Post Job Free
Sign in

Access Management Active Directory

Location:
Dallas, TX
Posted:
July 11, 2025

Contact this candidate

Resume:

Mohan Reddy

SailPoint Developer/ IAM Engineer

Email: ***********@*****.***

Cell: 972-***-****

Professional Summary:

•9+ years of extensive experience in Identity and Access Management (IAM) with a strong focus on SailPoint IdentityIQ development and deployment.

•Proficient in integrating SailPoint IdentityIQ with enterprise platforms such as ServiceNow, Workday, and Fieldglass for seamless identity lifecycle management.

•SailPoint Certified IdentityIQ Engineer with expertise in designing, configuring, and implementing robust IAM solutions.

•Skilled in SailPoint configurations, including workflow development, role management, policy configuration, and connector integration.

•Strong programming and scripting skills in Java, Beanshell, and REST APIs for developing custom solutions and enhancing SailPoint functionalities.

•Experienced in integrating SailPoint with Active Directory, LDAP directories, and databases such as SQL Server, Oracle, and MySQL.

•Adept at implementing and managing authentication protocols including SAML, OAuth, and OpenID Connect for secure identity federation.

•Knowledgeable in transitioning from legacy IAM systems to modern, enterprise-level IAM solutions with minimal disruption to business operations.

•Hands-on experience in developing custom connectors and workflows tailored to business requirements using SailPoint IdentityIQ.

•Proficient in troubleshooting SailPoint IdentityIQ components, including provisioning, aggregation, certification, and reporting modules.

•Experienced in developing role-based access control (RBAC) models to streamline user access management and enhance compliance.

•Familiarity with integrating third-party security tools such as IAQ, IIQ, INOW, Saviynt, CyberArk, Okta, and Ping Identity for comprehensive IAM solutions.

•Strong understanding of cloud security practices across AWS, Azure, and GCP, with experience in DevOps automation for IAM deployments.

•Extensive experience in leveraging SailPoint’s Out-of-the-Box (OOTB) functionalities, including built-in workflows, certification campaigns, and policy enforcements, to accelerate deployment and reduce custom development efforts.

•Expert in utilizing OOTB connectors for seamless integration with enterprise applications like Active Directory, ServiceNow, SAP, Workday, and cloud platforms, ensuring efficient identity governance and lifecycle management.

Technical Skills:

SailPoint IIQ

Directories: Microsoft Active Directory (AD), LDAP

Databases: Oracle, MySQL, SQL Server, DB2

Operating Systems: Windows, Linux

Identity and Access Management: SailPoint IIQ 6.x, 7.x, 8.x, SailPoint INOW, Okta, Ping, Saviynt

Privileged Access Management: CyberArk

Application Servers: Tomcat

Scripting Languages: Java, JavaScript.

Kaiser permanente, Oakland, CA (Nov 2023 – Present)

Role: SailPoint Lead

Responsibilities:

Designed and implemented SailPoint IIQ solutions for identity governance, lifecycle management, and access control.

Developed custom workflows, rules, and policies using Java, BeanShell scripting, and REST APIs to automate user lifecycle processes.

Configured Identity Cubes, Attribute Mappings, and Role-Based Access Control (RBAC), improving security and compliance.

Integrated SailPoint with enterprise systems such as Azure AD, Active Directory, ServiceNow, Workday, SAP, Okta, AWS IAM, Entra ID, JDBC, LDAP, Oracle, and SQL Server.

Designed and optimized SailPoint connectors for Active Directory, JDBC, SAP, Workday, REST APIs, and Web Services, ensuring smooth data synchronization.

Built and managed custom connectors to onboard new applications, reducing manual provisioning efforts.

Developed and automated Joiner, Mover, Leaver (JML), Contractor Conversion, and Extension processes, ensuring seamless identity transitions.

Implemented access request workflows, role mining, and policy enforcement to streamline user access provisioning.

Configured and executed access certifications, including Manager, Entitlement, and Application-based certifications, enhancing compliance with SOX, HIPAA, GDPR, and NIST.

Managed and optimized Segregation of Duties (SoD) policies to prevent conflicting access rights.

Automated task scheduling and data feed collection, improving operational efficiency.

Worked on Lifecycle Events such as Joiner, Leaver, Mover, Rehire, LOA, RLOA, and Attribute Sync using the Accelerator Pack.

Integrated SailPoint IIQ with ServiceNow, Azure AD, Okta, AWS IAM, and CyberArk for automated identity governance and security.

Developed AWS Lambda functions to automate identity lifecycle events, data synchronization, and event-driven workflows in SailPoint.

Leveraged AWS services such as S3, DynamoDB, SNS, SQS, and API Gateway to enhance IAM integrations and cloud security.

Designed and implemented Single Sign-On (SSO) and Multi-Factor Authentication (MFA) using SAML 2.0, OAuth, OpenID Connect (OIDC), and WS-Federation.

