Senior Identity & Access Management Engineer

Summary

We are seeking a Senior Identity & Access Management (IAM) Engineer to join the First Horizon team, specializing in SailPoint technologies. This role is for a Senior IAM Engineer specialized in SailPoint to lead the design, development, implementation, and administration of Identity and Access Management (IAM) solutions using SailPoint Identity

IQ and Identity Security Cloud. The ideal candidate will have extensive experience in identity lifecycle management, role-based access control (RBAC), integrations with enterprise applications, and security best practices.

As an Identity and Access Management Technology Engineer, you will play a key role in shaping our security landscape. Your expertise will be crucial in orchestrating application deployments, establishing robust connector configurations, and designing tailored rules to enhance our IAM structure. Collaborating with cross-functional teams, you'll contribute to workflow design, third-party system integrations, and the development of API services for streamlined access policy management.

Onsite in Memphis, TN;
Maryville, TN;
Birmingham, AL;
Lafayette, LA;
New Orleans, LA;
Charlotte, NC;
Raleigh, NC; or Dallas, TX.

• SailPoint Platform Engineering:
  Lead design, configuration, and customization of SailPoint Identity
  
  IQ and Identity Security Cloud (ISC), including connector configurations and custom rule development to optimize IAM processes.
• Lifecycle Management:
  Implement and support identity lifecycle workflows (joiner/mover/leaver), access request, provisioning and deprovisioning, and role management.
• Access Controls & Governance:
  Enhance and enforce RBAC, ABAC, least-privilege access, and segregation of duties practices. Support periodic access certifications and reviews to maintain compliance.
• Application Onboarding:
  Guide and execute onboarding of diverse applications into SailPoint, analyzing authorization models and designing provisioning solutions.
• Integrations & APIs:
  Design, develop, and maintain APIs/services for streamlined access management and facilitate third-party integrations.
• Workflow & Policy Design:
  Customize workflows, rules, forms, policies, and certifications, aligning governance processes with ever-evolving business requirements and regulatory needs.
• Monitoring & Troubleshooting:
  Oversee SailPoint health, lead incident response, and provide advanced troubleshooting for IAM-related issues in both project and production environments.
• SDLC Participation:
  Collaborate in full software development lifecycle, conduct User Acceptance Testing (UAT), and actively participate in defect resolution and deployment support.
• Documentation & Mentorship:
  Maintain up-to-date technical and operational documentation. Mentor junior team members and promote best practices throughout the IAM team.
• Continuous Improvement:
  Stay current on emerging identity technologies and trends, proactively proposing enhancements and automation opportunities.

• SailPoint Expertise:
  Minimum 3-5 years in SailPoint Identity
  
  IQ/ISC engineering or development (configuration, lifecycle management, API integrations, application onboarding).
• IAM Depth:
  Strong background in Identity and Access Management concepts, with hands‑on implementation of RBAC/ABAC, provisioning, access reviews/certifications, and security best practices.
• Integration
  
  Skills:
  
  Demonstrated proficiency in onboarding applications via connectors (LDAP, JDBC, REST, etc.), designing workflows, and developing custom rules.
• Programming/Scripting:
  Practical experience with relevant programming languages (Java, Bean Shell, XML, RESTful APIs) utilized within SailPoint environments.
• Testing & SDLC:
  Proven record in supporting UAT, deployment, defect resolution, and maintaining application health.
• Compliance & Audit:
  Familiarity with regulatory frameworks (SOX, GLBA, GDPR, etc.) and their identity controls.
• Communication:
  Ability to clearly explain technical concepts to business leaders and cross-functional teams, facilitating effective change management and training.
• Proven Leadership:
  Experience leading projects or mentoring others in an enterprise IAM environment.

• SailPoint Cloud migration experience (IIQ to ISC/Project Apollo)
• Experience with other IAM platforms (e.g., Azure AD, Cyber Ark, Okta)
• Background in banking/financial industry identity governance
• Experience with role mining, SoD design, identity analytics or AI-enabled IAM

First Horizon Corporation is a leading regional financial services company, dedicated to helping our clients, communities and associates unlock their full potential with capital and counsel. Headquartered in Memphis, TN, the banking subsidiary First Horizon Bank operates in 12 states across the southern U.S. The Company and its subsidiaries offer commercial, private banking, consumer, small business, wealth and trust management, retail brokerage, capital markets, fixed income, and mortgage banking services.

First…