Sailpoint IAM Architect

Role: Sailpoint IAM leaderLocation: Sunnyvale CA (Hybrid)Type: Contract to hire (CTH) We are seeking a highly experienced SailPoint Identity Leader to drive enterprise IAM strategy, architecture, and large-scale SailPoint implementations. This role requires hands-on technical depth combined with strong leadership, stakeholder management, and strategic vision to modernize identity platforms across hybrid and cloud environments. The ideal candidate will own the end-to-end SailPoint roadmap—from design and implementation to governance, compliance, and future-state transformation.Key ResponsibilitiesStrategy & ArchitectureDefine and own the enterprise IAM strategy aligned with business, security, and compliance objectivesDesign scalable SailPoint architectures (IdentityIQ / IdentityNow) for large, complex environmentsLead IAM modernization initiatives, including cloud, Zero Trust, and identity-centric security modelsDevelop multi-year IAM roadmaps, standards, and best practicesSailPoint Design & ImplementationLead end-to-end SailPoint implementations (greenfield and brownfield)Architect and design:Identity lifecycle management (Joiner-Mover-Leaver)Access request and approval workflowsRole-based and attribute-based access control (RBAC / ABAC)Certification campaigns and access reviewsSegregation of Duties (SoD) and compliance controlsOversee integrations with:Active Directory / Azure AD / Entra IDHR systems (Workday, SAP, Oracle, SuccessFactors, etc.)Cloud platforms (AWS, Azure, GCP)Enterprise applications (SAP, Oracle, ServiceNow, Salesforce, custom apps)Technical LeadershipProvide hands-on technical guidance for:SailPoint connectors and aggregationCustom rules, workflows, and APIsIdentityNow REST APIs and event-driven integrationsReview and approve solution designs, code, and configurationsLead performance tuning, scalability planning, and high-availability designsGovernance, Risk & ComplianceDrive identity governance programs supporting SOX, SOC2, ISO 27001, GDPR, HIPAA, etc.Establish metrics, KPIs, and dashboards for IAM effectivenessPartner with audit, risk, and compliance teams during assessmentsLeadership & Stakeholder ManagementLead and mentor IAM architects, engineers, and delivery teamsAct as a trusted advisor to CISOs, security leadership, and business stakeholdersManage vendors, system integrators, and SailPoint professional servicesSupport pre-sales, RFPs, and executive presentations when requiredRequired Skills & ExperienceCore Requirements15+ years of experience in Identity & Access Management (IAM)10+ years of hands-on SailPoint experience (IdentityIQ and/or IdentityNow)Proven track record of large-scale SailPoint implementationsStrong experience designing IAM solutions for hybrid and cloud environmentsTechnical SkillsSailPoint IdentityIQ / IdentityNow architecture and configurationJava, BeanShell, REST APIs, JSON, XML (for customization and integrations)Directory services: AD, LDAP, Azure AD / Entra IDIAM protocols: SAML, OAuth 2.0, OpenID Connect, SCIMStrong understanding of Zero Trust and identity-first securityCertifications (Preferred)SailPoint Certified IdentityIQ Engineer / ArchitectSailPoint IdentityNow EngineerCISSP, CISM, or equivalent security certifications