Configured privileged access management (PAM) solutions with CyberArk, BeyondTrust, and Thycotic to enhance security for privileged accounts.

Developed and maintained RESTful APIs, SCIM connectors, and SOAP Web Services for external system integrations.

Integrated SailPoint with Security Information and Event Management (SIEM) systems to enhance real-time monitoring and incident response.

Managed SailPoint IIQ deployments, upgrades, and patches, ensuring system stability and security.

Monitored and optimized SailPoint servers, task execution, and performance tuning to enhance operational efficiency.

Troubleshot and resolved identity provisioning, de-provisioning, and access certification issues using logs and debugging tools.

Implemented CI/CD pipelines using Git, Jenkins, and Azure DevOps for SailPoint deployments, automating build, test, and deployment processes.

Implemented SailPoint File Access Manager (FAM) to monitor and govern unstructured data access, enhancing data security and compliance.

Developed, optimized, and maintained relational databases such as SQL Server, Oracle, MySQL, and DB2 for identity data storage and reporting.

Created and maintained complex SQL queries for reporting, data analysis, and automation in SailPoint projects.

Designed custom dashboards and reports in SailPoint to provide real-time identity governance metrics.

Configured Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and Policy-Based Access Control (PBAC) to enhance security.

Implemented Identity Federation solutions using SAML, OAuth, and OIDC to enable secure cross-platform authentication.

Automated identity management tasks using Java Program, Python, PowerShell, and Bash scripting, reducing manual overhead.

Created technical design documents, runbooks, and IAM playbooks, ensuring knowledge transfer across teams.

Provided post-production support and training sessions for IAM teams and business stakeholders.

BNY, Mellon, New York (Feb 2022 – Oct 2023)

Role: SailPoint Consultant

Responsibilities:

Designed and implemented SailPoint IdentityIQ (IIQ) solutions for identity governance, access management, and compliance.

Developed and customized workflows, rules, provisioning policies, and triggers using Java, BeanShell, and JavaScript.

Integrated SailPoint IIQ with enterprise applications such as Active Directory (AD), Azure AD, ServiceNow, Workday, SAP, Okta, and CyberArk.

Managed Lifecycle Management (LCM) events, including Joiner, Mover, Leaver (JML) processes, ensuring seamless identity transitions.

Configured Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and Segregation of Duties (SoD) policies to enforce security compliance.

Developed and managed custom connectors for JDBC, Active Directory, REST API, SOAP, SCIM, SAML, OAuth, and Delimited File-based integrations.

Conducted Access Certifications (User Access Review - UAR) to validate user access rights and maintain compliance with regulations such as SOX, GDPR, HIPAA, and NIST.

Provided ongoing production support, troubleshooting, and root cause analysis (RCA) for SailPoint IIQ, ensuring system stability and performance optimization.

Automated User Provisioning, De-provisioning, and Access Reconciliation processes to enhance operational efficiency.

Configured and managed OOTB (Out-of-the-Box) connectors to streamline application onboarding and access management.

Developed IT and Business Roles, Entitlement Management, and Access Review Campaigns to align with business and security requirements.

Created custom reports, dashboards, and analytics using SailPoint IdentityIQ Reporting Module, SQL, and Splunk for visibility into identity governance metrics.

Implemented password management policies, self-service password reset (SSPR), and account unlock functionalities within SailPoint IIQ.

Designed and developed SailPoint IdentityIQ workflows for multi-level approvals, request-based provisioning, and emergency access (Break Glass Accounts).

Collaborated with stakeholders to define IAM architecture, governance strategies, and SailPoint deployment roadmaps.

Ensured compliance with regulatory standards through audit controls, attestation campaigns, and compliance reporting.

Configured Identity Cubes, Identity Mappings, and Custom Attributes, optimizing identity lifecycle management.

Assisted in SailPoint IIQ upgrades, patches, system migrations, and performance tuning across on-prem and cloud environments.

Provided technical training, knowledge transfer, and best practice guidance on SailPoint implementation, troubleshooting, and IAM workflows.

Integrated SailPoint IIQ with cloud platforms (AWS, Azure, Google Cloud) and SaaS applications to ensure seamless identity synchronization.

Developed REST and SOAP-based API integrations for custom provisioning, access reconciliation, and ticketing system automation (ServiceNow, Jira).

Implemented Multi-Factor Authentication (MFA), Single Sign-On (SSO), and Federation using SAML, OAuth, and OpenID Connect.

Configured and monitored IIQ Scheduler, Rule Library, Custom Tasks, and Identity Refresh Processes for identity management automation.

Developed CI/CD pipelines (Jenkins, Git, Bitbucket) for SailPoint IIQ deployment automation, including version control and code management.

Managed database integrations (Oracle, SQL Server, MySQL, DB2) for identity data management and reconciliation.

Built and deployed SailPoint IIQ virtual appliances and configured clustering, load balancing, and high availability (HA) architectures.

