**Experienced Full Stack Security Analyst – Identity and Access Management (IAM) for arenaflex**

**Join arenaflex's innovative team and embark on a journey to revolutionize the airline industry's digital security landscape.** At arenaflex, we're committed to becoming the best carrier in the history of flight. To achieve this goal, we're seeking a highly skilled and experienced Full Stack Security Analyst – Identity and Access Management (IAM) to join our Online Protection and Computerized Chance (CDR) team. As a key member of our team, you'll play a vital role in helping us become the industry's leading digital safe carrier. **About arenaflex** arenaflex is a world-renowned airline that's constantly pushing the boundaries of innovation and excellence. Our mission is to provide exceptional customer experiences while ensuring the highest levels of safety, security, and efficiency. With a strong focus on digital transformation, we're committed to leveraging cutting-edge technologies to drive growth, improve operational efficiency, and enhance customer satisfaction. **The Role** As a Full Stack Security Analyst – IAM, you'll be responsible for analyzing, strengthening, and implementing arenaflex's IAM frameworks and overall security posture. This role requires a proactive approach, collaboration across teams, and a commitment to ensuring compliance with industry regulations and internal policies. Your primary objectives will be to: * Perform in-depth analysis of IAM frameworks to identify vulnerabilities, weaknesses, and areas for improvement * Proactively recommend and implement procedures to enhance security, streamline processes, and ensure optimal system functionality * Collaborate with development teams, IT security specialists, and other stakeholders to integrate secure identity solutions throughout the product lifecycle * Participate in compliance efforts by ensuring IAM frameworks align with relevant regulations and internal policies * Conduct regular reviews and evaluations to identify and address potential compliance gaps * Stay up-to-date with evolving IAM best practices, industry standards, and emerging threats * Adapt and implement new technologies and processes to maintain a robust and secure IAM environment **Key Responsibilities** * Assist in the execution and implementation of IAM stages * Respond to break/fix requests, monitor the environment, and support Digital Innovation in any change management cycle for development, QA, and production environments * Ensure IAM solutions comply with regulatory, compliance, and internal requirements * Maintain IAM solutions, standards, and procedures * Provide reports as required for compliance * Collaborate with Digital Safeguard and other departments on a case-by-case basis * Ensure IAM security aligns with the overall security strategy to minimize risk to the organization * Work with development teams and other IAM service consumers to provide guidance on the execution and use of IAM capabilities in enterprise systems * Collaborate with other IAM colleagues to provide guidance on IAM-related matters and contribute to solution planning and framework support **What We Offer** * Remote Work Flexibility: As a remote worker, you'll enjoy the flexibility of working from your preferred location, eliminating the need for a daily commute and allowing you to create a comfortable workspace. * Balance between work and personal life: Remote work often provides better balance between work and personal activities as it allows you to plan your work around your own life and responsibilities. * Competitive Compensation: Many organizations offer competitive pay rates for senior-level positions, which can vary greatly depending on the company and its size. * Medical Benefits: You may be eligible for health insurance, dental coverage, and other medical benefits as part of your compensation package. * Retirement Plans: Many companies offer retirement savings plans, such as a 401(k), with employer matching or contributions. * Paid Time Off (PTO): This typically includes vacation days, holidays, and sick leave, which can vary from one organization to another. * Professional Development: Some organizations invest in their employees' professional growth by offering opportunities for training, workshops, or tuition reimbursement. * Investment Opportunities or Equity: In certain industries or startups, you may be offered investment opportunities or equity in the company. * Performance-Based Rewards: Depending on your role and company performance, you may be eligible for performance-based rewards or incentives. * Remote Work Equipment: Some employers provide the necessary equipment (e.g., computer, internet connection, ergonomic chair) to ensure you have a functional workspace setup. * Flexible Hours: Depending on the organization's policies, you may have the flexibility to set your own working hours reasonably. * Employee Assistance Programs (EAPs): EAPs can provide private counseling and support services to employees and their families for personal and professional issues. * Employee Discounts: Some organizations offer discounts on their products or services to their employees. * Suburbanite Benefits: Although you're working remotely, some organizations still offer employee benefits like public transportation or parking reimbursements. * Health Programs: Health programs can include gym memberships, wellness classes, or health challenges to promote employee well-being. * Remote Team Building: Organizations may organize virtual team-building activities or provide tools for remote workers to stay connected and engaged with their colleagues. **Requirements** * A bachelor's degree in a relevant field (e.g., computer science, information assurance, cybersecurity) * A minimum of 3 years of experience in IAM, identity and access management, or a related field * Strong understanding of enterprise or client IAM, Single Sign-On, Multi-Factor Authentication (MFA), and Identity Verification, Restricted Access Management (PAM), Identity * Service and Organization concepts * In-depth knowledge of identity standards and technologies: OpenID Connect (OIDC), OAuth, SAML, Federation-Managed, API Gateways, SCIM, and platforms, such as Ping Identity, Okta, MS Azure, and ForgeRock * Knowledge of identity-related threats and vulnerabilities, identity sealing and identity verification technologies * Ability to understand how a security framework functions (including its scalability and resilience capabilities) and how changes in conditions, tasks, or the environment will impact these results * In-depth understanding of at least one of the following area-specific tools: + EIAM-Delinea, SailPoint, SailPoint, Saviynt * Must be legally authorized to work in the US for any employer without sponsorship * Successful completion of an interview is required to meet work capability * Strong, reliable attendance is a fundamental requirement of the position **Preferred Qualifications** * Master's degree in a relevant field * Network security, Risk Management, Software engineering * CISA, CISM, CISSP * 3+ years of related experience * Knowledge of organizational principles and practices (ISO, NIST) * Knowledge of compliance regulations (SOX, PCI, FAA, GDPR, PII) **How to Apply** If you're a motivated and experienced professional looking to join a dynamic team and contribute to the success of arenaflex, please submit your application through our website. We look forward to reviewing your qualifications and discussing this exciting opportunity with you further. Apply for this job