工程

Finding the Needle in the Needlestack: Moving Towards a Smarter Risk Detection, Modeling & Assessment

What is risk? Risk is a nebulous concept, albeit highly intuitive, or probably too generic of a term. The thing about risk is that to develop effective tools to deal with or mitigate its ill effects, one would typically require highly non-trivial and specific details. For example, risk from a […]

Bring your shovels, we’re going mining! – Gearing up for an AI revolution in access modeling

Managing access can be quite a daunting task in mid-to-large sized enterprises. Having a good answer for “Who should have access to what?” is not easy, to say the least. With a myriad of existing applications, accounts, file systems, etc. that keep growing all the time, and with a dynamic […]

Performance Engineering for SaaS Products at SailPoint

Performance Engineering means many things to different people.  Some people think “simple JMeter tests” and others “advanced capacity planning” or “predictive analytics”.  The Performance Engineering practice at SailPoint spans all of these concepts.  Today we will talk about what Performance Engineering means to IdentityNow and to SailPoint.  Let’s take some […]

DDE search technology and how to get the most out of your queries

The Dynamic Discovery Engine (DDE) in IdentityNow provides users with the ability to search Identities and related objects using a powerful and flexible search syntax.  The DDE utilizes Elasticsearch to power this search functionality. Elasticsearch is a distributed search and analytics engine based on the Lucene information retrieval library. Elasticsearch […]

Intuitiveness in Exception and Error Handling in Connectors

Connector projects are complex and exceptions are bound to happen. It is important that we have the ability to catch, categorize and handle exceptions, so that we do not leave the SailPoint identity platform in an inconsistent state. At SailPoint, we perform rigorous proofreading for preproduction and postproduction errors to […]

Create, Communicate, Inspire, Repeat: From Data-Driven PoCs to AI innovations

The abundance of data has made it ever so challenging for IAM professionals to have a bird’s eye view of the underlying risks in [fast-growing, dynamic] enterprise systems. These days companies are taking advantage of machine learning in hopes of gaining meaningful insights from large-scale, high-dimensional data. It should go […]

SCIMing through the Bermuda Triangle

Back in the days of IdentityIQ 7.0 there weren’t a lot of options when it came to implementing a SCIM client and fewer still implementing a SCIM Server. When considering a design the engineering team opted to create two artifacts during deployment, a common piece and a server-side piece. The […]

零信任世界中的身分

We have a concept at SailPoint: identity at the center of security. While that may appear self-gratifying, when you dig a little deeper, you’ll discover why it’s accurate. Zero Trust has been the growing buzzword and theme for the last couple of years in security. At its core, it means […]

9 Steps to Building an Engineering Security Guild

In our blog, Security in a SaaS Product, we discussed three things: being Aggressive, Impactful, and Evolving. One of the strategies we use to help all three of those principals is our weekly Security Guild meetings. The guild’s task is helping engineering keep security on their minds. We use our […]

Reimagining SailPoint UI

Changing the web face of a SAAS product can be an arduous process. In SailPoint’s case, we had to remove our legacy tech debt, define the new UX vision, and build a foundation that glues the UX vision to the UI implementation. Today, the last of the IdentityNow AngularJS code […]