Job Description

Job Description Summary

As an experienced IT Architect joining our Identity and Access Management (IAM) team, you will play a pivotal role in designing, implementing, and maintaining IAM solutions. In this role, you will be responsible for shaping and enhancing our organization's security posture by ensuring the effective management of user identities and access privileges. Collaborating with cross-functional teams, you will ensure seamless access control and security for our organization's digital assets.

Job Purpose

The IT Architect will be responsible for developing and maintaining the IAM architecture, policies, and standards to secure our systems and data. This role will involve designing and implementing solutions that enable efficient and secure access to resources while ensuring compliance with industry regulations and best practices.

Essential Job Responsibilities

  • Develop and maintain the IAM architecture, ensuring it aligns with the organization's security and business requirements.
  • Provide technical oversight for support and developments teams across the IAM portfolio.
  • Lead the integration of Okta identity and access management solutions, including SSO, MFA, Workflows, and lifecycle management.
  • Develop and deliver custom Identity Management (IDM) software used by Hotels, Vendors, Corporate, and Affiliate Staff.
  • Collaborate with cross-functional teams to gather requirements and design comprehensive IAM solutions that align with business goals, regulatory requirements, and security standards.
  • Develop architectural blueprints, technical specifications, and implementation plans for IAM projects.
  • Ensure the integration of IAM solutions with existing and future IT systems, applications, and platforms.
  • Develop access governance strategies, including access certification and periodic review processes, to ensure compliance with industry regulations and internal policies.
  • Stay current with industry trends, emerging threats, and best practices related to IAM and cybersecurity.
  • Work closely with development teams to ensure the successful implementation and integration of IAM solutions within the organization's software development lifecycle.
  • Develop and enforce IAM policies and procedures to maintain data confidentiality, integrity, and availability.
  • Assist in IAM-related incident response activities, including root cause analysis and remediation.
  • Maintain comprehensive documentation of IAM architectures, configurations, and policies.
  • Automation of infrastructure using tools such as Terraform, Chef, and Jenkins to reduce maintenance and manpower cost.


  • Minimum of 5 years of experience in IT architecture and design, with a focus on Identity and Access Management.
  • Proficiency in implementing and managing Okta solutions, including SSO, MFA, and Okta SDKs.
  • Strong experience with AWS serverless computing and services integrations.
  • Hands-on experience with infrastructure as code (IAC) using Terraform.
  • Solid understanding of web application security, particularly within Angular and Java applications.
  • Knowledge of industry standards and best practices in IAM and security.
  • Comprehensive understanding of Identity and Access Management principles, protocols, and technologies (e.g., SAML, OAuth, OpenID Connect, LDAP, RBAC, ABAC, FIDO)
  • Excellent problem-solving and analytical skills with the ability to translate complex technical requirements into practical solutions.
  • Experience conducting code reviews, ensuring code quality, security, and adherence to best practices.
  • Experience in an agile software development environment is preferred.


  • Bachelor’s degree in Computer Science, Information Technology, or related field, or an equivalent combination of education and work experience.
  • Relevant certifications in identity and access management, cloud security, or related areas are highly desirable.


  • This is a remote, work from home position within the U.S
  • The starting salary for this role is estimated to be between $125,00 and $140,000. Base pay, however, will be determined based on several factors, which include but are not limited to, applicable skills, work experience, education, business needs and market demands. This position is not bonus eligible.


  • This job is not eligible for immigration sponsorship/support.

Benefits Summary for Full Time Employees (work 30 + hours per week)

Available Day One:

*     Medical/Dental/Vision

*     Vacation/Sick/Floating Holidays - accruals start

*     401K - company match and direct contribution

*     Employee discounts/Hotel discounts

*     Financial and health wellness programs

Equal Employment Opportunity

BWH Hotels maintains a policy of equal employment opportunity for all employees and qualified applicants for employment without regard race (including hair textures and hair styles associated with race), color, religion, religious creed (including religious dress and grooming practices), national origin, ancestry, alienage or citizenship status, caste, age, disability, gender, gender identity or expression, sex, sexual orientation, height, or weight, pregnancy status, genetic information, uniformed service or veteran status, marital status or any other characteristic protected by applicable federal, state, provincial, or local laws. BWH Hotels equal employment opportunity policy applies to all aspects of employment with BWH Hotels, including but not limited to, hiring, promotion, transfer, benefits, discipline, and termination.

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online