SailPoint IDN Developer

About the Job 

At cb5, we are on a mission to find exceptional talent. Our tight-knit organization is led by five brothers, each a technology leader in their respective technical field and driven to foster a culture of excellence through solidarity. We are seeking a SailPoint IDN Developer to serve as a member of an IAM team. This role is remote and has very limited travel requirements. 

This individual will serve as a hands-on developer and subject matter expert (SME) focused on SailPoint IdentityNow (IDN), driving the design, development, and deployment of identity governance solutions. They will be responsible for building and maintaining connectors, configuring lifecycle event workflows, and integrating IDN with enterprise applications including Active Directory and Microsoft Entra ID. 

The developer will collaborate with cybersecurity, IT, and business stakeholders to automate identity processes, enforce access governance, and ensure compliance with security policies and regulatory requirements. 

 

Key Responsibilities 

The candidate will: 

  • Design, develop, and implement SailPoint IDN solutions including sources, connectors, access profiles, roles, policies, and lifecycle event workflows (Joiner, Mover, Leaver). 
  • Build and maintain both standard and custom connectors for enterprise applications, using SailPoint connector rules and the connector SDK where applicable. 
  • Configure and manage Active Directory (AD) and Microsoft Entra ID integrations within IDN, including provisioning rules, correlation, and attribute mapping. 
  • Develop and maintain provisioning and de-provisioning workflows, including automated JML processes and access request/approval workflows. 
  • Create and maintain certification campaigns, Segregation of Duties (SoD) policies, and compliance reporting. 
  • Integrate IDN with authoritative sources (e.g., Workday) and downstream applications using REST APIs, JDBC, web services, and other connector types. 
  • Write and maintain scripts and rules (BeanShell, PowerShell, Python) to support automation, transforms, and connector logic. 
  • Assist with implementation, maintenance, documentation, and training related to IAM security solutions to enhance SECU’s security posture. 
  • Support governance and compliance efforts by participating in assessments and remediation activities to ensure adherence to security standards and regulations. 
  • Participate in on-call rotation and provide technical support for IAM technologies; mentor junior engineers as needed. 
  • Pursue and maintain skills and certifications to stay current with advancing IAM and cybersecurity trends and best practices. 

 

Qualifications 

  • BS in Computer Science, Information Technology, Cyber Security, or related field. Additional relevant experience may be considered in lieu of degree. 
  • Minimum of 3 years of hands-on experience in IAM development or a related field. 
  • SailPoint IdentityNow (IDN) Development 
  • Proficient with SailPoint IDN architecture, administration, and configuration. 
  • Strong knowledge of Identity Profiles and Source configurations. 
  • Hands-on experience with Access Profiles, Roles, Policies, and Certifications. 
  • Expertise in Joiner-Mover-Leaver (JML) lifecycle workflows including design, configuration, and troubleshooting. 
  • Experience with access request workflows, approval chains, and certification campaigns. 
  • Strong experience with Segregation of Duties (SoD) and compliance enforcement. 
  • Connector Development & Integration 
  • Experience building and configuring both standard and custom SailPoint IDN connectors. 
  • Proficient with common IGA connectors including Active Directory (AD), Microsoft Entra ID, JDBC, Exchange, mainframe, and web service connectors. 
  • Hands-on experience integrating authoritative sources such as Workday or similar HR systems. 
  • Familiarity with connector rules, provisioning rules, and transforms (BeanShell / JSON-based). 
  • Experience leveraging REST APIs and web services to integrate IDN with enterprise applications. 
  • Active Directory & Entra ID 
  • Must-have: hands-on experience managing and provisioning identities in Active Directory (AD). 
  • Must-have: hands-on experience with Microsoft Entra ID (formerly Azure AD), including user lifecycle management, group management, and conditional access concepts. 
  • Experience with hybrid identity environments (on-prem AD synced to Entra ID via AD Connect or similar). 
  • General IAM 
  • Experience implementing or supporting two or more IAM solutions such as PAM, SSO, Directory Services, IGA, CIAM, or MFA. 
  • Knowledge of cloud directories such as Entra ID, AWS Directory Service, and Google Cloud Identity. 
  • Understanding of APIs and how they are used to integrate IAM systems with other applications. 
  • Authentication & Authorization Protocols 
  • Understanding of protocols such as OAuth 2.0, OIDC, SAML, LDAP, and Kerberos. 
  • IAM Governance & Compliance 
  • Familiarity with IAM governance frameworks and standards such as NIST, ISO 27001, SOX, and GDPR. 
  • Experience with audit and compliance reporting. 
  • Automation & Scripting 
  • Ability to write and maintain scripts using BeanShell, PowerShell, Python, or Bash for automating identity tasks and connector logic. 
  • Collaboration & Problem-Solving 
  • Experience participating in cross-functional teams on IAM initiatives. 
  • Ability to collaborate with security, IT operations, developers, and business stakeholders to align IAM solutions with organizational goals. 
  • Strong troubleshooting skills for diagnosing and resolving IDN connector and workflow issues. 

 

Preferred Qualifications 

  • Professional certifications such as: SailPoint Certified IdentityNow Engineer, CISSP, CISA, CISM, GIAC, or other relevant industry certification and/or desire to obtain such certifications. 
  • Experience working within a DevOps or Agile environment. 
  • Experience managing IAM projects from inception to delivery. 
  • Understanding of FFIEC audit guidelines for banking regulators. 
  • Experience with Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC) design and implementation. 

 

cb5 Solutions LLC is an Equal Opportunity Employer. We do not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, disability, veteran status, or any other protected characteristic.