Senior Information Security Architect - IAM

Who We Are

Join a team that puts its People First! Since 1889, First American (NYSE: FAF) has held an unwavering belief in its people. They are passionate about what they do, and we are equally passionate about fostering an environment where all feel welcome, supported, and empowered to be innovative and reach their full potential. Our inclusive, people-first culture has earned our company numerous accolades, including being named to the Fortune 100 Best Companies to Work For list for eight consecutive years. We have also earned awards as a best place to work for women, diversity and LGBTQ+ employees, and have been included on more than 50 regional best places to work lists. First American will always strive to be a great place to work, for all. For more information, please visit www.careers.firstam.com.

What We Do

Responsible for supporting the Identity and Access management program initiatives within the organization.

What You'll Do:

• Creates IAM reference architectures for existing, new and emerging IAM technologies

• Creates solution document for IAM use cases to improve security as well as drive operational efficiencies

• Performs assessments of the security posture of IAM technology implementations and provide risk-based remediation designs.

• Align IAM solutions to security standards and policies and enable adoption

• Liaisons with business and other security teams to continually mature the security posture focusing on Identity and access management solutions

• Performs architecture review of business applications to ensure IAM best practices and standards are incorporated

• Keep up with cyber trends and constantly evaluate the IAM solutions for enhanced security

• Work with the engineering teams to create design and technical implementation across various IAM technologies

• Champions change, drives and sets technical direction affecting multiple groups/business units.

• Provides leadership by instructing, mentoring, and training team members within and outside the work group.

• Interacts with and influences senior management on technical matters requiring coordination between organizations.

• Provides technical consulting on complex projects.

• Devises or modifies procedures to solve complex problems considering computer equipment capacity and limitations,

• operating time, and form of desired results.

• Further develops and documents the security architecture vision and strategy to support key business processes and

• requirements. Defines the optimal enterprise security architecture in terms of processes, standards and technologies.

• Defines, documents and promotes the enterprise security target architectures and strategic direction; demonstrates and understanding of business drivers and expert knowledge in the broad spectrum of related technologies. Researches, identifies, and documents best practice methods and emerging technologies, evaluating applicability and feasibility to the organization.

• Coordinates and partners with IT and business leaders to ensure strategic IT security alignment to business requirements;

• Required to perform duties outside of normal work hours based on business needs.

What You'll Bring:

• Must have minimum 10 years information security experience

• Must have 6+ years experience with Identity management and encryption technologies

• Must have 2+ years Active Directory administration experience

• BA/BS degree in Computer Information Systems, Computer Science or equivalent experience is required. Training courses,

seminars, certifications or other security related education experience preferred

• Mastery of the information security principles, concepts, methods, and best practices

• Experience in product evaluation and managing vendor relationships required.

• Deep understanding and working experience on IAM technologies like PAM, IGA, Directories, SSO, Federation, PKI

• Strong experience working with Active Directory security and assessment

• Experience designing IAM roles, policies and access governance for cloud platforms like Azure, AWS and GCP

• Knowledge of IAM protocols authentication, authorization protocols and encryption technologies

• Experience with information security frameworks and privacy, regulatory standards

• Practical experience in performing risk assessments leading to formulating and mapping information security policy and standards to ensure compliance with regulatory and legislative compliance (PCI, SOX, HIPPA, GLBA) - consult and provide guidance on complying with appropriate policy/standards/measures

• Has proven leadership skills and is results focused

• Appropriate interpersonal skills to communicate and work effectively at all levels of the organization

• Is process and procedure oriented

• Demonstrates ability to organize, plan and carry out assignments with minimal supervision.

• Demonstrated success in establishing and managing relationships within IT security functions

• CISSP Security preferred

This role is hybrid preferred with two days per week in office in Santa Ana, CA. May be open to remote for out of area candidates.

Pay Range: $103,620 - $172,700 Annually

This hiring range is a reasonable estimate of the base pay range for this position at the time of posting. Pay is based on a number of factors which may include job-related knowledge, skills, experience, business requirements and geographic location.

What We Offer

By choice, we don't simply accept individuality - we embrace it, we support it, and we thrive on it! Our People First Culture celebrates diversity, equity and inclusion not simply because it's the right thing to do, but also because it's the key to our success. We are proud to foster an authentic and inclusive workplace For All. You are free and encouraged to bring your entire, unique self to work. First American is an equal opportunity employer in every sense of the term.

Based on eligibility, First American offers a comprehensive benefits package including medical, dental, vision, 401k, PTO/paid sick leave and other great benefits like an employee stock purchase plan.