SailPoint Engineer

At Rockland Trust Company, we are seeking a skilled SailPoint Identity Security Cloud (ISC) Engineer to join our SailPoint Development Team. In this role, you will design, develop, and maintain robust IAM solutions using SailPoint ISC to ensure secure, compliant access across our banking operations. You will collaborate with application owners, business units, and cross-functional teams to integrate applications, customize workflows, and support onboarding/offboarding processes while maintaining system reliability. This position requires a blend of development expertise and operational support to drive identity governance in a fast-paced financial environment.

• Collaborate with application owners and business units to assess integration needs and implement secure connections to SailPoint IdentityNow/ISC using APIs (RESTful, SCIM), flat-file integrations, or direct database connectors.
• Design, configure, and manage source integrations, including out-of-the-box connectors, Generic Web (API) Connectors, and JDBC connectors (e.g., MS SQL Server, Snowflake, Oracle).
• Develop custom workflows, rules (Cloud and Connector) in SailPoint ISC to meet business requirements, including automated provisioning/de-provisioning and access certifications.
• Enhance onboarding/offboarding processes, lifecycle management rules, RBAC/ABAC, policies, and separation of duties (SOD) configurations.
• Configure and customize reporting features for audit-ready reports, compliance dashboards, and metrics for regulatory audits.
• Develop scripts and automation (PowerShell, Python, Java/Beanshell) to optimize identity processes and integrate with directories like Active Directory, LDAP, or Entra.
• Write and optimize SQL queries for integrations, transformations, and troubleshooting.
• Provide Level 2 (L2) support for incidents, troubleshooting integration issues, and completing service requests.
• Integrate SailPoint with cloud applications and on-premises systems, supporting modern authentication protocols (SAML, OAuth, OIDC).
• Manage and maintain SailPoint Virtual Appliances (VAs) for on-premises solutions in both primary and disaster recovery data centers. Responsibilities include maintaining certificates used for secure communication, ensuring proper trust relationships and connectivity within the on-prem environment. Monitor VA health, troubleshoot VA-related errors, and maintain secure integration with the SailPoint SaaS framework. Ensure high availability and disaster recovery preparedness while adhering to compliance and security standards.
• Participate in requirements gathering sessions and translate business needs into technical solutions.
• Follow and enforce Change Management protocols: Prepare detailed change documentation, risk assessments, rollback plans; ensure review, approval, and testing in non-production environments; maintain audit trails for compliance (SOX, PCI-DSS); communicate impacts and coordinate implementation windows.
• Conduct system audits, monitor system health, and contribute to continuous improvement initiatives.
• Mentor junior team members and document development processes, configurations, and troubleshooting guides.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or equivalent work experience.
• 4-6 years of IAM experience, with at least 3 years focused on SailPoint IdentityNow or ISC engineering development.
• Hands-on experience with SailPoint IdentityNow/ISC implementation; SailPoint Certified Identity Security Engineer required.
• Strong understanding of identity lifecycle management, access governance, and compliance standards (SOX, PCI-DSS).

• Proficiency in SailPoint IdentityNow/ISC configuration, customization, API development (REST, JSON, SOAP), and database integrations (JDBC connectors).
• Strong SQL skills for querying, data manipulation, and troubleshooting in relational databases.
• Experience with scripting languages (PowerShell, Python, Java/Beanshell) for automation and custom connectors.
• Knowledge of integration protocols (SAML, OAuth, LDAP, SCIM) and directory services (Active Directory).
• Familiarity with cloud infrastructure (AWS, Azure) and database administration basics.
• Design, deploy, configure, and maintain SailPoint Virtual Appliances (VAs) for on-prem solutions, including infrastructure setup, networking, clustering, and secure connectivity with SaaS integration framework. Ensure high availability, disaster recovery readiness, and compliance with security standards.
• Exceptional communication skills with the ability to clearly articulate technical concepts to non-technical stakeholders, foster collaboration with business units and application owners, and build strong working relationships across teams. Demonstrated problem-solving and analytical expertise to resolve complex issues effectively while maintaining transparency and alignment with organizational goals.

• Experience in banking or financial services IAM environments.
• Knowledge of additional IAM tools (Okta, Saviynt) or DevOps practices (CI/CD).
• Ability to generate and interpret IAM metrics using advanced SQL or BI tools (PowerBI).
• Familiarity with SailPoint SaaS Connector Framework and Identity Security Cloud advanced features (Access Modeling, AI-driven recommendations).
• Understanding of ITIL processes for incident, problem, and change management.
• Expertise in designing secure architecture for SailPoint Virtual Appliances (VAs), including clustering strategies for high availability and load balancing.
• Experience with performance tuning and capacity planning for VAs to ensure optimal throughput and minimal latency.
• Knowledge of advanced networking configurations for VAs, including firewall rules, SSL certificate management, and secure API connectivity.

Our goal is to offer our colleagues the most generous benefits package possible. We strive to provide colleagues with a comprehensive benefits package and an environment that supports a healthy work-life balance. Colleagues who work 20 hours or more per week are eligible to participate in our health insurance program. Other benefits include: Competitive compensation with performance incentive awards, Dental Insurance, a 401K and DC Plan for your retirement, Life Insurance, Vacation Time, Day Care Reimbursement, Tuition Assistance for graduate and undergraduate programs, an award winning Wellness program and much more!

At Rockland Trust you'll find a respectful and inclusive environment where everyone is given the chance to succeed. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.