Head of CyberSecurity Identity Engineering

JOB SUMMARY:  

We are seeking an experienced and strategic Head of Cybersecurity Identity Engineering to lead and manage our organization’s Identity and Access Management (IAM) strategy and initiatives. In this role, you will provide executive leadership for all aspects of Identity and Access Management (IAM), mitigating risk and safeguarding critical assets. Develops and implements comprehensive IAM strategies to protect the organization from evolving threats. 

As the Head of Cybersecurity Identity Engineering, you will play a key leadership role in driving innovation, process improvement, and governance of IAM systems. You will work closely with senior leadership, business units, and cross-functional teams to ensure the organization’s identity management strategy supports growth, compliance, and security objectives. 

 

KEY JOB FUNCTIONS: 

 Strategic Leadership & Vision (Enterprise & Customer): 

• Unified IAM Strategy: Develop and champion a holistic IAM strategy that encompasses both enterprise and customer identity needs, aligning with overall business objectives and considering the convergence of these two areas. 

• Service-Oriented IAM: Position IAM as a valuable service provider, both internally and externally, focusing on delivering reliable, scalable, and user-friendly identity solutions. 

• Business Value Focus: Clearly articulate the value proposition of IAM services to business partners, demonstrating how IAM can enable their goals, improve security, and enhance customer experiences. 

• Market Awareness: Stay abreast of industry trends, emerging technologies, and competitive landscape in both enterprise and customer identity spaces. 

 Customer Identity Management (CIAM): 

• CIAM Strategy: Develop and execute a comprehensive CIAM strategy that supports business growth, enhances customer engagement, and ensures data privacy. 

• Customer Experience: Prioritize customer experience in CIAM initiatives, ensuring seamless registration, login, and profile management processes. 

• Scalability and Performance: Ensure that CIAM solutions can scale to meet the demands of a growing customer base and provide high availability. 

• Data Privacy and Security: Implement robust security measures and data privacy controls to protect customer identity information and comply with relevant regulations (e.g., GDPR, CCPA). 

 Enterprise Identity Management: 

• Enterprise IAM Governance: Establish and maintain a robust IAM governance framework for enterprise identities, including policies, standards, and procedures. 

• Identity Lifecycle Management: Oversee the efficient and secure management of enterprise identities throughout their lifecycle, from onboarding to offboarding. 

• Access Management: Implement and manage access controls to ensure that employees and other authorized users have appropriate access to resources. 

• Privileged Access Management: Secure and manage privileged access to critical systems and data. 

 Service Delivery & Consolidation: 

• Service Catalog: Develop and maintain a comprehensive catalog of IAM services, clearly defining service levels, costs, and benefits. 

• Service Level Agreements (SLAs): Establish and monitor SLAs for IAM services, ensuring that they meet business requirements and user expectations. 

• Consolidation Strategy: Develop and execute a strategy to consolidate disparate IAM systems and services, reducing complexity, improving efficiency, and lowering costs. 

• Automation: Drive the automation of IAM processes to improve service delivery, reduce manual effort, and enhance security. 

 Business Partner Engagement & Value Demonstration: 

• Business Partner Collaboration: Engage proactively with business partners to understand their identity-related needs and tailor IAM services to meet those requirements. 

• Value Communication: Develop clear and compelling messaging to communicate the value of IAM services to business partners, highlighting the benefits they can realize. 

• Service Adoption: Develop strategies to encourage business partners to adopt IAM services, making the onboarding process as seamless as possible. 

• Metrics and Reporting: Track and report on key metrics to demonstrate the value of IAM services to business partners, showcasing improvements in security, efficiency, and user experience. 

 IAM Systems Oversight & Optimization: 

• Take ownership of the architecture, configuration, and optimization of Okta, CyberArk, and SailPoint, ensuring these solutions are configured to support the organization’s needs effectively. 

• Oversee the automation and streamlining of IAM processes, such as user provisioning, de-provisioning, role management, and access request workflows. 

• Continuously assess, evaluate, and improve IAM processes and policies to mitigate security risks and ensure regulatory compliance (SOX, GDPR, HIPAA, NIST, etc.). 

• Ensure the security of privileged access using CyberArk and other PAM tools, including conducting audits and ensuring privileged access reviews are performed regularly. 

 Compliance & Risk Management: 

• Ensure IAM systems and processes comply with relevant regulations, standards, and internal policies, including SOC 2, GDPR, HIPAA, and NIST. 

