Senior IAM Engineer - SailPoint
Rubrik
About the Team:
The Enterprise Applications team at Rubrik enables business processes, employee experience, and technologies to scale our organization to $1B+. This team is responsible for all the enterprise applications used at Rubrik and the relevant business processes (Lead to Opportunity, Quote to Cash, Hire to Retire, Customer Support, Legal, & Facilities). The IT team caters to accelerated enhancement of business value and multiple day-to-day business processes through our varied SaaS applications like Salesforce.com, Oracle NetSuite, Workday, Coupa, Chromeriver, Snowflake, Etrade, Jitterbit, Allocadia, etc.
About the role
Rubrik is seeking a highly skilled and experienced Senior IAM Engineer to join our Identity & Access Management team, reporting directly to the Senior Manager. In this pivotal role, you will be instrumental in designing, implementing, and maintaining robust Identity and Access Management (IAM) solutions, primarily leveraging SailPoint Identity Security Cloud (ISC). You will translate complex business requirements into scalable technical solutions, ensuring strict adherence to security policies and regulatory mandates. This involves comprehensive integration of SailPoint with diverse enterprise applications, developing custom connectors, and optimizing authentication mechanisms to enhance security posture and operational efficiency. You will lead key initiatives in user provisioning, access certifications, and advanced troubleshooting of SailPoint deployments. This role requires close collaboration with internal teams (Vendors, FTEs), Business Partners, and InfoSec Teams to drive the agile delivery of Rubrik's IT project demands, specifically within Identity and Access Management.
What you'll do
- Solution Design & Architecture:
Develop and architect comprehensive SailPoint solutions, including configurations, workflows, and custom connectors, ensuring alignment with evolving business requirements and stringent security policies. - Application Onboarding & Integration:
Lead the strategic onboarding of critical applications into SailPoint, encompassing integration with diverse systems (e.g., Active Directory, leading Cloud Platforms, Enterprise Applications) and spearheading the development of advanced custom connectors for seamless data flow and automated user provisioning. - Policy, Standards and Compliance:
Define, implement, and enforce robust IAM policies and standards, ensuring meticulous compliance with critical regulatory requirements (e.g., SOX, HIPAA, GDPR). - Identity Governance & Lifecycle Management:
Design and implement sophisticated solutions for automated user provisioning, efficient access request management, and recurring access certifications to maintain a strong governance framework. - Technical Leadership & Mentorship:
Provide expert technical leadership and mentorship to junior engineers, contributing significantly to the development and promulgation of IAM best practices and architectural standards. - Process Optimization & Automation:
Proactively identify and implement opportunities for significant process improvements and automation across the entire IAM lifecycle, including user onboarding, offboarding, and access review processes. - Cross-functional Collaboration:
Foster strong collaborative relationships with stakeholders across InfoSec, Audit, IT, and Engineering teams to ensure IAM solutions are strategically aligned with overarching business objectives and security initiatives. - Advanced Troubleshooting & Optimization:
Serve as a subject matter expert for complex issue resolution, performance optimization, and ensuring the continuous stability and reliability of SailPoint deployments. - Documentation & Knowledge Management:
Create and maintain comprehensive, high-quality technical documentation for SailPoint configurations, intricate processes, and critical integrations.
Experience you'll need
-
- Experience:
Minimum of 8 years of progressive experience in Identity and Access Management (IAM), with a strong emphasis on SailPoint Identity Security Cloud (ISC) or comparable enterprise-grade IAM platforms (e.g., Saviynt, OneLogin, Microsoft Entra ID, Oracle Identity Governance). - Platform Expertise:
Deep, hands-on expertise with SailPoint Identity Security Cloud (ISC) architecture, including advanced knowledge of its features (Dynamic access roles, Password management, Access certification, Account management, Automated provisioning, Compliance Control, Data access Governance, Reporting, Role management, Access request, Identity Analytics, Identity lifecycle management, Identity Governance, Access Management, Privileged access management (pam)), the platform functionalities, connectors, and best practices. - Cloud IAM Proficiency:
Demonstrable experience implementing and managing IAM solutions within leading cloud environments such as AWS, Azure, or Google Cloud Platform. - Security Knowledge:
Profound understanding of Identity Governance, Privileged Access Management (PAM) principles, and Access Certification processes. - Directory Services:
Extensive familiarity with Active Directory, LDAP, and database integration for IAM purposes. - Programming & Scripting:
Proficiency in at least one of the following: Java or Python, coupled with strong scripting skills in BeanShell/JavaScript or similar for connector development and customization. - IAM Foundational Knowledge:
Exceptional knowledge of core IAM principles, including advanced provisioning, user lifecycle management, access reviews, and robust Role-Based Access Control (RBAC) methodologies. - IAM Protocols:
Proven experience in implementing and optimizing various authentication and authorization mechanisms and protocols, including SSO, SCIM, MFA, OAuth, SAML and OpenID Connect.. - Business Processes:
Solid understanding of HR, Onboarding, and Offboarding business processes to effectively translate business needs into IAM solutions. - SailPoint Virtual Appliances (VAs):
Comprehensive understanding of SailPoint Virtual Appliance deployment, configuration, and advanced troubleshooting, including knowledge of underlying virtualization platforms, network security, and SailPoint's APIs, connectors, and integrations. - Communication:
Exceptional communication, interpersonal, and collaboration skills to effectively engage with a diverse range of technical and non-technical stakeholders.
- Experience:
Key Competencies
- Strategic thinking and ability to align solutions with business objectives.
- Leadership and mentorship of cross-functional technical teams.
- Ability to manage multiple priorities and deliver projects on time.
- High attention to detail and commitment to quality.
Join Us in Securing the World's Data
Rubrik (NYSE: RBRK) is on a mission to secure the world’s data. With Zero Trust Data Security™, we help organizations achieve business resilience against cyberattacks, malicious insiders, and operational disruptions. Rubrik Security Cloud, powered by machine learning, secures data across enterprise, cloud, and SaaS applications. We help organizations uphold data integrity, deliver data availability that withstands adverse conditions, continuously monitor data risks and threats, and restore businesses with their data when infrastructure is attacked.
Linkedin | X (formerly Twitter) | Instagram | Rubrik.com
Inclusion @ Rubrik
At Rubrik, we are dedicated to fostering a culture where people from all backgrounds are valued, feel they belong, and believe they can succeed. Our commitment to inclusion is at the heart of our mission to secure the world’s data.
Our goal is to hire and promote the best talent, regardless of background. We continually review our hiring practices to ensure fairness and strive to create an environment where every employee has equal access to opportunities for growth and excellence. We believe in empowering everyone to bring their authentic selves to work and achieve their fullest potential.
Our inclusion strategy focuses on three core areas of our business and culture:
-
Our Company: We are committed to building a merit-based organization that offers equal access to growth and success for all employees globally. Your potential is limitless here.
-
Our Culture: We strive to create an inclusive atmosphere where individuals from all backgrounds feel a strong sense of belonging, can thrive, and do their best work. Your contributions help us innovate and break boundaries.
-
Our Communities: We are dedicated to expanding our engagement with the communities we operate in, creating opportunities for underrepresented talent and driving greater innovation for our clients. Your impact extends beyond Rubrik, contributing to safer and stronger communities.
Equal Opportunity Employer/Veterans/Disabled
Rubrik is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
Rubrik provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Rubrik complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please contact us at hr@rubrik.com if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.