Principal Customer Identity & Access Management Architect

About The Position

Requirements

• 7 years of experience in Identity and Access Management architecture, identity security, or a related discipline.
• Bachelor’s degree with a focus in Computer Science, Information Security, or an additional two years of relevant training/experience in lieu of this degree.
• Demonstrated experience architecting Customer Identity and Access Management (CIAM) solutions supporting large-scale guest or customer populations.
• Hands-on architecture experience with federated authentication platforms including Okta and Auth0, integrating consumer-facing applications using SAML, OAuth, and OpenID Connect.
• Experience designing customer identity lifecycle, authentication, registration, consent management, and privacy-aligned identity architectures.
• High school diploma or equivalent.
• Minimum age of 18.
• Must be authorized to work in the U.S.

Nice To Haves

• Experience architecting CIAM solutions in cloud and hybrid environments.
• Experience designing progressive profiling, step-up MFA, social login, identity federation brokering, and risk-based authentication patterns.
• Familiarity with regulatory, privacy, and security frameworks affecting identity management.

Responsibilities

• Define long-term CIAM architecture strategy across guest-facing identity domains, ensuring alignment with enterprise technology and security strategies with 12-month horizon.
• Exercise considerable latitude and initiative to solve by establishing architectural principles, standards, and reference designs for CIAM platforms including authentication, authorization, directory services, federation, identity lifecycle, and consent management (complex problems).
• Make decisions on identity architecture processes, vendor technology decisions, and technology approaches within the CIAM domain.
• Influence across company and several levels up to guide cross-functional technology and security teams to implement identity-centric architectures that support compliance, privacy, and risk-management objectives and ensure CIAM awareness is incorporated into every software rollout.
• Communicate effectively with technical and non-technical stakeholders, translating CIAM technical solutions into business outcomes that enhance customer trust and deliver an exceptional guest experience.
• Assess, test, and evaluate weaknesses in existing and legacy identity systems and drive architectural improvements that enhance security, scalability, and customer experience.
• Actively network with peers, partners, and industry leaders inside and outside the organization to benchmark CIAM capabilities against industry-leading practices and continuously advance the organization’s identity maturity.
• Mentor and coach engineers and analysts at all levels, fostering shared passion for identity excellence and advancing CIAM best practices across the organization.

Benefits

• Free stand-by travel privileges on Alaska Airlines, Hawaiian Airlines & Horizon Air
• Comprehensive well-being programs including medical, dental and vision benefits
• Generous 401k match program
• Quarterly and annual bonus plans
• Generous holiday and paid time off