Security Identity and Access Management Engineer - Sonesta

Job Description Summary This Security Identity and Access Management Engineer safeguards our company's digital infrastructure. They specialize in designing and implementing robust systems that regulate access to sensitive information, ensuring that only authorized employees can access specific data relevant to their roles. Additionally, they streamline user authentication processes, such as implementing single sign-on solutions and multi-factor authentication, to enhance security while optimizing user experience. Beyond technical implementation, this role will oversee compliance with regulatory standards, conduct security assessments, and develop incident response procedures to promptly address security breaches. Furthermore, they contribute to fostering a culture of cybersecurity awareness by creating comprehensive documentation and providing training to empower employees to mitigate risks effectively. Overall, their expertise is instrumental in upholding the integrity and security of our organizational data. Job Description Design IAM Solutions: Architect, design, and implement IAM solutions that align with the organization's security policies, compliance requirements, and business objectives. Identity Lifecycle Management: Develop processes and procedures for managing the entire identity lifecycle, including provisioning, authentication, authorization, and de-provisioning. Access Control Policies: Define access control policies and enforce least privilege principles to ensure that users have appropriate access rights based on their roles and responsibilities. Single Sign-On (SSO) Integration: Implement single sign-on solutions to streamline user authentication processes and enhance user experience across various applications and systems. Multi-Factor Authentication (MFA): Evaluate, select, and implement multi-factor authentication mechanisms to strengthen the security of user accounts and prevent unauthorized access. Privileged Access Management (PAM): Design and implement privileged access management solutions to secure sensitive systems and restrict access to critical resources. Identity Federation: Establish trust relationships with external identity providers to enable secure authentication and access to external services and applications. Identity Governance and Compliance: Implement identity governance processes to ensure compliance with regulatory requirements and industry standards, such as GDPR, HIPAA, SOX, and PCI DSS. Security Architecture Review: Conduct security architecture reviews and assessments to identify gaps, vulnerabilities, and areas for improvement in the IAM infrastructure. Incident Response and Remediation: Develop incident response procedures and participate in security incident investigations related to identity and access management. Documentation and Training: Create documentation, guidelines, and training materials for IAM processes, procedures, and best practices to educate stakeholders and promote security awareness. Qualifications and Skills Extensive experience (15+ years) in designing, implementing, and managing IAM solutions in enterprise environments. Strong understanding of security principles, cryptographic protocols, and authentication mechanisms. Excellent communication and interpersonal skills with the ability to collaborate effectively with cross-functional teams. Solid understanding of regulatory compliance requirements and data privacy laws. Experience with IAM platforms such as Active Directory and LDAP. Strong problem-solving skills and the ability to analyze complex issues and recommend effective solutions. Ability to develop and adapt API integrated solutions using access management tools. Deep familiarity with LDAP, SAML, XACML, OAuth, & SCIM required. Knowledge of cloud security concepts and experience with cloud identity and access management services (e.g., AWS IAM, Azure AD Identity Protection) is a plus Additional Job Information/Anticipated Pay Range Pay Range: $150k to $180k. Base pay offered may vary depending on various factors including but not limited to job related knowledge, skills, and job specific/overall experience. Benefits Sonesta recognizes that benefits play a vital role in helping ensure the health and financial security of employees and their families. We offer a variety of benefits to our employees including: Medical, Dental and Vision Insurance Health Savings Account with Company Match 401(k) Retirement Plan with Company Match Paid Vacation and Sick Days Sonesta Hotel Discounts Educational Assistance Paid Parental Leave Company Paid Life Insurance Company Paid Short Term and Long Term Disability Insurance Various Employee Perks and Discounts Upon submitting your application, please ensure you complete a full application in addition to attaching a resume. Incomplete applications received will not be considered. At Sonesta, we value our team members as individuals who enhance our guests’ experiences with their unique skills and contributions. We actively support professional growth and personal happiness in each of our employees at each of our hotels, resorts, suites and cruise ships. We seek out people who will eagerly partner with us to improve the overall Sonesta experience for our guests, and the overall Sonesta experience for their fellow colleagues. If you are interested in a career in some of the most impressive and beautiful surroundings in the world with generous benefits and perks, we hope you’ll get in touch with us. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations.