Bikash is available for hire

Bikash Bhandari

Verified Expert in Engineering

Senior SailPoint Developer

Irving, TX, United States

Toptal member since June 12, 2024

Expertise

Java ServiceNow Azure Python Agile Development Database SQL JDBC Automation Postman

Bio

Bikash is a SailPoint developer with a strong background in identity and access management (IAM) and its best practices. He has spent seven years designing, implementing, and customizing SailPoint solutions. He also excels at developing and maintaining identity governance frameworks, ensuring compliance, and enhancing the security posture of organizations across various industries. Recently, Bikash executed a SailPoint migration that streamlined processes and boosted scalability and security.

Portfolio

Bank of Hawaii Corp - Main

Identity & Access Management (IAM), SailPoint IdentityNow (IDN), Postman, APIs...

Vanderbilt University Medical Center

SailPoint IdentityIQ (IIQ), Java, Identity & Access Management (IAM), SailPoint...

NewRez LLC

Access Control, IT Integration, Role-based Access Control (RBAC), Requirements...

Experience

APIs - 7 years
Java - 7 years
SailPoint IdentityIQ (IIQ) - 5 years
Compliance - 5 years
Active Directory (AD) - 5 years
Governance - 5 years
SailPoint IdentityNow (IDN) - 4 years

Availability

Full-time

Preferred Environment

SailPoint IdentityIQ (IIQ), SailPoint IdentityNow (IDN)

The most amazing...

...project I've delivered involved migrating from SailPoint IdentityIQ (IIQ) to IdentityNow (IDN)—streamlining processes and bolstering scalability and security.

Work Experience

SailPoint Implementation Developer III

2024 - PRESENT

Bank of Hawaii Corp - Main

Led the end-to-end onboarding of two web service applications into SailPoint IDNow, ensuring compliance with SoX regulations.
Configured web services connectors and integrations for seamless identity provisioning and de-provisioning. Configured all the HTTP operations required for the provisioning and de-provisioning of user accounts and their access items.
Created and enforced before and after operation rules to handle data transformation and ensure consistent access control.
Developed a customized workflow to notify application owners when the application’s license limit is reached to take corrective measures in a timely manner.
Implemented role-based access control (RBAC) by defining business roles, entitlements, and access profiles to enforce least privilege principles.
Conducted periodic access certifications to ensure users retained only necessary privileges per SoX regulatory mandates.
Worked extensively with SailPoint IDNow V3 and Beta APIs using Postman to create and manage rules, attach them to sources, and dynamically add or remove access profiles from identities, ensuring seamless automation and governance.
Implemented segmentation for access profiles based on cost center in SailPoint IDNow, ensuring that user access was restricted and assigned according to their designated financial unit, improving governance and compliance.
Exported sources and rules from the sandbox environment and deployed them in production, followed by post-production validation to ensure all sources, rules, entitlements, and access profiles were correctly implemented.
Led meetings with key stakeholders, including app owners, managers, and business units, to gather requirements for onboarding and provide training on the use of SailPoint IDNow, ensuring smooth adoption and compliance with governance standards.

Technologies: Identity & Access Management (IAM), SailPoint IdentityNow (IDN), Postman, APIs, certification campaign, lifecycle management, Governance, Role-based Access Control (RBAC), Demand Sizing & Segmentation, web services application onboarding, sandbox to production deployment, Testing, Validation, account aggregation, account correlation, configuration hub, Provisioning, Deprovisioning, Documentation, custom authentication

Senior SailPoint Developer

2023 - PRESENT

Vanderbilt University Medical Center

Managed various identities, exceeding 110,000 active users across multiple environments, ensuring efficient provisioning and de-provisioning.
Onboarded and integrated 15+ enterprise applications into the SailPoint IIQ platform, streamlining access management processes.
Led a team deploying SailPoint IIQ, achieving seamless integration with existing IAM systems and minimizing downtime.
Designed and implemented role-based access controls (RBAC), enhancing security posture and aligning with industry best practices.
Conducted thorough system audits and assessments, ensuring compliance with regulatory standards such as GDPR, HIPAA, and SOX.
Optimized performance and scalability of SailPoint IIQ infrastructure, enabling support for rapid business growth and increased user base.
Collaborated with cross-functional teams to gather requirements, design solutions, and deliver tailored IAM solutions aligned with organizational objectives.

