Quality Assurance Architect

Job Title: Senior Product QA Architect IAM/IGA & Security Integrations

Domain: Cybersecurity / Identity & Access Management (IAM) / IGA

About the Role :

We are seeking a Senior Product QA Architect to drive the quality strategy for our core

Identity Security modules. In this high-impact role, you will be validating the security posture of

enterprise ecosystems. You will architect the testing strategies for complex Access

Collectors, Identity Governance (IGA) workflows, and Vulnerability Management

integrations.

You will architect end-to-end testing strategies across Access Collectors, Identity Governance

(IGA) workflows, Vulnerability Management integrations, and build scalable Python-based

automation frameworks for UI, API, and backend validation.

You will sit at the intersection of Security Architecture, Software Development, and Quality

Assurance, ensuring that our products are robust, secure, compliant, and highly automated.

Key Responsibilities :

1. Identity Lifecycle Management (LCM) & Provisioning :

Lifecycle Logic: Architect and execute comprehensive test scenarios for complex

Joiner, Mover, Leaver (JML) and Rehire workflows. Validate attribute synchronization

across disparate systems during identity state changes.

Automate lifecycle validation using Python-based frameworks (PyTest / Robot

Framework).

Provisioning Workflows: Validate end-to-end provisioning paths, including access

requests, multi-level approval workflows, policy violations (SoD), and final fulfillment on

target systems.

De-provisioning & Kill Switch: Rigorously test termination scenarios to ensure

immediate access revocation across all connected downstream applications and verify

audit trails.

2. Reconciliation & Application Onboarding :

Reconciliation Strategy: Design validation strategies for both trusted (authoritative) and

target reconciliation. Verify correlation logic, identity mapping, and the detection of

"orphaned" accounts or unauthorized access (drift).

Application Onboarding: Lead the QA strategy for onboarding new applications into

the IGA platform. Validate schema discovery, entitlement cataloging, and connection

parameters.

Data Integrity: Validate aggregation tasks handling high-volume identity data (100k+

records), ensuring data consistency between the Source of Truth (e.g., HRMS) and the

IGA platform.

Perform high-volume data validation (100k+ records) using Python scripts and database

validations.

3. Strategic QA Architecture & Governance :

Define and own the End-to-End QA Strategy for enterprise-grade IGA/IAM product

modules.

Collaborate with Solution Architects to review technical designs, ensuring testability of

custom connectors and adherence to security standards (GDPR, SOX, ISO 27001).

Create detailed test plans that cover functional logic, edge cases, and negative testing

scenarios for critical security workflows.

Design scalable automation frameworks using -PyTest or Robot Framework and

Selenium Or Playwright

4. Integration & Access Collector Validation:

Lead the testing of "Last Mile" integrations: validating Access Collectors and

Connectors (SCIM, REST, SOAP, JDBC) that talk to diverse target systems (Active

Directory, SAP, Workday, Salesforce, AWS).

Build API automation suites using Python + PyTest / Robot.

Perform UI automation for IGA portals using Selenium / Playwright.

Validate integrations with AD, SAP, Workday, Salesforce, AWS, and VM tools (Qualys).

5. Technical Testing & Root Cause Analysis :

Execute "Grey Box" testing: Analyze system logs, database states, and API responses to

troubleshoot defects.

Write Python utilities to validate entitlement assignments, SoD policies, and

reconciliation results.

Test complex Segregation of Duties (SoD) policies, ensuring both preventative and

detective controls trigger correctly.

Debug performance bottlenecks in aggregation tasks using SQL analysis and log

profiling.

Must-Have Technical Skills:

IGA/IAM Platforms: 5+ years of hands-on experience with SailPoint IdentityIQ (IIQ),

IdentityNow (IDN), or Saviynt. Deep understanding of Identity Cubes, Entitlements, and

Roles.

Coding & Scripting: Strong proficiency in Python.

API Proficiency: Expert-level knowledge of testing REST/SOAP APIs, specifically for

Custom Connectors and integrations.

Security Domain: Familiarity with Qualys (or similar VM tools), RBAC, ABAC, and

Compliance standards (SOX, HIPAA).

QA & Architecture Skills:

Deep expertise in validating Identity Lifecycle (LCM) events and business processes.

Experience with Performance Testing for high-volume identity transactions ,Knowledge

of CI/CD pipelines (Jenkins, GitLab) and version control.

Soft Skills:

Architect Mindset: Ability to look beyond the UI and understand the backend data flow

and architectural risks.

Communication: Ability to articulate technical risks to Product Managers and CISOs.

Analytical: Strong problem-solving skills to trace complex data issues across multiple

integrated systems.