AVP, Identity & Access Management Architect and Operations Lead

We're partnering with a leading global provider of vacation ownership, rental, and resort experiences, who are known for their vacation club memberships, timeshare properties, and luxury travel options across a portfolio of high-end resorts and destinations. With a strong focus on customer service, they offer flexible vacation solutions such as points-based systems and exchange programs, and operate under multiple well-known hospitality brands.

They are currently undergoing a technology transformation, with a focus on modernization to improve relationships with customers and further expand their accessibility across all experiences and destinations. The goal is to be a technology leader in hospitality, and they are looking for individuals eager to bring their expertise to the organization long-term.

Under new leadership, the team has been reinvigorated and are primed for growth across their entire Global Technology organization including Engineering & Operations, Data Platforms & Engineering, Artificial Intelligence, Information Security, Privacy, Infrastructure, Products & Platforms, Delivery Office, and the Office of the CIO. The business intends to double it's spending on Technology across the organization for each of the next 3 years. This is your opportunity to be a part of the journey and drive innovation through technology adoption.

Reporting to the VP of Information Security Architecture, the AVP, Identity & Access Management (IAM) will help lead the overall strategy, planning, evaluation & implementation of the entire Identity/Access Management stack. The individual in this role will significantly contribute to the direction and oversight into the IAM functions across the MVW enterprise, including areas such as developing centralized provisioning IAM engine to all MVW business and workforce applications, workflow and review certification, Audit and Compliance, Hybrid cloud management, Privileged Access Management, Authentication & Authorization.

This leader will require expert knowledge in modern Identity Management approaches, administration, Identity cloud services, custom connector development, installation and configuration, performance tuning, backup, and recovery methods in multiple computing environments and must be well versed in J2EE, .Net, Service Oriented Architecture (SOA), Web Services, LDAP, XML, Oauth, OpenID, and SAML 2.0. This position also requires knowledge of SQL databases and should be able to support other areas or functions as needed.

The position leads designing, specifying, and selecting business application information security solutions, considering functionality, data, security, privacy, interoperability, scalability, and performance for the most advanced IT architectures. This position will directly contribute to the overall global enterprise cloud architecture and lead the security vision and strategy around business focused Identity Management and information security.

Specific Expected Contributions

• Architecting, implementing and managing IAM systems including Customer IAM (CIAM) solutioning.
• Architecting and managing across all facets of IAM (Governance, Access Management, Privileged Access Management).
• Identifying and addressing issues related to IAM performance.
• Providing technical leadership for the integration of IAM systems.
• Ensuring alignment between IAM standards and business objectives.
• Developing and maintaining IAM policies, procedures, and standards.
• Working with stakeholders to understand their IAM requirements and translating them into technical specifications.
• Performing audits ensuring that systems are in compliance with established IAM standards and policies.
• Providing support and guidance to team members regarding IAM.
• Ensuring that IAM systems are updated regularly and remain secure against potential threats.
• Documenting IAM strategies and systems for future reference and review.
• Participate on significant application development projects to design secure architectures and ensure developed systems align with MVW security strategy and policy.
• Maintain security architecture documentation, including architecture frameworks, design patterns, logical and physical diagrams, and standards.
• Enhance Security team capabilities by mentoring more junior team members.
• Champion information security principles and best practices on key customer feature development projects to help design secure architectures and ensure developed systems align with MVW security strategy and policy.
• Lead the definition and methodology for ensuring applications and processes are fully integrated with our digital & service delivery platforms.
• Ensure that company developed, as well as third-party applications adhere to security best practices and principles, as well as design mitigation solutions for applications to meet these standards.
• Create security architecture documentation, including architecture frameworks, patterns, and standards.
• Partner with leaders across our Information Security and Data Privacy organization, as well as other organization leads.
• Work directly with peers and/or third parties to provide mitigations and strategic solutions to solve major application security hurdles by evaluating business strategies and requirements.
• Studying architecture/platform identifying integration issues and preparing cost estimates.

Education & Certifications

• Bachelor's degree in Computer Science, Information Technology, or related discipline or equivalent work experience.
• Master's degree in information security or related discipline preferred.
• Certified Identity and Access Management (CIAM)
• OCI Oracle Identity Manager
• SailPoint IIQ Administrator
• Global Information Assurance Certification (GIAC) Identity Management

Qualifications

• At least 10 years progressive experience in relevant Information Security discipline.
• At least 8 years of experience in Information Security.
• Proven experience managing mid to large sized Identity Management shops (at or greater than 2 million identities).
• Experience with one or more of the following: ISO 27001, NIST, CIS standards, or SOC 2 Controls
• Experience with AWS and Microsoft Azure/Entra ID
• Demonstrated expertise with modern Identity Management systems such as OCI, Sailpoint, Saviynt, BeyondTrust, and CyberArk.

Skills and Attributes

• Exceptional critical thinking skills and thought leadership with the ability to comprehend complex problems, draw logical conclusions, make sound decisions, develop solutions, and negotiate and respond accordingly to drive closure of complex challenges.
• Proven track record and experience in developing comprehensive security solutions that meet the objectives of excellence in a dynamic environment.
• Strong demonstrated knowledge of enterprise IT systems, cloud solutions and security technologies.
• Ability to engage executive level stakeholders on complex matters with limited oversight and guidance.
• Relevant Cybersecurity Certification(s) (CISSP, CISA, CIAM, etc.).