VAYUZ Technologies - Tech Lead - SailPoint IQ

Description :

Responsibilities :

Identity Governance & Administration :

- Implement and manage identity governance using SailPoint IdentityIQ.

- Configure lifecycle management (JoinerMoverLeaver processes).

- Manage role-based access control (RBAC) and access certifications.

- Conduct periodic access reviews and compliance reporting.

- Integrate SailPoint with AD, Azure AD, and enterprise applications.

- Support IAM integration standards : SAML, OAuth, OpenID Connect, SCIM, SPML, XACML.

Active Directory & On-Prem Identity Management :

- Manage and support on-premises identity infrastructure using Active Directory.

- Design, upgrade, and maintain AD environments including :

1. Authentication & Authorization

2. Group Policy Objects (GPO)

3. LDAP

4. PKI

5. DNS

6. ADFS

7. MIM/PAM

8. LAPS

- Implement Enhanced Security Administrative Environment (Red Forest model).

- Secure and harden AD infrastructure.

- Microsoft Cloud Identity (Azure AD / Entra ID)

- Manage identity and access in the Microsoft Cloud using Microsoft Entra ID (formerly Azure Active Directory).

- Configure and manage :

1. Azure SSO

2. Self-Service Password Reset (SSPR)

3. Access Reviews

4. Conditional Access Policies

5. Device Compliance Policies

- Implement and manage Microsoft Entra Privileged Identity Management.

- Deploy threat protection using Microsoft Defender for Identity (formerly Azure ATP).

- Manage and enforce Microsoft Entra multifactor authentication.

- Hybrid Identity & Authentication

- Design and secure hybrid environments using :

1. AD Connect

2. Password Hash Synchronization (PHS)

3. Pass-Through Authentication (PTA)

4. Azure Seamless SSO

5. ADFS & ADFS Proxy

- Implement secure authentication methods including MFA and device-based sign-on.

- Design and implement secure Conditional Access strategies.

Privileged Access & Secrets Management :

- Manage privileged credentials using Delinea Secret Server.

- Implement privileged access governance and monitoring.

- Enforce least privilege access principles.

Qualifications :

- 6+ years of experience in Identity & Access Management (IAM).

- Strong hands-on experience with SailPoint IdentityIQ.

- Advanced expertise in Active Directory architecture and troubleshooting.

- Strong knowledge of Azure AD / Microsoft Entra ID.

- Experience with Conditional Access, RBAC, and PIM.

- Knowledge of REST APIs and SOA fundamentals.

- Understanding of identity federation and authentication protocols.

- Experience securing hybrid AD and Azure environments.