Kunle Falana
Summary
Accomplished Identity and Access Management (IAM) specialist with extensive expertise in SailPoint IdentityNow, SailPoint IIQ, CyberArk, Okta, and Auth0. Proficient in designing and implementing secure identity governance strategies, including role-based access control (RBAC), lifecycle management, and automated provisioning. Demonstrated success in integrating third-party systems using REST/SCIM connectors and developing custom workflows for joiner/mover/leaver processes. Skilled in high-level and low-level design documentation, stakeholder engagement, and cross-functional teamwork to deliver robust IAM solutions. Adept at utilising cloud platforms such as Azure, AWS, and OCI alongside tools like Terraform, Docker, and Kubernetes to enhance security infrastructure. Career goal: to drive innovative IAM solutions that ensure seamless access management while maintaining stringent security standards.
Overview
11
11
years of professional experience
1
1
Certification
Work history
IAM/ SME Solution Architect
MHRA/HQHOUSING
07.2024 - 06.2025
- Experienced Identity Access Management professional in the implementation of Access Review and Provisioning solution and Application Owner/Role Membership/Role Composition
- Implement REST classes using SailPint Rest Applicatin.
- Collaborated with Enterprise Architects and stakeholders to design and implement IAM solutions
- Led architecture for Active Directory and Entra ID, integrating Conditional Access, MFA, and SSO
- Produced technical documentation including HLDs, LLDs, and architecture diagrams
- Oversaw build, configuration, and testing of SailPoint IdentityIQ/IdentityNow environments
- Provided guidance to delivery teams on IAM tools, standards, and lifecycle processes
- Supported rollout of IAM service enhancements and compliance-aligned automation
- Using IIQ Console from operations such as checkout, import, connectors, Debug etc.
- Designed and deployed end-to-end SailPoint IdentityIQ/IdentityNow environments, including role modeling, policy design, connector integration, and SSO implementation.
- Delivered strategic IAM solutions using SailPoint IIQ/IdentityNow, Active Directory, and Entra ID, optimizing access policies, SSO, and lifecycle automation.
- Engineered custom provisioning workflows, REST connectors, and policy frameworks aligned with organizational controls.
- Engaged with senior stakeholders to define access review programs, managed implementation, and led audit remediation efforts.
- Strengthened compliance through automation of Joiner–Mover–Leaver workflows and risk-aligned governance procedures.
- Used IIQ Service as part Identity IQ Active Directory (AD) provisioning.
- Managed projects for design, configuration and implementation of SailPoint Identity Now, SailPoint IIQ, including coordinating with vendor leadership, technical services leadership, and end user customers.
- Understanding of directories (AD/LDAP) and group structures, policies, Frame set up for enterprise level Role mining, Role Based Access Control (RBAC).
- Conducts initial project definitions and performs appropriate business analysis, systems analysis and design.
- Develop custom SailPoint Build Map Rules and Workflows as per the business.
- Led the design and deployment of identity solutions using Active Directory and Entra ID, integrating Conditional Access policies, MFA, and SSO to enhance security.
- Directed end-to-end execution of identity infrastructure projects, ensuring seamless implementation and compliance with enterprise standards.
- Provided strategic guidance on identity lifecycle management, optimizing IAM frameworks for operational efficiency.
- Integrated identity solutions with third-party enterprise systems, facilitating secure authentication and role-based access.
- Developed custom SailPoint rules, workflows, and automation to improve provisioning, compliance, and security posture.
- Perform project planning, critical path analysis, tailor implementation approach and roll out strategies.
Sailpoint IIQ /SailPoint Identity Now S Architect
Fujitsu
07.2023 - 07.2024
- Present IIQ solution designs for relevant architecture and security approval forums
- Experience in providing overall ServiceNow design principles, performance design, reliability design, manageability design, security design and guidance for software and hardware integration with different applications e.g Oracle EBS Suite
- Led the SailPoint IdentityIQ upgrade from v6.3 to v7.0, developing new provisioning logic and optimizing access reviews across 100+ integrated applications.
- Architected SSH key lifecycle governance and privileged access integration with SailPoint, CyberArk, and Azure services.
- Managed full SailPoint IIQ upgrade cycle, restructuring provisioning across 100+ applications.
- Integrated CyberArk PAM and Azure services into identity governance workflows.
- Documented architecture decisions and compliance controls in Confluence.
- Delivered AI-driven workflow automation and risk analytics for operational efficiency.
- Participated in CAB and architecture forums to validate IAM designs.
- Managed full SailPoint IIQ upgrade cycle (v6.3 to v7.0), rewrote provisioning logic and role models for 100+ apps.
- Designed and presented secure architecture to design authority forums, documenting ADRs and compliance-aligned controls in Confluence.
