SailPoint Security Architect

Role description: (Please include a brief outline of the impact this role will have, including overview of customer industry and projects, access to cutting-edge technology etc.)

Security Architect - SailPoint IGA will lead the design, architecture, and implementation of enterprise-wide Identity Governance and Administration solutions. This role requires deep expertise in SailPoint Identity Security Cloud (ISC), with strong understanding of identity life cycle management, access governance, Zero Trust principles, and integration patterns across IT and OT environments. The architect will collaborate closely with cybersecurity, infrastructure, OT, and business teams to deliver a scalable, secure, and compliant identity governance platform.

Key responsibilities:

1. Architecture & Design

• Lead end-to-end architecture for SailPoint IGA platforms including SailPoint ISC, ensuring alignment with enterprise security frameworks.
• Define and validate solution blueprints, integration patterns, and deployment architectures across hybrid IT and OT environments.
• Architect automated JML (Joiner-Mover-Leaver) workflows, access certifications, SoD policies, role models, and identity life cycle processes.
• Design governance models supporting both human and machine identities, referencing patterns highlighted in enterprise evaluations.
• Create standardized design documents, patterns, and platform configuration guidance.

2. Implementation Leadership

• Drive the integration, transformation and migration of identity systems from Legacy platforms to SailPoint ISC.
• Lead application onboarding, access aggregation models, delegated administration, and time-bound access configurations.
• Oversee AI-driven features within SailPoint ISC such as entitlement insights, anomaly detection, and automated role recommendations.

3. Governance & Zero Trust Alignment

• Implement Zero Trust-aligned identity governance frameworks ensuring least privilege, continuous verification, and adaptive access controls.
• Define and enforce enterprise-wide RBAC, SoD, and policy-driven access governance across IT and OT.
• Integrate SailPoint with SIEM, SOAR, PAM (eg, BeyondTrust), and directory services as part of a Cybersecurity Mesh Architecture.

4. Stakeholder Engagement & Consulting

• Conduct workshops with cross-functional teams including OT stakeholders for requirement validation.
• Partner with cybersecurity leadership, platform owners, and vendor SMEs to align governance and compliance objectives.
• Support architecture review boards and contribute to enterprise security strategy documentation.

5. Operations & Continuous Improvement

• Define operational support models in collaboration with different business & technology teams.
• Establish monitoring, reporting, and continuous compliance dashboards for identity governance.
• Lead root-cause analysis for identity-related incidents and drive enhancements.

Key skills/knowledge/experience:

Aptitude for understanding both business and technical issues, and able to operate at both a detailed and strategic level.

Able to support identifying critical gaps in for specific,

Measurable, achievable, realistic requirements that can be realized in reasonable timescales.

Show the tenacity to drive and take architectural ownership of solutions through research, evaluation, recommendation/selection and then design and delivery.

Documentation creation to capture key architectural artefacts and decisions.

In-depth knowledge of SAP integration solutions, including PI/PO, HCI/CPI, Ariba, NetWeaver Gateway and SuccessFactors.

• The integration for Kraken will use SAP CPI as the Middleware so implementation experience in this platform is crucial for8-12+ years in Identity & Access Management with at least 5 years hands-on with SailPoint ISC.
• Proven experience designing and delivering large-scale SailPoint IGA programs.
• Strong in:
  • Identity life cycle orchestration
  • Application onboarding (connectors, REST, batch collectors)
  • Role engineering, SoD, access certifications
  • Workflow and policy authoring
  • Access modelling for both IT and OT environments
• Experience integrating SailPoint with BeyondTrust, Entra ID, Active Directory, ServiceNow, SIEMs, and cloud platforms.
• Familiar with AI/ML-driven IGA insights and automation features (SailPoint Identity AI).

Architecture & Leadership

• Ability to translate business needs into scalable identity governance architectures.
• Strong understanding of Zero Trust, security architectures, and compliance frameworks.
• Experience leading multi-vendor engagements and cross-functional design workshops. this role

Person specification: ie, negotiating, client facing, communication, assertive, team leading/team member skills, supportive.

Strong communication and teamwork abilities, as it is a client-facing role.

Ability to work independently and manage time effectively.