A national public-sector health agency is completing an on-premises integration between One Identity Manager 9.2.2 and a low-code BPM platform using SCIM to automate provisioning based on business role assignments. This short-term engagement seeks an IAM SCIM integration expert to finalise SCIM provisioning mappings, update joiner/mover/leaver workflows, and validate end-to-end synchronisation against MS SQL-backed directories. The work will be executed with the internal IAM team and application owners, on-site in Brussels, and must be delivered within a tight 10-day SME window.
The mission
The project connects One Identity Manager to a low-code application platform using SCIM to ensure accounts and entitlements are projected and removed according to business roles for about 1,500 employees across eight departments. The technical landscape is on-premises One Identity Manager 9.2.2, MS SQL for transactional stores, Active Directory for authentication, and the low-code platform's SCIM endpoints; the integration must support RBAC-based role changes and automated provisioning at scale.
You will provide hands-on subject matter support to complete the final integration tasks, focusing on designing SCIM integration patterns, implementing and testing provisioning mappings, and adapting existing joiner/mover/leaver workflows. Day-to-day you will work with the internal IAM developers and operations staff to run integration tests, troubleshoot synchronization issues through logs and SQL analysis, and produce the technical artefacts required for handover to the support team. The engagement is time-boxed to a maximum of 10 days of SME support.
Your responsibilities
- Design and deliver SCIM provisioning mappings and transformation rules that project business role assignments from One Identity Manager to the low-code platform, ensuring correct attribute mapping and error handling.
- Implement and validate changes to joiner, mover, and leaver workflows so provisioning and deprovisioning occur reliably after role updates.
- Execute integration tests, diagnose synchronization failures using OIM RestAPI logs and MS SQL queries, and resolve data or schema inconsistencies.
- Produce clear technical deliverables: technical requirement and design documents, BPMN diagrams for updated workflows, and a concise handover package for operations.
- Transfer knowledge to the support/maintenance team and confirm operational runbooks and expected monitoring metrics are in place.
Your profile
Essential skills
- Hands-on experience with One Identity Manager (Designer and runtime), at least 3 years implementing or supporting OIM in production.
- Proven experience designing and implementing SCIM-based integrations and working with OIM RestAPI.
- Strong practical knowledge of RBAC concepts and at least 3 years applying RBAC in identity solutions.
- Solid experience with relational databases, specifically MS SQL, at least 5 years querying and troubleshooting synchronization flows.
- Good working knowledge of LDAP and Microsoft Active Directory administration, Group Policy, and directory authentication concepts.
- Familiarity with authentication standards and protocols, including OAuth, SAML, Kerberos, and NTLM.
- Clear technical communication skills in English, and the ability to work conversationally in Dutch or French.
Languages
- English, C1
- Dutch, B2
- French, B2