Apply on Employer Site

Caesars Entertainment · 4 months ago

Principal Architect of Identity and Access Management

United States

Full-time

Hybrid

Lead/Staff

12+ years exp

Caesars Entertainment is the largest casino-entertainment company in the U.S. and is seeking a Principal Architect of Identity and Access Management to lead their IAM strategy and initiatives. The role involves overseeing IAM solutions, leading a team of engineers, and aligning IAM practices with organizational security and business goals.

Food and Beverage

Responsibilities

Define the IAM vision: Develop a forward-thinking IAM strategy that prioritizes a seamless and positive end-user experience while maintaining robust security. This includes anticipating future needs and incorporating emerging technologies

Champion user-centric design: Advocate for user-centric design principles in all IAM initiatives, ensuring that security measures are intuitive, easy to use, and minimize disruption to workflows

Industry thought leader: Actively engage with the IAM community, staying abreast of best practices, emerging technologies, and innovative approaches to user experience. Share insights and contribute to industry discussions

Influence and evangelize: Effectively communicate the value of a user-centric IAM approach to senior leadership and stakeholders, securing buy-in and support for initiatives

Anticipate user needs: Proactively identify and address potential friction points in the user journey related to IAM, anticipating user needs and developing solutions before problems arise

User journey mapping: Lead the effort to map and analyze user journeys related to access and identity, identifying pain points and opportunities for improvement

Design thinking: Apply design thinking principles to develop creative solutions that balance security and user experience. This includes prototyping, testing, and iterating on solutions based on user feedback

Innovation and experimentation: Foster a culture of innovation within the IAM team, encouraging experimentation with new technologies and approaches to enhance the user experience

Automation and self-service: Drive the automation of IAM processes to reduce manual effort and empower end-users with self-service capabilities

Develop strategies to streamline access to applications and resources, minimizing the need for complex passwords and authentication procedures. Explore passwordless authentication and other innovative access methods

Take ownership of the architecture, configuration, and optimization of Okta, CyberArk, and SailPoint, ensuring these solutions are configured to support the organization’s needs effectively

Oversee the automation and streamlining of IAM processes, such as user provisioning, de-provisioning, role management, and access request workflows

Continuously assess, evaluate, and improve IAM processes and policies to mitigate security risks and ensure regulatory compliance (SOX, GDPR, HIPAA, NIST, etc.)

Ensure the security of privileged access using CyberArk and other PAM tools, including conducting audits and ensuring privileged access reviews are performed regularly

Ensure IAM systems and processes comply with relevant regulations, standards, and internal policies, including SOC 2, GDPR, HIPAA, and NIST

Lead efforts to prepare for audits, managing all compliance documentation related to IAM activities

Collaborate with internal and external auditors to ensure IAM practices meet or exceed security and regulatory requirements

Develop and implement strategies for mitigating IAM-related risks, including the handling of user access, credentials, and privileged accounts

Work with IT, DevOps, HR, and business units to understand their needs and incorporate those requirements into IAM solutions

Serve as the primary liaison between cybersecurity and other departments regarding IAM policies, procedures, and systems

Partner with internal teams (e.g., security operations, network security, legal, compliance) to ensure a coordinated approach to identity and access management

Provide expertise and guidance to cross-functional teams on IAM best practices, security protocols, and the integration of IAM with enterprise systems

Lead the response to any incidents related to IAM, such as unauthorized access, privilege escalation, or account compromises

Oversee post-incident reviews, ensuring the root cause is identified and corrective measures are implemented

Ensure that the IAM team is prepared to manage any critical IAM-related incidents in a timely and effective manner

Stay up-to-date with the latest trends, technologies, and regulatory requirements in IAM, including advancements in Okta, CyberArk, SailPoint, and related platforms

Drive continuous improvement initiatives to ensure IAM systems and processes remain at the forefront of security technology and industry best practices

Evaluate emerging IAM technologies and tools, and assess their potential fit for enhancing the organization’s IAM capabilities

Regularly report to the CISO, CTO, and other senior leadership on the status of IAM initiatives, including progress on key projects, risks, and opportunities

Develop and present executive-level reports, dashboards, and metrics that demonstrate the effectiveness and value of IAM strategies and investments

Communicate IAM issues, opportunities, and trends clearly and effectively to technical and non-technical stakeholders

Qualification

OktaCyberArkSailPointIAM strategyPrivileged Access ManagementIdentity GovernanceRegulatory complianceLeadershipCommunication skillsProblem-solvingCollaboration

Required

Bachelor's degree in Computer Science, Information Security, or related field, or equivalent work experience

12+ years of experience in IT, Cybersecurity or IAM related fields, with at least 7 years in a leadership or director-level role

Strong expertise in Okta, Hypr, CyberArk, SailPoint, and other IAM systems, including configuration, administration, and integration

Deep understanding of Privileged Access Management (PAM), Identity Governance & Administration (IGA), and Identity and Access Management (IAM) best practices

Proven ability to lead and manage cross-functional teams and work collaboratively across departments to implement IAM solutions

Experience in managing IAM projects, including planning, implementation, and optimization of IAM solutions at scale

Strong knowledge of regulatory and compliance frameworks (SOX, GDPR, HIPAA, NIST, etc.) and their application to IAM

Excellent communication and presentation skills, with the ability to effectively communicate complex technical information to senior executives and non-technical stakeholders

Proven ability to drive change, innovation, and continuous improvement within an IAM function

Strong problem-solving, decision-making, and leadership capabilities