Technologies: SailPoint IdentityIQ (IIQ), Java, Identity & Access Management (IAM), SailPoint, Governance, Joiner, Mover, Leaver, Rehire, Certifications, Application Onboarding, Life Cycle Management (LCM), Role-based Access Control (RBAC), Flat files, JDBC, ServiceNow, Active Directory (AD), Microsoft Azure, Provisioning, Deprovisioning, Workflow, Authentication, Authorization, Identity Service IQ, Compliance

SailPoint IdentityNow Engineer

2022 - 2023

NewRez LLC

Led the existing identity security program assessment, capturing business requirements and understanding the current business processes.
Involved in developing the Solution Design Overview and technical document, which includes Configuration of Roles, Policies, and Certifications for governance compliance, enhancing rules, aggregation, workflows, entitlement, and groups.
Worked with Active Directory and utilized PowerShell's capability to leverage the data required for analysis.
Created a complex workflow individually to automate the day-to-day process in the company, such as onboarding, offboarding, LOA, rehiring, and sending email notifications to managers (hiring, terminating, welcome emails, and resetting passwords).
Worked in creating complex transforms individually to meet the client's requirements. Worked with different transform types, mostly first valid, to meet the requirements.
Created rules for JDBC provisioning and de-provisioning based on the SQL queries provided by the database team.
Worked on creating cloud rules whenever transform is insufficient to meet the client's requirements.
Utilized different features of SailPoint IdentityNow, including creating, enabling, disabling, locking users, defining password policy, resetting passwords, email template modification, service agreements, and security settings.
Worked in complex SQL Query and Java programs to meet client requirements.
Worked with password management as well as certifications to review and provide access.

Technologies: Access Control, IT Integration, Role-based Access Control (RBAC), Requirements, Life Cycle Management (LCM), Workflow, Technical Design, Functional Specifications, SAML 2.0, Web Services, Database Development, Troubleshooting, Microsoft Azure, SQL, Active Directory (AD), Compliance, APIs, Java, Governance, SailPoint IdentityNow (IDN), Python

SailPoint IdentityNow Developer

2021 - 2022

State Farm

Pioneered the establishment of the SailPoint IdentityNow SaaS environment, collaborating closely with infrastructure, HR, and applications teams to build the system from the ground up.
Collaborated with stakeholders to evaluate the existing SailPoint IIQ ecosystem and determine the requirements for transitioning to SailPoint IdentityNow.
Conducted a comprehensive analysis of SailPoint IIQ, covering user profiles, lifecycle events, RBAC, SOD policies, access reviews, workflows, and identity governance processes.
Applied strong problem-solving skills to troubleshoot and resolve identity errors and duplicate account issues, ensuring system integrity.
Executed unoptimized aggregation for AD source through API calls (Postman), monitored source aggregation tasks, and re-ran tasks as needed for accurate data processing.
Leveraged various features of SailPoint IdentityNow, including user management, password policies, email templates, API calls, and security settings.
Collaborated with SailPoint Support to integrate legacy applications and established the SailPoint IdentityNow environment following recommended guidelines.
Maintained data precision by mapping user identities, privileges, roles, and policies from SailPoint IIQ to SailPoint IdentityNow.
Worked with cross-functional teams to establish birth-right access, ensuring immediate and secure employee access.
Implemented a collaborative approach, actively seeking feedback from business units to evolve and mature the identity program in alignment with the company's strategic vision.