Optimized QuickLinks, Identity Risk Scoring, and Policy Violation Remediation for improved identity governance efficiency.

Created custom SailPoint IIQ rules (Pre-Delegation, Post-Provisioning, Certification Events, Custom Validations) using Java and BeanShell.

Implemented security best practices, encryption standards, and data masking in IAM workflows to protect sensitive identity information.

Integrated SailPoint IIQ with Privileged Access Management (PAM) solutions such as CyberArk, Thycotic, and BeyondTrust to enforce privileged user controls.

Engaged in IAM roadmap planning, IAM maturity assessments, and security framework alignments with ISO 27001, NIST, and Zero Trust Architecture.

Automated data aggregation and reconciliation using identity refresh, policy enforcement, and event-driven triggers in SailPoint IIQ.

Shanghai Sunmi Technology Co Ltd., Gurgaon & China (Jan2018 - Aug 2021)

IAM Developer

Responsibilities:

Implemented and optimized SailPoint IIQ solutions for identity governance, lifecycle management, access certification, and role-based access control (RBAC) to enhance security and compliance.

Developed custom REST APIs, SCIM connectors, and Web Services integrations to seamlessly connect SailPoint IIQ, Azure AD, ServiceNow, Okta, and enterprise applications.

Configured and managed secure authentication mechanisms, including SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), and WS-Security for Single Sign-On (SSO), federation, and multi-factor authentication (MFA).

Designed and implemented identity correlation rules, policy-based access control (PBAC), and attribute-based access control (ABAC) for accurate identity mapping and role management.

Developed and automated Identity Lifecycle Management (ILM) processes such as user provisioning, de-provisioning, access request workflows, and role mining using SailPoint workflows and Bean Shell scripting.

Integrated Active Directory (AD), LDAP, HRMS (Workday, SAP SuccessFactors), databases (SQL Server, Oracle, MySQL, DB2), and cloud IAM platforms (Azure AD, Okta, AWS IAM) for centralized identity management.

Configured and executed access reviews, certification campaigns, separation of duties (SoD) policies, and compliance audits in SailPoint IdentityIQ and IdentityNow to meet SOX, HIPAA, GDPR, and NIST regulations.

Diagnosed and resolved identity provisioning, de-provisioning, birthright access, and entitlement management issues using debug logs, IIQ console, and troubleshooting tools.

Managed and optimized SailPoint IIQ connectors for Workday, ServiceNow, SAP, Oracle EBS, Mainframes, and Cloud applications, ensuring seamless data synchronization.

Designed and maintained CI/CD pipelines (Jenkins, Git, Azure DevOps) for SailPoint deployments, automating code migration, version control, and rollback strategies.

Performed performance tuning, optimization of SailPoint rules, workflows, and certification campaigns, and reduced processing latency.

Extensively worked with SailPoint APIs (REST/SOAP), PowerShell, and Python scripting to customize IAM functionalities, automate bulk user operations, and integrate with third-party tools.

Configured and managed password management policies, self-service password reset (SSPR), strong authentication policies, and helpdesk-assisted resets in SailPoint IIQ and Azure AD.

Implemented Privileged Access Management (PAM) integrations with CyberArk, BeyondTrust, Thycotic to manage elevated access permissions securely.

Moonshots Internet Pvt Ltd, Bengaluru (Aug2014 - Dec 2017)

System Administrator

Responsibilities:

•Installation and configuration of ESX servers and VM virtual servers using VM-templates to facilitate server consolidation, migration, and testing

•Analyze performance of physical servers to determine and customize virtual server specification

•Deployment of VM templates to deploy virtual servers

•Migrate to new data center on HP blade chassis C7000, BL460

•VM tools up gradation at host level and VM level

•LUN path mapping and keeping track of VM's along with their datastores.

•Capacity planning of virtualization world using VMkernel tools

•Maintaining and administrating VCenter through command line interface CLI

•Creating standard images and templates for VMware ESX.

•Was responsible for thin provisioning, VMFS expansion and RAID technologies

•Lead design, deployment, and maintenance of a broad range of Microsoft technologies including Windows Server, 2003, 2008, Windows Server Update Services WSUS DNS WINS DHCP Active Directory Group Policy Design and Implementation IIS and Terminal Services Gateway, Remote Desktop Services.

•Resolving day-to-day trouble tickets for operating systems, applications, printers, and network problems.

•Installing Hardware and Troubleshooting PCs hardware such as installing modem, soundcard, network card, hard drive, and troubleshooting on laptops

•Created and maintained resource management framework like creation resource pools, adding the VMs into resource pools

•Good experience in Cloning and Snapshot, and vMotion, Storage vMotion

Education:

•Bachelor of technology from Jawaharlal Nehru Technological University, Kakinada, India-2013

•Master of Science Engineering from Oklahoma Christian University, OKC, USA - 2023



Contact this candidate