Apply on Employer Site

Marriott International · 1 month ago

Security Engineer, MFA and Web Access Management

Bethesda, MD

Full-time

Hybrid

Mid, Senior Level

$85K/yr - $149K/yr

4+ years exp

Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. They are seeking a Security Engineer to lead the Identity & Access Management function, providing engineering support for MFA and SSO services while collaborating with various teams to ensure security and operational needs are met.

LeisureTourismTravel

Growth Opportunities

H1B Sponsor Likely

Responsibilities

Functions as an MFA and WAM point of contact for IT system administrators, Service Desk, service providers and application owners

Works closely with senior engineers and other team members for MFA and SSO services and operational needs

Routinely collaborates with different security team members including, but not limited to architecture, infrastructure, network, compliance, and incident response

Manages the MFA and WAM services including requirements gathering, design, building, testing, deployment, and operationalization

Collaborates with multiple stakeholders to support implementation of new applications and services

Defines and documents MFA and WAM policies and procedures

Creates test cases to ensure cross platform interoperability

Implements and validates security controls for the MFA and WAM solution

Designs security solutions to address risks throughout the Marriott SDLC process and confirm that the level of risk is acceptable in accordance with Marriott’s policies

Provides guidance and oversight for L2/L1 troubleshooting of operational issues

Leads the identification and remediation of relative security events

Submits reports in a timely manner, ensuring delivery deadlines are met

Promotes the documenting of project progress accurately

Provides input and assistance to other teams regarding projects

Manages and implements work and projects as assigned

Generates and provides accurate and timely results in the form of reports, presentations, etc

Analyzes information and evaluates results to choose the best solution and solve problems

Provides timely, accurate, and detailed status reports as requested

Provides technical expertise and support to persons inside and outside of the department

Demonstrates knowledge of job-relevant issues, products, systems, and processes

Demonstrates knowledge of function-specific procedures

Keeps up-to-date technically and applies new knowledge to job

Uses computers and computer systems (including hardware and software) to enter data and/ or process information

Understands and meets the needs of key stakeholders

Develops specific goals and plans to prioritize, organize, and accomplish work

Determines priorities, schedules, plans and necessary resources to ensure completion of any projects on schedule

Collaborates with internal partners and stakeholders to support business/initiative strategies

Communicates concepts in a clear and persuasive manner that is easy to understand

Generates and provides accurate and timely results in the form of reports, presentations, etc

Demonstrates an understanding of business priorities

Provides information to supervisors and co-workers by telephone, in written form, e-mail, or in person in a timely manner

Demonstrates self-confidence, energy and enthusiasm

Informs and/or updates leaders on relevant information in a timely manner

Manages time effectively and conducts activities in an organized manner

Presents ideas, expectations and information in a concise, organized manner

Uses problem solving methodology for decision making and follow up

Performs other reasonable duties as assigned by manager

Qualification

MFA managementPingOne implementationSSO servicesFederation protocolsAPI designCloud IAM servicesInformation security certificationContainerized deploymentCommunication skillsProblem solvingTeam collaboration

Required

Undergraduate degree in Computer Sciences or related field or equivalent work experience and certifications

Minimum 4+ years of information security or infrastructure engineering experience including -

4+ years of experience in managing MFA offerings

Passkeys, Biometrics, FIDO tokens, various authenticators

Implementation experience of PingOne products like DaVinci, Verify, Protect, Neo

4+ years' experience of Federation/SSO services, protocols, and technologies

OAuth/OIDC, SAML, WS-FED

Browsers, MDM/MAM, X509 cert-based authentication (user & device)

2+ years' experience with Ping Access and Ping Federate architecture, design, and implementation

Policy design and implementation

Ping Fed custom adapter development

Integration of custom applications

2+ years of experience in Development

JAVA, HTML/JavaScript/JSON, scripting (Ansible, Shell, Perl, Expect)

2+ years of experience translating business requirements to technical requirements with strong written and verbal communication skills

2+ years of experience with LDAP and directory Services using Radiantlogic or Ping Directory

Preferred

5+ years of experience with integrating IAM solutions with infrastructure and applications

2+ years of experience in designing & implementing API services and data transformation layers

2+ years of experience on containerized deployment environments

Current information security certification, including Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified SCADA Security Architect (CSSA) or Certified Secure Software Lifecycle Professional (CSSLP)

Technical knowledge of industry best practices pertaining to MFA/WAM services

Experience with defining & fulfilling Key Performance Indicators for MFA infrastructure

Experience in the IAM domain with user lifecycle management, authentication, authorization, federation, and privileged access management

Experience in implementing the capabilities such as Passwordless or adaptive authentication

Experience with cloud/SaaS IAM/WAM services

Experience with Zero-Trust Framework

Experience with CASB and WAF technologies

Experience doing business analysis and requirements gathering for complex business systems

Responsible for identifying, evaluating, and participating in decision making around new and emerging IAM/MFA technologies and should be able to support other areas of Information Security as needed

Strong understanding of PKI, certificate management, security, and provisioning of identity data

Benefits

401(k) plan

Stock purchase plan

Discounts at Marriott properties

Commuter benefits

Employee assistance plan

Childcare discounts

Coverage for medical

Dental

Vision

Health care flexible spending account

Dependent care flexible spending account

Life insurance

Disability insurance

Accident insurance

Adoption expense reimbursements

Paid parental leave

Educational assistance

Paid sick leave

0.077 PTO balance for every hour worked

A minimum of 9 holidays annually

Company

Marriott International

Glassdoor4.0

Marriott International, Inc.

Founded in 1927

Bethesda, Maryland, USA

10001+ employees

http://travel-brilliantly.marriott.com

H1B Sponsorship

Marriott International has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (101)

2024 (84)

2023 (97)

2022 (77)

2021 (37)

2020 (58)