IAM Engineer

Job DescriptionJob Description

At Holiday Inn Club Vacations, we believe in strengthening families. And we look for people who exhibit the courage, caring and creativity to help us become the most loved brand in family travel. We’re committed to growing our people, memberships, resorts and guest love. That’s why we need individuals who are passionate in life and bring those qualities to work every day. Do you instill confidence, trust and respect in those around you? Do you encourage success and build relationships? If so, we’re looking for you.

Holiday Inn Club Vacations seeking a IAM Engineer is responsible for implementing, maintaining, and supporting and access management systems and services across the enterprise. This role plays a key part in ensuring that the right individuals have the right access to systems and data, while protecting sensitive information and supporting compliance objectives. The IAM Engineer works closely with IT, cybersecurity, HR, and business teams to deliver secure and efficient access controls for employees, partners, and customers in a high-availability timeshare organization. This position is ideal for individuals passionate about cybersecurity, and ready to contribute to protecting the digital infrastructure of a timeshare organization that serves thousands of vacation owners and guests.

KEY RESPONSIBILITIES
• Implement and manage IAM technologies such as user provisioning, single sign-on (SSO), multifactor authentication (MFA), and privileged access management (PAM).
• Support the configuration and integration of IAM systems with directory services (e.g., Active Directory, Azure AD, LDAP) and cloud applications.
• Assist with onboarding, offboarding, and access reviews through lifecycle automation.
• Participate in access control design, including role-based access control (RBAC), group policies, and entitlement mappings.
• Monitor IAM services and troubleshoot technical issues related to access, authentication, or synchronization.
• Collaborate with HR, IT, and security teams to maintain accurate sources and ensure timely provisioning/deprovisioning.
• Support IAM compliance and audit requirements, including SOX, PCI, and GDPR-related access controls and reporting.
• Maintain documentation for IAM systems, workflows, and standard operating procedures.
• Stay current with IAM technologies, best practices, and evolving security threats.
• Other duties as needed

QUALIFICATIONS:
Education & Experience:
• Bachelor’s degree in Information Technology, Cybersecurity, or related field; or equivalent experience.
• 2–4 years of experience in IT or security operations, with 1–2 years of hands-on IAM experience .
• Experience with IAM platforms such as Microsoft Entra ID (formerly Azure AD), Okta, Ping , or SailPoint.
• Familiarity with authentication protocols (SAML, OAuth, OIDC) and directory synchronization tools (e.g., Azure AD Connect).
• Knowledge of PowerShell or other scripting for automation and system integration is a plus.
Certifications ( but not required):
• Certified and Access Manager (CIAM),
• AWS Certified Security Specialty.
• Microsoft SC-300
• Certified Information Security Manager (CISM)
• GIAC (GSEC, GCIA, GCSA)
• CISSP or equivalent
________________________________________
KEY COMPENTENCIES
• Technical aptitude and strong troubleshooting skills.
• Attention to detail with a focus on accuracy and security.
• Strong communication skills for working with cross-functional teams.
• Ability to manage multiple tasks in a dynamic and fast-paced environment.
• Proactive mindset with a willingness to learn and adapt to new technologies.
• Understanding of the principles of least privilege, segregation of duties, and governance.
• Familiarity with regulatory frameworks (e.g., NIST CSF, PCI-DSS, GDPR,) as they relate to IAM.
________________________________________
SUPERVISORY RESPONSIBILITIES
• This position does not have direct supervisory responsibilities.
• May provide guidance or mentoring to junior team members or support staff on IAM-related tasks or tools.

WORK SCHEDULE/HOURS
Schedules will vary depending on business needs, and may entail working nights, weekends and holidays. Must be flexible to work outside of departmental operating hours. Hybrid work model, Monday – Thursday (4 days) onsite.

#ZRCOR