific focus on IAM security architecture and platform administration
• Strong problem-solving communication skills
• Proficiency in programming and scripting languages including Java, Python, and Ansible
• In-depth knowledge of authentication and authorization mechanisms, including SSO, MFA, and PAM, across on-premises, distributed, and SaaS environments
• Must have application onboarding experience along with SailPoint IdentityIQ connector development 
• Must have experience implementing webservices connectors utilizing REST APIs
• Expertise in designing and implementing IAM solutions: SSO, MFA, IGA, PAM, integrations with various Identity Providers (IdPs), and IAM security protocols like SAML, OAuth, and OIDC
• Direct experience with IAM vendor solutions like Ping Identity and SailPoint, and other IAM technologies
• Experience with cloud based IAM solutions including AWS, Azure, or equivalent platforms, with a solid understanding of cloud environment IAM roles, policies, and best practices
• Skilled in designing and configuring IAM across complex global infrastructures for high availability, with an understanding of cyberattacks and proactive IAM defenses
• SailPoint Certified IdentityIQ Engineer
• IMI certifications or training preferred

This position is based in our Reston, VA office and offers a flexible, hybrid work schedule.

The pay range is $164,300- $222,300. 

The anticipated annual base salary range for this position is noted above, however, base pay offered may vary depending on job-related knowledge, skills, experience. Verisign offers a discretionary bonus which is based on individual and company performance, and certain roles may be eligible for discretionary stock awards.