Talent.com
Security Engineer, MFA and Web Access Management
Security Engineer, MFA and Web Access ManagementMarriott Hotels Resorts • Bethesda, Maryland, USA
Security Engineer, MFA and Web Access Management

Security Engineer, MFA and Web Access Management

Marriott Hotels Resorts • Bethesda, Maryland, USA
[job_card.variable_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Description

JOB SUMMARY

Leads the Identity & Access Management (IAM) function in Global Information Security organization through subject matter expertise (L3) on Multi-factor authentication (MFA) Web Access Management (WAM) technologies. Functions as the Security Engineer in the team providing engineering support for MFA and SSO service offerings daily operations and continuous improvements. Hands-on MFA implementation experience with PingOne SaaS products (DaVinci Protect Verify Directory) including integrations with Ping Federate for SSO services. Analyzes and implements changes to the MFA and SSO infrastructure including configurations and customizations to address application security and performance requirements. Works with stakeholders to integrate and onboard new applications and helps troubleshoot integrations with existing applications and systems. Responsible for directing L2 / L1 technical staff to address application security issues.

CANDIDATE PROFILE

Required Education and Experience

  • Undergraduate degree in Computer Sciences or related field or equivalent work experience and certifications
  • Minimum 4 years of information security or infrastructure engineeringexperience including -
  • 4 years of experience in managing MFA offerings
  • Passkeys Biometrics FIDO tokens various authenticators
  • Implementation exprience of PingOne products like DaVinci Verify Protect Neo
  • 4 years experience of Federation / SSO services protocols and technologies

a. OAuth / OIDC SAML WS-FED

b. Browsers MDM / MAM X509 cert-based authentication (user & device)

  • 2 yearsexperience with Ping Access and Ping Federate architecture design and implementation

    • a. Policy design and implementation

    b. Ping Fed custom adapter development

    c. Integration of custom applications

  • 2 years of experience in Development

    • a. JAVA HTML / JavaScript / JSON scripting (Ansible Shell Perl Expect)

  • 2 years of experience translating business requirements to technical requirements with strong written and verbal communication skills
  • 2 years of experience with LDAP and directory Services using Radiantlogic or Ping Directory

    • Preferred :

  • 5 years of experience with integrating IAM solutions with infrastructure and applications
  • 2 years of experience in designing & implementing API services and data transformation layers
  • 2 years of experience on containerized deployment environments
  • Current information security certification including Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified SCADA Security Architect (CSSA) or Certified Secure Software Lifecycle Professional (CSSLP)
  • Technical knowledge of industry best practices pertaining to MFA / WAM services
  • Experience with defining & fulfilling Key Performance Indicators for MFA infrastructure
  • Experience in the IAM domain with user lifecycle management authentication authorization federation and privileged access management
  • Experience in implementing the capabilities such as Passwordless or adaptive authentication
  • Experience with cloud / SaaS IAM / WAM services
  • Experience with Zero-Trust Framework
  • Experience with CASB and WAF technologies.
  • Experience doing business analysis and requirements gathering for complex business systems
  • Responsible for identifying evaluating and participating in decision making around new and emerging IAM / MFA technologies and should be able to support other areas of Information Security as needed
  • Strong understanding of PKI certificate management security and provisioning of identity data.

    • CORE WORK ACTIVITIES

  • Functions as an MFA and WAM point of contact for IT system administrators Service Desk service providers and application owners.
  • Works closely with senior engineers and other team members for MFA and SSO services and operational needs.
  • Routinely collaborates with different security team members including but not limited to architecture infrastructure network compliance and incident response
  • Manages the MFA and WAM services including requirements gathering design building testing deployment and operationalization.
  • Collaborates with multiple stakeholders to support implementation of new applications and services.
  • Defines and documents MFA an d WAM policies and procedures
  • Creates test cases to ensure cross platform interoperability.
  • Implements and validates security controls for the MFA and WAM solution.
  • Designs security solutions to address risks throughout the Marriott SDLC process and confirm that the level of risk is acceptable in accordance with Marriotts policies.
  • Provides guidance and oversight for L2 / L1 troubleshooting of operational issues.
  • Leads the identification and remediation of relative security events

    • Maintaining Goals

  • Submits reports in a timely manner ensuring delivery deadlines are met.
  • Promotes the documenting of project progress accurately.
  • Provides input and assistance to other teams regarding projects.

    • Managing Work Projects and Policies

  • Manages and implements work and projects as assigned.
  • Generates and provides accurate and timely results in the form of reports presentations etc.
  • Analyzes information and evaluates results to choose the best solution and solve problems.
  • Provides timely accurate and detailed status reports as requested.

    • Demonstrating and Applying Discipline Knowledge

  • Provides technical expertise and support to persons inside and outside of the department.
  • Demonstrates knowledge of job-relevant issues products systems and processes.
  • Demonstrates knowledge of function-specific procedures.
  • Keeps up-to-date technically and applies new knowledge to job.
  • Uses computers and computer systems (including hardware and software) to enter data and / or process information.

    • Delivering on the Needs of Key Stakeholders

  • Understands and meets the needs of key stakeholders.
  • Develops specific goals and plans to prioritize organize and accomplish work.
  • Determines priorities schedules plans and necessary resources to ensure completion of any projects on schedule.
  • Collaborates with internal partners and stakeholders to support business / initiative strategies
  • Communicates concepts in a clear and persuasive manner that is easy to understand.
  • Generates and provides accurate and timely results in the form of reports presentations etc.
  • Demonstrates an understanding of business priorities

    • Additional Responsibilities

  • Provides information to supervisors and co-workers by telephone in written form e-mail or in person in a timely manner.
  • Demonstrates self-confidence energy and enthusiasm.
  • Informs and / or updates leaders on relevant information in a timely manner.
  • Manages time effectively and conducts activities in an organized manner.
  • Presents ideas expectations and information in a concise organized manner.
  • Uses problem solving methodology for decision making and follow up.
  • Performs other reasonable duties as assigned by manager.

    • At Marriott International we are dedicated to being an equal opportunity employer welcoming all and providing access to opportunity. We actively foster an environment where the unique backgrounds of our associates are valued and greatest strength lies in the rich blend of culture talent and experiences of our are committed to non-discrimination on any protected basis including disability veteran status or other basis protected by applicable law.

    Key Skills

    Active Directory,Identity & Access Management,LDAP,SAFe,Assistive Technologies,Authentication,Pediatrics Experience,NVDA,Sailpoint,SSH,SSO,Oracle

    Employment Type : Full-Time

    Experience : years

    Vacancy : 1

    [job_alerts.create_a_job]

    Security Engineer • Bethesda, Maryland, USA

    [internal_linking.similar_jobs]
    Azure Security Sr. Engineer

    Azure Security Sr. Engineer

    Arena Technical Resources, LLC (ATR) • Washington, DC, United States
    [job_card.full_time]
    Information Security Analyst Duties and Responsibilities.Design, implement, and maintain secure cloud architectures within Azure Government Secret classified environments.Enforce zero trust princip...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Lead Security Engineer - Cyber Security

    Lead Security Engineer - Cyber Security

    Relativity • Washington, DC, United States
    [job_card.full_time]
    As a Lead Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure.In this role, the main responsibilities will be to investigate and analyze emerging threat...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Information Security Engineer

    Information Security Engineer

    ISACA • Washington, DC, United States
    [job_card.full_time]
    The Information Technology Department of Arnold & Porter has an opening for an Information Security Engineer in the Washington, DC office or may work 100% virtual / remote in a firm-approved U.The In...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Federal RMF & FISMA Security Engineer

    Federal RMF & FISMA Security Engineer

    Latitude Inc • Bethesda, MD, United States
    [job_card.full_time]
    A cybersecurity company is seeking an Information Security Engineer to ensure federal cybersecurity compliance, focusing on FISMA and NIST RMF. You will implement security controls, support audits, ...[show_more]
    [last_updated.last_updated_variable_hours] • [promoted] • [new]
    Information Security Engineer

    Information Security Engineer

    Palantir Technologies • Washington, DC, US
    [job_card.full_time]
    Palantir builds the world’s leading software for data-driven decisions and operations.By bringing the right data to the people who need it, our platforms empower our partners to develop lifes...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Software Security Engineer IV

    Software Security Engineer IV

    Airlines Reporting Corporation • Arlington, VA, US
    [job_card.full_time]
    It's a great time to join us at Airlines Reporting Corporation (ARC)! ARC accelerates the growth of global air travel by delivering forward-looking travel data, flexible distribution services a...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Information Security Engineer

    Information Security Engineer

    Arnold & Porter Llp • Washington, DC, United States
    [job_card.full_time]
    The Information Technology Department of Arnold & Porter has an opening for an Information Security Engineer in the Washington, DC office or may work 100% virtual / remote in a firm-approved U.The In...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Cyber Security Engineer SME – Associate Director

    Cyber Security Engineer SME – Associate Director

    Guidehouse • Washington, DC, United States
    [job_card.full_time]
    Cyber Security Engineer SME – Associate Director.Cyber Security Engineer SME – Associate Director.Our Cybersecurity Consultants are a team of business integrators with extensive consulting and indu...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Azure Security Engineer

    Senior Azure Security Engineer

    AllianceIT Inc • Washington, DC, United States
    [job_card.full_time]
    Senior Azure Security Engineer.Washington, DC (Hybrid) On-site 3 days a week at minimum.Design, implement, and maintain secure cloud architectures within Azure Government Secret classified environm...[show_more]
    [last_updated.last_updated_variable_hours] • [promoted] • [new]
    Manager, Software Engineering (Onsite)

    Manager, Software Engineering (Onsite)

    Collins Aerospace • Fulton, MD, US
    [job_card.full_time]
    MD440 : 8170 Maple Lawn Blvd Fulton MD 8170 Maple Lawn Boulevard , Fulton, MD, 20759 USA.Person, or Immigration Status Requirements : . The ability to obtain and maintain a U.Solipsys, Managed by Colli...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    AWS security engineer

    AWS security engineer

    SASSI • Adelphi, Maryland, United States
    [job_card.full_time]
    Salary : $170,000 - 170,000 per year.Citizenship and an active DoD Secret clearance (or the ability to obtain one).A Bachelors degree in Information Technology, Computer Science, Cybersecurity, or a...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Information Security Engineer

    Information Security Engineer

    InsightSoftware • Washington, DC, United States
    [job_card.full_time]
    We believe an actionable business strategy begins and ends with accessible financial data.With solutions across financial planning and analysis (FP&A), accounting, and operations, we transform how ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security Engineer

    Security Engineer

    Meta • Washington, DC, United States
    [job_card.full_time]
    Meta) builds technologies that help people connect, find communities, and grow businesses.Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help bu...[show_more]
    [last_updated.last_updated_30] • [promoted]
    AWS Security Engineer

    AWS Security Engineer

    Mfinite Consulting • Adelphi, MD, US
    [job_card.full_time]
    Mfinite Consulting is seeking an AWS Security Engineer to support our client by ensuring the security of its AWS cloud infrastructure and applications. This critical role involves designing, impleme...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Lead Security Engineer - Federal Cyber Operations

    Lead Security Engineer - Federal Cyber Operations

    TekSynap • Washington, DC, United States
    [job_card.full_time]
    A high-tech company is seeking a Lead Security Engineer to oversee cybersecurity operations within the DC area.The ideal candidate will lead efforts to ensure compliance with federal security stand...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Cloud Security Engineer : AWS / Azure, Wiz & Compliance

    Cloud Security Engineer : AWS / Azure, Wiz & Compliance

    Cognizant • Washington, DC, United States
    [job_card.full_time]
    A leading technology firm is seeking a Cloud Security Engineer to manage security posture and compliance in a multi-cloud environment. The role involves configuring security policies within the Wiz ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Cloud Security Architect SME

    Cloud Security Architect SME

    LS Technologies, LLC • Washington, DC, US
    [job_card.full_time] +1
    LS Technologies, a Tetra Tech Company is seeking a highly skilled Cloud Security Architect.This role will provide advanced technical leadership in the design, implementation, and oversight of secur...[show_more]
    [last_updated.last_updated_30] • [promoted]
    AWS Security Engineer

    AWS Security Engineer

    ANGARAI • College Park, MD, US
    [job_card.full_time]
    The engineer will design, implement, and maintain security controls, conduct assessments, monitor cloud environments and lead incident response activities. This role works closely with cross-functio...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]