Identity Governance and Administration (IGA) Engineer – SailPoint

Role Overview

This role supports identity lifecycle management within a USSOCOM Zero Trust program, leading the deployment and administration of SailPoint identity governance platforms across classified and unclassified environments. The selected candidate will implement identity lifecycle automation processes and ensure access to sensitive data is governed by dynamic, attribute-driven policies that align with Zero Trust principles.

Responsibilities

• Deploy and administer SailPoint IdentityNow or IdentityIQ across enterprise environments.
• Design and automate identity lifecycle processes including Joiner, Mover, and Leaver (JML) workflows.
• Define and manage identity attribute schemas supporting Attribute-Based Access Control (ABAC) models.
• Implement access certification campaigns and governance processes to maintain compliance with audit requirements.
• Develop and maintain role-based and attribute-based access models within SailPoint.
• Integrate SailPoint with Active Directory, Azure Active Directory (Entra ID), and enterprise applications.
• Support synchronization of identity data across classified and unclassified networks.

Required Qualifications

• Active DoD Top Secret clearance with SCI eligibility.
• Bachelor’s or Master’s degree in Cybersecurity, Information Technology, Computer Science, or related field.
• 3–10 years of relevant experience (Journeyman) or 10+ years of experience (Senior).
• Hands-on experience implementing and administering SailPoint identity governance solutions.
• Strong knowledge of Active Directory, LDAP, and Azure Active Directory structures and management.
• Experience implementing Role-Based Access Control (RBAC), Separation of Duties (SoD), and access certification processes.

Preferred Qualifications

• Experience implementing Attribute-Based Access Control (ABAC) strategies.
• Familiarity with DoD Identity, Credential, and Access Management (ICAM) architectures.
• Experience integrating identity systems using REST, SCIM, or SOAP APIs.
• Prior experience supporting USSOCOM or other DoD organizations.

Certifications

• Required: CompTIA Security+ CE (DoD 8570 IAT Level II).
• Preferred: SailPoint Certified IdentityNow Engineer or SailPoint Certified IdentityIQ Engineer.
• Preferred: Certified Identity and Access Manager (CIAM) or Certified Information Systems Auditor (CISA).

About the Organization

Barbaricum is a rapidly growing government contractor providing leading-edge support to federal customers, with a focus on Defense and National Security mission sets. We leverage capabilities across Intelligence, Analytics, Engineering, Mission Support, and Communications disciplines to transform the way customers approach complex problem sets by bringing to bear the latest in technology and high-caliber talent.