- Integrated AI-driven enhancements into workflow automation and risk analytics to improve operational decision-making.
- Involved in knowledge sharing sessions for ServiceNow integration with SailPoint and PAM intra-application Authorization implementation, SailPoint Identity Now, SailPoint IIQ (with File Access Manager v8.3) Compliance Manger component involved in creation of design documents, code reviews.
- Participated in the status meeting and & discussed issues related to SailPoint Identity Now SailPoint IIQ with File Access Manager v8.3.
- Conducted regular code reviews and provided technical guidance and to ensure adherence to architectural standards.
- Collaborated with infrastructure teams to ensure the proper provisioning and configuration of resources in Azure, optimising cost, and performance.
- Rewriting the workflows to encompass the new way of provisioning.
- Restructured the entire product to reflect direct provisioning across a large number of applications.
- In the process of upgrading the IdentityIQ product from SailPoint 6.3 to SailPoint 7.0, Responsible to manage Administration functionality of the SailPoint such as loading data, create roles, create policies, scheduling tasks and certifications and reports.
- Spearheaded the upgrade and optimization of SailPoint IdentityIQ, restructuring the provisioning process across multiple enterprise applications.
- Designed and implemented identity federation connectors, ensuring seamless access management across Azure, AD, LDAP, and third-party platforms.
- Led efforts to enhance identity governance and compliance through policy enforcement and advanced security configurations.
- Developed AI-driven workflow automation within SailPoint, integrating PAM solutions for improved privileged access security.
- Included the improving Identity and Access Management (IAM) capabilities by controlling access to applications and systems that contain critical and sensitive information.
- Prepared system security reports by collecting, analysing, and summarising data and trends; present security system status by preparing and delivering briefings.
- Designed and integrating large complex and multi-domain directories setup (AD, LDAP).
- Experienced in IIQ/IDN workflows including joiner, leaver, mover with both life cycle manager and compliance manager modules.
- Incorporate AI into SailPoint workflow automation.
- Experience in Sailpoint and HRMS integration.
- Experience of integrating IGA with PAM solutions e.g CyberArk (PAM Access).
- Utilized Azure Machine Learning (ML) as a services that increases predictive analytics accuracy.
- Update job knowledge by tracking and understanding emerging security practices and standards; participate in educational opportunities; read professional publications; maintain personal networks; participate in professional organisations.
- Develop custom SailPoint Build Map Rules and Workflows as per the business needs.
- Experienced in Active Directory, Windows server 2003,2008 Linux, Unix.
- Assisted in executing the implementation of IAM/IAG systems and upgrade to systems as needed.
- Assist in updating (SailPoint Identity Now/ SailPoint IIQ with File Access Manager v8.3) workgroups and Monitor SailPoint Identity Now, SailPoint IIQ product functionalities.
- Contributed to the technology Resilience strategy and sub-strategies in application, infrastructure, security, data and monitoring.
- Delivered architecture and designs for central resilience services.
- I have been involved in implementing Identity Governance & Administration (IGA) to set up policy framework and set of security solutions that enable organizations to mitigate access-related risks and manage identity chaos more effectively.
- Create a platform to expose backend Service APIs which can be consumed by the mobile Web and Chatbot channels.
- Create the Backbase widget integration concept.
- Integration of Security to the front-end architecture.
- Incorporation of card systems into insurance renewal enrichment process.
Solution /IDAM/ /Security Engineer /Architect
Network Rail
09.2021 - 03.2023
- Create subscriptions against an Azure data-lake to use Power BI front end.
- Delivering full stack solutions on public cloud platforms using Microsoft Azure and Azure data lake.
- Working knowledge on IT Infrastructure projects preferably in the Digital Workplace environment.
- Design of identity federation connectors form SailPoint to target systems, along with subsequent access central by Secure AUTH.
- Ensure requirements gathered, processes defined, and use cases documented flow out of the box configuration vs. customization as much as possible.
- Created comprehensive High-Level and Low-Level Design documents, serving as crucial technical documentation for the project.
- Delivered high-availability SailPoint deployments and managed integration with PAM, ServiceNow, and HRMS for fully automated access provisioning and review cycles.
- Designed identity federation frameworks using OAuth2, SAML, OpenID Connect.
- Authored HLD/LLD documents aligned with ISO27001 and enterprise risk controls.
- Led disaster recovery strategy and Azure high-availability governance for IAM services.
- Integrated PAM, ServiceNow, and HRMS for automated access provisioning.
- Design of Architected enterprise-wide identity federation solutions, utilizing OAuth 2.0, SAML, and OpenID Connect protocols.
- Designed and deployed Azure identity governance strategies, implementing Conditional Access policies and security controls.