Technologies: Identity & Access Management (IAM), Cloud Computing, Microsoft Azure, SQL, Web Services, Active Directory (AD), Life Cycle Management (LCM), Compliance, APIs, Java, Governance, SailPoint IdentityNow (IDN), Python

SailPoint IdentityIQ Engineer

2020 - 2021

New York City Health & Hospitals

Conducted integrations with various applications, including AD, Exchange, Flat File, and JDBC, connected to Oracle, MySQL, SQL Server, and DB2 databases.
Designed and implemented database access provisioning, de-provisioning, and password reset management using SailPoint Identity IQ.
Engaged with customers, business analysts, partners, and IT team members to comprehend business requirements, driving the analysis and design of technical solutions.
Developed test scenarios based on technical specifications to verify identity and access management solutions.
Provided application-related troubleshooting services as part of project and post-production support activities, ensuring accurate documentation and maintaining up-to-date records.
Participated in user acceptance testing (UAT) and contributed to bug-related reengineering efforts, ensuring optimal system performance and user satisfaction.
Conducted root cause analyses to identify and resolve intricate ISRM infrastructure problems.
Ensured on-time, within-budget, and scope delivery of ISRM infrastructure projects by completing tasks.
Worked on troubleshooting related to the user's profile on EPIC and QNXT applications.
Installed and configured agents for Active Directory and lightweight directory access protocol (LDAP).

Technologies: Role-based Access Control (RBAC), Life Cycle Management (LCM), Governance, Compliance, Active Directory (AD), Identity Service IQ, Java, Azure Active Directory

Experience

SailPoint IDN Developer

Migrated from SailPoint IIQ to IDN, ensuring minimal disruption, streamlining processes, and bolstering scalability and security.

I used a collaborative approach, meticulous planning, and thorough execution to facilitate a smooth transition. I also improved efficiency, automated provisioning, and strengthened access controls, positioning the organization for future growth and digital transformation.

SailPoint's IdentityIQ (IIQ) solution for VUMC

I implemented and managed SailPoint's IdentityIQ (IIQ) solution for VUMC, integrating 15+ applications and managing 110,000+ identities. I also automated compliance processes to mitigate regulatory risks and enhanced security through RBAC and audits for GDPR, HIPAA, and SOX. Also, I led a seamless deployment of IIQ, optimized its performance, and collaborated with IT and clinical staff to safeguard sensitive patient data while supporting rapid business growth.

Migration Solution from IdentityIQ to SailPoint IdentityNow

I led the assessment of an existing identity security program, capturing business requirements and proposing a tailored migration solution from IdentityIQ to SailPoint IdentityNow. I developed solution design and technical documents and configured roles, policies, and certifications for compliance. Also, I created and automated workflows and complex transforms and utilized APIs for web-based application onboarding. I developed a detailed migration roadmap, optimized user provisioning, and collaborated on custom connectors and virtual appliance clusters.

Education

2017 - 2018

Master's Degree in Data Analytics

University of Nebraska–Lincoln - Lincoln, NE, USA

Skills

Libraries/APIs

JDBC

Tools

SailPoint, Postman

Languages

Java, Python, SQL

Storage

Azure Active Directory

Frameworks

Windows PowerShell

Paradigms

Agile, Role-based Access Control (RBAC), Database Development, Automation, Testing

Other

SailPoint IdentityIQ (IIQ), APIs, SailPoint IdentityNow (IDN), Governance, ServiceNow, Active Directory (AD), Workflow, Compliance, Identity Service IQ, Identity & Access Management (IAM), Access Control, IT Integration, Requirements, Life Cycle Management (LCM), Technical Design, Functional Specifications, SAML 2.0, Web Services, Troubleshooting, Joiner, Mover, Leaver, Rehire, Certifications, Application Onboarding, Flat files, Microsoft Azure, Provisioning, Deprovisioning, Authentication, Authorization, Cloud Computing, Virtual Appliance, certification campaign, lifecycle management, Demand Sizing & Segmentation, web services application onboarding, sandbox to production deployment, Validation, account aggregation, account correlation, configuration hub, Documentation, custom authentication

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring