Principal Architect of Identity and Access Management

JOB SUMMARY: 

We are seeking an experienced and strategic Principal Architect of Cyber Identity Engineering to lead and manage our organization’s Identity and Access Management (IAM) strategy and initiatives. In this role, you will oversee the administration, optimization, and evolution of critical IAM solutions, including Okta, Hypr, CyberArk, and SailPoint, to ensure that user identities, access rights, and privileged accounts are securely managed and compliant with internal and external policies. You will be responsible for leading a team of engineers, setting the strategic direction for IAM practices, and aligning IAM initiatives with broader organizational security and business goals.

 

KEY JOB FUNCTIONS:

· Strategic IAM Leadership: Strategic Vision & Thought Leadership (User-Centric Focus):

• Define the IAM vision: Develop a forward-thinking IAM strategy that prioritizes a seamless and positive end-user experience while maintaining robust security. This includes anticipating future needs and incorporating emerging technologies.
• Champion user-centric design: Advocate for user-centric design principles in all IAM initiatives, ensuring that security measures are intuitive, easy to use, and minimize disruption to workflows.
• Industry thought leader: Actively engage with the IAM community, staying abreast of best practices, emerging technologies, and innovative approaches to user experience. Share insights and contribute to industry discussions.
• Influence and evangelize: Effectively communicate the value of a user-centric IAM approach to senior leadership and stakeholders, securing buy-in and support for initiatives.
• Anticipate user needs: Proactively identify and address potential friction points in the user journey related to IAM, anticipating user needs and developing solutions before problems arise.

· Creative Problem Solving & Innovation (User Experience Focus):

• User journey mapping: Lead the effort to map and analyze user journeys related to access and identity, identifying pain points and opportunities for improvement.
• Design thinking: Apply design thinking principles to develop creative solutions that balance security and user experience. This includes prototyping, testing, and iterating on solutions based on user feedback.
• Innovation and experimentation: Foster a culture of innovation within the IAM team, encouraging experimentation with new technologies and approaches to enhance the user experience.
• Automation and self-service: Drive the automation of IAM processes to reduce manual effort and empower end-users with self-service capabilities.
• Streamlined access: Develop strategies to streamline access to applications and resources, minimizing the need for complex passwords and authentication procedures. Explore passwordless authentication and other innovative access methods.

· IAM Systems Oversight & Optimization:

• Take ownership of the architecture, configuration, and optimization of Okta, CyberArk, and SailPoint, ensuring these solutions are configured to support the organization’s needs effectively.
• Oversee the automation and streamlining of IAM processes, such as user provisioning, de-provisioning, role management, and access request workflows.
• Continuously assess, evaluate, and improve IAM processes and policies to mitigate security risks and ensure regulatory compliance (SOX, GDPR, HIPAA, NIST, etc.).
• Ensure the security of privileged access using CyberArk and other PAM tools, including conducting audits and ensuring privileged access reviews are performed regularly.

· Compliance & Risk Management:

• Ensure IAM systems and processes comply with relevant regulations, standards, and internal policies, including SOC 2, GDPR, HIPAA, and NIST.
• Lead efforts to prepare for audits, managing all compliance documentation related to IAM activities.
• Collaborate with internal and external auditors to ensure IAM practices meet or exceed security and regulatory requirements.
• Develop and implement strategies for mitigating IAM-related risks, including the handling of user access, credentials, and privileged accounts.

· Cross-Functional Collaboration:

• Work with IT, DevOps, HR, and business units to understand their needs and incorporate those requirements into IAM solutions.
• Serve as the primary liaison between cybersecurity and other departments regarding IAM policies, procedures, and systems.
• Partner with internal teams (e.g., security operations, network security, legal, compliance) to ensure a coordinated approach to identity and access management.
• Provide expertise and guidance to cross-functional teams on IAM best practices, security protocols, and the integration of IAM with enterprise systems.

· Incident Response & IAM Crisis Management:

• Lead the response to any incidents related to IAM, such as unauthorized access, privilege escalation, or account compromises.
• Oversee post-incident reviews, ensuring the root cause is identified and corrective measures are implemented.
• Ensure that the IAM team is prepared to manage any critical IAM-related incidents in a timely and effective manner.

· Innovation & Industry Leadership:

• Stay up-to-date with the latest trends, technologies, and regulatory requirements in IAM, including advancements in Okta, CyberArk, SailPoint, and related platforms.
• Drive continuous improvement initiatives to ensure IAM systems and processes remain at the forefront of security technology and industry best practices.
• Evaluate emerging IAM technologies and tools, and assess their potential fit for enhancing the organization’s IAM capabilities.

· Reporting & Executive Communication:

• Regularly report to the CISO, CTO, and other senior leadership on the status of IAM initiatives, including progress on key projects, risks, and opportunities.
• Develop and present executive-level reports, dashboards, and metrics that demonstrate the effectiveness and value of IAM strategies and investments.
• Communicate IAM issues, opportunities, and trends clearly and effectively to technical and non-technical stakeholders.

 

EDUCATION and/or EXPERIENCE and QUALIFICATIONS: 

• Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent work experience. Advanced certifications (e.g., CISSP, CISM) are a plus.
• 12+ years of experience in IT, Cybersecurity or IAM related fields, with at least 7 years in a leadership or director-level role.
• Strong expertise in Okta, Hypr, CyberArk, SailPoint, and other IAM systems, including configuration, administration, and integration.
• Deep understanding of Privileged Access Management (PAM), Identity Governance & Administration (IGA), and Identity and Access Management (IAM) best practices.
• Proven ability to lead and manage cross-functional teams and work collaboratively across departments to implement IAM solutions.
• Experience in managing IAM projects, including planning, implementation, and optimization of IAM solutions at scale.
• Strong knowledge of regulatory and compliance frameworks (SOX, GDPR, HIPAA, NIST, etc.) and their application to IAM.
• Excellent communication and presentation skills, with the ability to effectively communicate complex technical information to senior executives and non-technical stakeholders.
• Proven ability to drive change, innovation, and continuous improvement within an IAM function.
• Strong problem-solving, decision-making, and leadership capabilities.

PHYSICAL WORK ENVIRONMENT AND REQUIREMENTS:

• This role may require periodic on-call support or after-hours work depending on operational needs.
• Flexible working arrangements may be available.
• Some Travel may be required

At Caesars Entertainment, Inc., our Team Members create the extraordinary. We are the largest casino-entertainment company in the U.S. and one of the world's most diversified casino-entertainment providers. Since beginning in Reno, Nevada, in 1937, Caesars Entertainment has grown through the development of new resorts, expansions and acquisitions. Our resorts operate primarily under the Caesars®, Harrah's®, Horseshoe® and Eldorado® brand names. We focus on building loyalty and value with our guests through a combination of impeccable service, operational excellence and technological leadership. The company is committed to its Team Members, suppliers, communities and the environment through its PEOPLE PLANET PLAY framework.  

Our Caesars family is driven by our Mission, Vision and Values. We take great pride in living these values – Together We Win, All In On Service and Blaze the Trail – every day. Our mission, “Create the Extraordinary”. Our vision, “Create spectacular worlds. That immerse, inspire and connect you. We don’t perform magic; we create it with excellence. #WeAreCaesars”.  If you are ready to create some magic, we invite you to explore our dynamic, yet unique, career opportunities.