- Created high-level and low-level design documents, ensuring alignment with security best practices and IAM frameworks. Design documents, serving as crucial technical documentation for the project.
- Implemented containerized microservices deployment using Docker and Kubernetes, ensuring streamlined build and deployment.
- Configuration of IIQ Roles, Policies and Certifications for governance compliance.
- Designed identity federation frameworks across Azure AD, SecureAuth, and legacy platforms using OAuth2, SAML, and OpenID Connect.
- Led disaster recovery strategy for IAM services and defined Azure high-availability governance per business continuity requirements.
- Built containerized microservices pipelines for IAM platform extensions using Docker and Kubernetes.
- Authored high- and low-level designs aligned with ISO 27001 and enterprise risk controls.
- Build and Configure SailPointIIQ, SailPoint Identity Now in-built tasks like aggregation, ID refresh, schedule tasks, correlation, etc.
- Configuration and development of SailPoint Life Cycle Events (LCM).
- Customizing and branding SailPoint Identity Now, SailPoint IIQ solution.
- Ensured API security by designing and implementing OAuth 2.0, safeguarding data and system integrity.
- Defined Azure High Availability strategies in alignment with business protocols, ensuring reliable and resilient system operations.
- Flow Building, Importing and exporting flows.
- Creating and using sub flows.
- Developed a comprehensive Azure Disaster Recovery strategy, encompassing technical aspects, coordination, and communication procedures in the event of an incident.
Solution/ Sailpoint/ Security Engineer / Architect
Santander
10.2021 - 08.2022
- Present IIQ solution designs for relevant architecture and security approval forums.
- Experience in providing overall ServiceNow design principles, performance design, reliability design, manageability design, security design and guidance for software and hardware integration with different applications e.g EBS Suite.
- Involved in knowledge sharing sessions for ServiceNow integration with SailPoint, PAM, intra-application Authorization implementation, SailPoint Compliance Manger component and involved in creation of design documents, code reviews.
- Manage client requirements and configure Confidential connectors from 34+ applications.
- Design SailPoint deployment and solution architectures.
- Participate in all SailPoint deployment activities - connector configuration, custom rule development, workflow configuration and development, third party system integration.
- Oversaw IAM integration with PAM and ServiceNow for over 30+ applications, enabling secure self-service and access request automation.
- Facilitated SailPoint deployment, connector configuration, SoD enforcement, and upgrade strategy definition.
- Represented IAM during M&A technical due diligence, shaping target-state architectures and access strategy for acquired systems.
- Participated in the status meeting and & discussed issues related to SailPoint IdentityIQ with File Access Manager v8.3 to the group.
- Designed and developed proof of concept of architectures and prototypes for their future technology road map, IT Governance and IT Management using ITOM part of Service Now.
- Designed and integrating large complex and multi-domain directories setup (AD, LDAP).
- Attends regular M&A meetings with internal management and helps to facilitate discussion and answer questions regarding project status.
- Facilitate due diligence site visits focused on identifying operational and technology strategy, organizational structures, and current state business processes and supporting technology.
- Involved in migrating design gaps and recommend Security enhancements on cloud platform – strategy from AWS to Azure (IaaS, PaaS, SaaS).
- I designed security controls in compliance with group-wide security standards and configuration workbooks.
- Where necessary, support the project in articulating waivers related to security design decisions.
- Unified SailPoint IdentityIQ and IdentityNow across 30+ applications.
- Facilitated M&A due diligence and target-state IAM architecture planning.
- Integrated PAM and ServiceNow for secure access request automation.
- Designed multi-domain directory setups and compliance-aligned security controls.
- Implement SailPoint Identity IIQ/Now which gives open identity platform that allows enterprises the potential to scale.
- I set up the automation and control of user provisioning, access requests, separation-of-duties policies, access certification for auditors, password management and access to sensitive files.
Sailpont IIQ /Security Architect
HP, IT Alliance Group
09.2017 - 09.2021
- Previously working as a Technical Consultant incorporating integrating backend systems for a platform to offer products and Services to customers.
- Create a platform to expose backend Service APIs which can be consumed by mobile Web services.
- Development of workflows, rules, and custom connectors in SailPoint Identity Now, SailPoint IIQ.
- On-boarding Applications in SailPoint IIQ based on different connectors.
- Create the Back-base widget integration concept.
- Developed identity orchestration services, including backend API platform, Back base widget integration, and microservices.
- Managed large-scale onboarding for business-critical apps; automated roles, certification campaigns, and custom connector builds.
- Delivered greenfield ADFS design and RMS governance for sensitive resource segregation and auditability.
- Integration of (Oracle) Security to the front-end architecture.
- Identify current state and create future state of the architecture (Business, Applications, Data and Technology).
