Position Description:
At CGI, you’ll help organisations strengthen security, improve governance, and accelerate digital transformation through robust identity and access management solutions. As a SailPoint IAM Engineer, you will play a key role in delivering secure, scalable identity governance capabilities across complex hybrid environments, enabling clients to reduce risk, improve compliance, and enhance operational efficiency. Working alongside talented security, infrastructure, and application specialists, you’ll have the opportunity to influence strategic IAM initiatives, contribute innovative solutions, and take ownership of high-impact technical delivery while continuing to develop your expertise within a collaborative and supportive environment.
CGI was recognised in the Sunday Times Best Places to Work List and has been named a UK ‘Best Employer’ by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go.
Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This is a hybrid position.
Your future duties and responsibilities:
In this role, you will design, implement, and enhance SailPoint IdentityIQ (IIQ) and Identity Security Cloud (ISC) solutions within large-scale enterprise environments. You will support the delivery of identity governance and administration capabilities, helping clients strengthen security, improve compliance, and streamline identity lifecycle management processes. Working across security, infrastructure, and application teams, you will take ownership of technical delivery, contribute innovative solutions, and support the successful execution of IAM transformation initiatives.
You will play a key role in integrating SailPoint with enterprise platforms, developing provisioning and governance capabilities, and ensuring IAM services remain secure, scalable, and aligned with business requirements. You’ll be supported by experienced colleagues while having the autonomy to drive outcomes and solve complex technical challenges.
Key responsibilities:
-Design & Deliver SailPoint IIQ and ISC solutions across hybrid environments
-Develop & Enhance Joiner, Mover, Leaver (JML) processes
-Configure & Optimise access requests, approval workflows, and certification campaigns
-Implement & Support application onboarding and connector integrations
-Drive RBAC and access governance initiatives
-Integrate & Automate SailPoint connectivity with Entra ID, Active Directory, HR systems, and cloud applications
-Collaborate & Resolve IAM-related issues with cross-functional teams
-Support & Strengthen audit, compliance, and governance requirements
-Produce & Maintain technical documentation and implementation artefacts
-Contribute & Innovate within IAM transformation and optimisation programmes
Required qualifications to be successful in this role:
To succeed in this role, you will bring strong hands-on SailPoint implementation experience alongside a solid understanding of identity governance, access management, and enterprise security principles. You should be comfortable working within complex hybrid environments, integrating multiple platforms and technologies, and delivering high-quality IAM solutions in fast-paced project settings.
Essential qualifications and experience:
-Strong hands-on experience with SailPoint IdentityIQ (IIQ) and/or SailPoint Identity Security Cloud (ISC)
-Proven delivery experience within enterprise IAM and IGA programmes
-Strong understanding of Identity Governance & Administration (IGA) principles
-Experience implementing RBAC, Least Privilege, Segregation of Duties (SoD), and identity lifecycle management
-Expertise configuring access requests, approval workflows, certifications, and provisioning integrations
-Experience integrating SailPoint with Microsoft Entra ID (Azure AD), LDAP, Active Directory, HR platforms, and cloud applications
-Strong scripting and automation skills using PowerShell, APIs, Java, and/or BeanShell
-Experience working within hybrid cloud environments
-Proven ability to troubleshoot and resolve complex IAM integration challenges
-Strong stakeholder engagement and communication skills
-Ability to work independently and deliver within enterprise-scale programmes
Desirable qualifications and experience:
-Experience with CyberArk or other Privileged Access Management (PAM) technologies
-Experience supporting SailPoint ISC migrations or hybrid IIQ/ISC environments
-Experience across Azure, AWS, and/or GCP
-Understanding of Zero Trust security principles
-SailPoint certifications
-Security certifications such as SC-, CISSP, or CCSP
-Experience working within regulated or highly governed environments
#LI-JS2
Skills:
1. CyberArk PAM
2. IAM Privileged Access Mgt
3. Identity and access mgt (IAM)
4. SailPoint IdentityIQ
5. Security Architecture
6. Amazon Web Services Cloud
7. Azure Cloud
8. Google Cloud Platform