Security Engineer, MFA and Web Access Management

About The Position

Requirements

• Undergraduate degree in Computer Sciences or related field or equivalent work experience and certifications
• Minimum 4+ years of information security or infrastructure engineering experience including - 4+ years of experience in managing MFA offerings Passkeys, Biometrics, FIDO tokens, various authenticators
• Implementation exprience of PingOne products like DaVinci, Verify, Protect, Neo 4+ years’ experience of Federation/SSO services, protocols, and technologies a. OAuth/OIDC, SAML, WS-FED b. Browsers, MDM/MAM, X509 cert-based authentication (user & device)
• 2+ years’ experience with Ping Access and Ping Federate architecture, design, and implementation a. Policy design and implementation b. Ping Fed custom adapter development c. Integration of custom applications
• 2+ years of experience in Development a. JAVA, HTML/JavaScript/JSON, scripting (Ansible, Shell, Perl, Expect)
• 2+ years of experience translating business requirements to technical requirements with strong written and verbal communication skills
• 2+ years of experience with LDAP and directory Services using Radiantlogic or Ping Directory

Nice To Haves

• 5+ years of experience with integrating IAM solutions with infrastructure and applications
• 2+ years of experience in designing & implementing API services and data transformation layers
• 2+ years of experience on containerized deployment environments
• Current information security certification, including Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified SCADA Security Architect (CSSA) or Certified Secure Software Lifecycle Professional (CSSLP)
• Technical knowledge of industry best practices pertaining to MFA/WAM services
• Experience with defining & fulfilling Key Performance Indicators for MFA infrastructure
• Experience in the IAM domain with user lifecycle management, authentication, authorization, federation, and privileged access management
• Experience in implementing the capabilities such as Passwordless or adaptive authentication
• Experience with cloud/SaaS IAM/WAM services
• Experience with Zero-Trust Framework
• Experience with CASB and WAF technologies.
• Experience doing business analysis and requirements gathering for complex business systems
• Responsible for identifying, evaluating, and participating in decision making around new and emerging IAM/MFA technologies and should be able to support other areas of Information Security as needed
• Strong understanding of PKI, certificate management, security, and provisioning of identity data.

Responsibilities

• Functions as an MFA and WAM point of contact for IT system administrators, Service Desk, service providers and application owners.
• Works closely with senior engineers and other team members for MFA and SSO services and operational needs.
• Routinely collaborates with different security team members including, but not limited to architecture, infrastructure, network, compliance, and incident response
• Manages the MFA and WAM services including requirements gathering, design, building, testing, deployment, and operationalization.
• Collaborates with multiple stakeholders to support implementation of new applications and services.
• Defines and documents MFA an d WAM policies and procedures
• Creates test cases to ensure cross platform interoperability.
• Implements and validates security controls for the MFA and WAM solution.
• Designs security solutions to address risks throughout the Marriott SDLC process and confirm that the level of risk is acceptable in accordance with Marriott’s policies.
• Provides guidance and oversight for L2/L1 troubleshooting of operational issues.
• Leads the identification and remediation of relative security events
• Submits reports in a timely manner, ensuring delivery deadlines are met.
• Promotes the documenting of project progress accurately.
• Provides input and assistance to other teams regarding projects.
• Manages and implements work and projects as assigned.
• Generates and provides accurate and timely results in the form of reports, presentations, etc.
• Analyzes information and evaluates results to choose the best solution and solve problems.
• Provides timely, accurate, and detailed status reports as requested.
• Provides technical expertise and support to persons inside and outside of the department.
• Demonstrates knowledge of job-relevant issues, products, systems, and processes.
• Demonstrates knowledge of function-specific procedures.
• Keeps up-to-date technically and applies new knowledge to job.
• Uses computers and computer systems (including hardware and software) to enter data and/ or process information.
• Understands and meets the needs of key stakeholders.
• Develops specific goals and plans to prioritize, organize, and accomplish work.
• Determines priorities, schedules, plans and necessary resources to ensure completion of any projects on schedule.
• Collaborates with internal partners and stakeholders to support business/initiative strategies
• Communicates concepts in a clear and persuasive manner that is easy to understand.
• Generates and provides accurate and timely results in the form of reports, presentations, etc.
• Demonstrates an understanding of business priorities
• Provides information to supervisors and co-workers by telephone, in written form, e-mail, or in person in a timely manner.
• Demonstrates self-confidence, energy and enthusiasm.
• Informs and/or updates leaders on relevant information in a timely manner.
• Manages time effectively and conducts activities in an organized manner.
• Presents ideas, expectations and information in a concise, organized manner.
• Uses problem solving methodology for decision making and follow up.
• Performs other reasonable duties as assigned by manager.