• Lead efforts to prepare for audits, managing all compliance documentation related to IAM activities. 

• Collaborate with internal and external auditors to ensure IAM practices meet or exceed security and regulatory requirements. 

• Develop and implement strategies for mitigating IAM-related risks, including the handling of user access, credentials, and privileged accounts. 

 Cross-Functional Collaboration: 

• Work with IT, DevOps, HR, and business units to understand their needs and incorporate those requirements into IAM solutions. 

• Serve as the primary liaison between cybersecurity and other departments regarding IAM policies, procedures, and systems. 

• Partner with internal teams (e.g., security operations, network security, legal, compliance) to ensure a coordinated approach to identity and access management. 

• Provide expertise and guidance to cross-functional teams on IAM best practices, security protocols, and the integration of IAM with enterprise systems. 

 Incident Response & IAM Crisis Management: 

• Lead the response to any incidents related to IAM, such as unauthorized access, privilege escalation, or account compromises. 

• Oversee post-incident reviews, ensuring the root cause is identified and corrective measures are implemented. 

• Ensure that the IAM team is prepared to manage any critical IAM-related incidents in a timely and effective manner. 

 Innovation & Industry Leadership: 

• Stay up-to-date with the latest trends, technologies, and regulatory requirements in IAM, including advancements in Okta, CyberArk, SailPoint, and related platforms. 

• Drive continuous improvement initiatives to ensure IAM systems and processes remain at the forefront of security technology and industry best practices. 

• Evaluate emerging IAM technologies and tools, and assess their potential fit for enhancing the organization’s IAM capabilities. 

 Reporting & Executive Communication: 

• Regularly report to the CISO, CTO, and other senior leadership on the status of IAM initiatives, including progress on key projects, risks, and opportunities. 

• Develop and present executive-level reports, dashboards, and metrics that demonstrate the effectiveness and value of IAM strategies and investments. 

• Communicate IAM issues, opportunities, and trends clearly and effectively to technical and non-technical stakeholders. 

 

EDUCATION and/or EXPERIENCE and QUALIFICATIONS:   

• Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent work experience. Advanced certifications (e.g., CISSP, CISM) are a plus. 

• 15+ years of experience in IT, Cybersecurity or IAM related fields, with at least 9 years in a leadership or director-level role. 

• Strong expertise in Okta, Hypr, CyberArk, SailPoint, and other IAM systems, including configuration, administration, and integration. 

• Deep understanding of Privileged Access Management (PAM), Identity Governance & Administration (IGA), and Identity and Access Management (IAM) best practices. 

• Proven ability to lead and manage cross-functional teams and work collaboratively across departments to implement IAM solutions. 

• Experience in managing IAM projects, including planning, implementation, and optimization of IAM solutions at scale. 

• Strong knowledge of regulatory and compliance frameworks (SOX, GDPR, HIPAA, NIST, etc.) and their application to IAM. 

• Excellent communication and presentation skills, with the ability to effectively communicate complex technical information to senior executives and non-technical stakeholders. 

• Proven ability to drive change, innovation, and continuous improvement within an IAM function. 

• Strong problem-solving, decision-making, and leadership capabilities. 

PHYSICAL WORK ENVIRONMENT AND REQUIREMENTS: 

• This role may require periodic on-call support or after-hours work depending on operational needs. 

• Flexible working arrangements may be available. 

• Some Travel may be required 

At Caesars Entertainment, Inc., our Team Members create the extraordinary. We are the largest casino-entertainment company in the U.S. and one of the world's most diversified casino-entertainment providers. Since beginning in Reno, Nevada, in 1937, Caesars Entertainment has grown through the development of new resorts, expansions and acquisitions. Our resorts operate primarily under the Caesars®, Harrah's®, Horseshoe® and Eldorado® brand names. We focus on building loyalty and value with our guests through a combination of impeccable service, operational excellence and technological leadership. The company is committed to its Team Members, suppliers, communities and the environment through its PEOPLE PLANET PLAY framework.  

Our Caesars family is driven by our Mission, Vision and Values. We take great pride in living these values – Together We Win, All In On Service and Blaze the Trail – every day. Our mission, “Create the Extraordinary”. Our vision, “Create spectacular worlds. That immerse, inspire and connect you. We don’t perform magic; we create it with excellence. #WeAreCaesars”.  If you are ready to create some magic, we invite you to explore our dynamic, yet unique, career opportunities.