IAM Architect - (8-12 years)

At Holiday Inn Club Vacations, we believe in strengthening families. And we look for people who exhibit the courage, caring and creativity to help us become the most loved brand in family travel. Were committed to growing our people, memberships, resorts and guest love. Thats why we need individuals who are passionate in life and bring those qualities to work every day. Do you instill confidence, trust and respect in those around you? Do you encourage success and build relationships? If so, were looking for you.

POSITION DESCRIPTION:

Holiday Inn Club Vacations seeking a IAM Architect is a senior technical leader responsible for designing and overseeing the implementation of enterprise-wide identity and access management solutions. This role ensures that IAM strategies support secure, seamless access across internal systems, customer platforms, and third-party integrations. The ideal candidate will have deep expertise in identity governance, authentication technologies, and security architecture, with a passion for protecting data and enabling user productivity across a modern, customer-centric timeshare organization. This position is ideal for individuals passionate about cybersecurity, and ready to contribute to protecting the digital infrastructure of a timeshare organization that serves thousands of vacation owners and guests.

KEY RESPONSIBILITIES

• Design and maintain enterprise IAM architecture, including identity lifecycle management, access provisioning, SSO, MFA, PKI, Customer Identity (CIAM) and role-based access control (RBAC).
• Develop and drive the roadmap for IAM services across internal users, business partners, and customer-facing applications.
• Evaluate, recommend, and implement IAM technologies and frameworks (e.g., Azure Entra, Okta, SailPoint, CyberArk, HSM etc.).
• Establish IAM standards, policies, and procedures in alignment with cybersecurity and compliance requirements.
• Provide architectural oversight and integration guidance for IAM in cloud (IaaS/PaaS/SaaS), hybrid, and on-prem environments.
• Collaborate with HR, IT, Security, Compliance, and business stakeholders to align IAM solutions with enterprise needs.
• Perform architecture reviews and risk assessments related to authentication, authorization, and identity governance.
• Lead efforts to integrate IAM with DevOps pipelines, ITSM, and third-party SaaS applications.
• Support audits and compliance activities, including NIST CSF, PCI-DSS, and GDPR
• Serve as the subject matter expert (SME) on IAM and mentor technical teams across the organization.
• Other duties as needed.

QUALIFICATIONS:

Education & Experience:

• Bachelors or Masters degree in Computer Science, Cybersecurity, Information Systems, or related field; or equivalent experience.
• 7+ years of experience in identity and access management, with at least 2 years in a lead or architect role.
• Strong hands-on experience with IAM platforms such as Azure Active Directory, Okta, Ping Identity, SailPoint, or ForgeRock.
• Knowledge of authentication protocols (SAML, OAuth2, OIDC, LDAP, Kerberos) and secure API integrations.
• Familiarity with cloud platforms (Azure, AWS, GCP) and hybrid identity management.
• Understanding of privileged access management (PAM), IGA,IdAM, and directory services.

Certifications (preferred but not required):

• Certified Identity and Access Manager (CIAM),
• AWS Certified Security Specialty.
• Microsoft SC-300
• Certified Information Security Manager (CISM)
• GIAC (GSEC, GCIA, GCSA)
• CISSP or equivalent

KEY COMPENTENCIES

• Strategic thinking and architectural design skills.
• Strong communication and stakeholder engagement abilities.
• Excellent problem-solving and analytical skills.
• Ability to drive cross-functional projects and influence security best practices.
• High attention to detail with strong documentation and policy development skills.
• Familiarity with regulatory frameworks (e.g., NIST CSF, NIST SP 800-63-4), PCI-DSS, GDPR,) as they relate to IAM.

SUPERVISORY RESPONSIBILITIES

• This role may provide technical leadership and mentorship to IAM engineers and analysts.
• May oversee contractors or vendor teams supporting IAM implementation or operations.
• No direct people management required, but may lead technical delivery for large-scale IAM projects.