SailPoint Engineer

Описание вакансии

Who we are!

Platinum Technologies is a Northern Virginia based integrated solutions firm that specializes in Cybersecurity, Cloud and Digital Services to the Public Sector. Our team solves hard problems and helps our Mission Partners achieve their goals. If you are self-motivated, possess demonstrated learning agility, and are passionate about delivering high-quality work products – we want to hear from you.

We lead with technical expertise, but that is just the tip of the iceberg – the ‘Why’ matters. At Platinum, we don’t hire people to do a job. We provide professional and leadership development to complement our self-motivated domain experts. Our teammates are dot-connecting leaders that operate in a mutually accountable environment to deliver thought leadership, expert technical analysis, and quality execution for our clients.

You.

Platinum Technologies is seeking an IGA Engineer (SailPoint) to join our company. We’re seeking a highly skilled Identity Governance and Administration (IGA) Engineer. In a Zero Trust architecture, identity is the new perimeter, and this role is responsible for building and maintaining the "source of truth" that governs access to the Command's most critical data.

As the IGA Engineer, you will lead the implementation and configuration of SailPoint across the NIPR, SIPR, and Top-Secret networks. You will move beyond basic account provisioning to implement a sophisticated Attribute-Based Access Control (ABAC) model. You will be responsible for defining and managing the lifecycle of "Trust Attributes" (such as clearance level, training status, and job role) that are consumed by downstream enforcement tools like Microsoft Purview and Kiteworks. Your work ensures that when a user’s status changes, their access to sensitive data is updated instantly, even in air-gapped environments.

This role requires an active Top Secret/SCI. The position will be in Tampa, Florida.

What you get to do.

•Lead the design, deployment, and ongoing management of SailPoint IdentityNow (or IIQ) to automate the full identity lifecycle (Joiner, Mover, Leaver) across hybrid and on-premises environments.

•Define and manage the schema for "Trust Attributes" (e.g., Clearance, COI, Project Codes) within SailPoint, ensuring they align with the NIST 8112 metadata standard for consumption by policy decision points.

•Manage the offline instance of SailPoint on the Top-Secret network, developing the workflows to import "Attribute Manifests" and ensure that identity data remains synchronized with the low-side source of truth.

•Configure and execute automated access certification campaigns for critical data repositories and privileged roles, ensuring compliance with DoD audit requirements.

•Work with mission owners to define Technical Roles and Business Roles within SailPoint, replacing broad, static Active Directory groups with granular, policy-driven access roles.

Requirements.

•Active Top-Secret/SCI clearance

•CompTIA Security+ CE (or higher) to meet DoD 8570 IAT Level II requirements.

•Extensive (5+ years) hands-on experience designing, implementing, and administering SailPoint (IdentityNow or IdentityIQ) in a large enterprise environment.

•Deep understanding of the Joiner-Mover-Leaver (JML) process and experience automating provisioning/deprovisioning workflows connected to HR systems and Active Directory.

•Strong knowledge of Active Directory, LDAP, and Azure Active Directory (Entra ID) structures and management.

•Proven experience with Role-Based Access Control (RBAC) modeling, Separation of Duties (SoD) policy creation, and access certification campaigns.

•Journeyman Experience:

oA Journeyman labor category has 3 to 10 years of experience and a BA/BS or MA/MS degree. A Journeyman labor category typically performs all functional duties independently.

•Senior Experience:

A Senior labor category has over 10 years of experience and a MA/MS degree. A Senior labor category typically works on high-visibility or mission critical aspects of a given program and performs all functional duties independently. A Senior labor category may oversee the efforts of less senior staff and/or be responsible for the efforts of all staff assigned to a specific job.

The Company is an Equal Opportunity/Affirmative Action employer. All qualified candidates will receive consideration for employment without regard to disability, protected veteran status, race, color, religious creed, national origin, citizenship, marital status, sex, sexual orientation/gender identity, age, or genetic information.