- Document the capabilities and architectures for the project and Develop responses and request to change.
- SAO based Designed / Micro services and integrate multiple data sources into existing complex products.
- Providing solutions for the changing business requirements.
- Using IIQ Console for operations such as checkout, import, connector Debug etc.
- Used IIQ Service as part Identity IQ for Active Directory (AD) provisioning.
- Greenfield design and implementation of highly available ADFS infrastructure to facilitate secure authentication to Office 365 services.
- Provided RMS (Role Management Specialist) support Oversight and guidance for role lifecycle management operational procedures using OIA, and responsible for running 'Segregation of Duties' checks.
Solution Architect
Oracle Denmark
08.2016 - 02.2017
Solution Architect /Cyber Solution – Lead
IBM
01.2016 - 08.2016
Solution Architect /Cyber Solution
Wipro
11.2014 - 12.2015
Education
Master of Science - Computer Information Systems
University of East London
Skills
- Identity & Access Management (IAM/IAG)
- SailPoint Identity Now
- SailPoint IIQ
- CyberArk
- Okta
- Auth0
- CISSP
- Conditional Access
- MFA
- SSO
- Role-Based Access Control (RBAC)
- Connector configuration
- Custom rule development
- Lifecycle workflow orchestration
- Third-party system integration
- SailPoint IdentityIQ
- IdentityNow
- Entra ID
- Joiner/Mover/Leaver workflows
- Provisioning automation
- High-Level and Low-Level Designs (HLD/LLD)
- ADRs
- Confluence
- Azure
- AWS
- OCI
- Terraform
- Docker
- Kubernetes
- SAML
- OAuth20
- OpenID Connect
- SCIM
- REST/SCIM connectors
- Stakeholder engagement
- CAB participation
- Delivery team guidance
- ServiceNow
- ArchiMate
- Lucidchart
- Jira
- PowerShell
- Java
- BeanShell
- API-based automation
- AD/LDAP Directory services
- Identity governance strategies
- Troubleshooting
- Cross-functional teamwork
- Architectural strategy
- Lifecycle management
- Policy enforcement
- Access reviews
- Custom joiner mover leaver workflows
- Automated provisioning
- Connector debugging
- Performance tuning
- NET Core
- C#
- SecureAuth
- Azure DevOps
Certification
- CISSP Certified
- TOGAF Certified
- Oracle Certified (EBS, ERP, SOA, Cloud, OBIEE, HR)
Custom
BPSS clearance, SailPoint IIQ / IdentityNow, CyberArk, Okta, Auth0, Entra ID, Java, BeanShell, PowerShell, .NET Core, C#, SAML, OAuth2.0, OpenID Connect, SCIM, Azure, AWS, Oracle Cloud Infrastructure, Active Directory, LDAP, SecureAuth, Docker, Kubernetes, Azure DevOps, Terraform, Confluence, Jira, ArchiMate (Archi), Lucidchart
Timeline
IAM/ SME Solution Architect
MHRA/HQHOUSING
07.2024 - 06.2025
Sailpoint IIQ /SailPoint Identity Now S Architect
Fujitsu
07.2023 - 07.2024
Solution/ Sailpoint/ Security Engineer / Architect
Santander
10.2021 - 08.2022
Solution /IDAM/ /Security Engineer /Architect
Network Rail
09.2021 - 03.2023
Sailpont IIQ /Security Architect
HP, IT Alliance Group
09.2017 - 09.2021
Solution Architect
Oracle Denmark
08.2016 - 02.2017
Solution Architect /Cyber Solution – Lead
IBM
01.2016 - 08.2016
Solution Architect /Cyber Solution
Wipro
11.2014 - 12.2015
Master of Science - Computer Information Systems
University of East London
Similar Profiles
Savannah GuffeySavannah Guffey
Human Resources and Training Specialist at MHRAHuman Resources and Training Specialist at MHRA
BEVIN DE SILVABEVIN DE SILVA
Regulatory Classifier, DAQ Unit at Medicinal Health Regulation Agency (MHRA)Regulatory Classifier, DAQ Unit at Medicinal Health Regulation Agency (MHRA)
JANANI UMASANKARJANANI UMASANKAR
Test Automation Team Lead at Accenture-MHRATest Automation Team Lead at Accenture-MHRA
Pradeep Kumar Rayapuram KaranamPradeep Kumar Rayapuram Karanam
Solution Architect / IAM - Active Directory at Daimler Truck Innovation Center IndiaSolution Architect / IAM - Active Directory at Daimler Truck Innovation Center India
Abhishek MathurAbhishek Mathur
IAM Solution Architect | Product Owner at Kapstone CyberSecurity- ic-ConsultIAM Solution Architect | Product Owner at Kapstone CyberSecurity- ic-Consult