• FLEX Solution Architect

    Marriott (Bethesda, MD)


    Additional Information

    **Job Number** 25174799

    **Job Category** Information Technology

    **Location** Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States, 20814VIEW ON MAP (https://www.google.com/maps?q=Marriott%20International%20HQ%2C%207750%20Wisconsin%20Avenue%2C%20Bethesda%2C%20Maryland%2C%20United%20States%2C%2020814)

    **Schedule** Full Time

    **Located Remotely?** Y

    **Position Type** Management

    **Pay Range:** $56.53-$95.57 per hour

    **Expiration Date:** 11/12/2025

     

    This is a temporary position.

     

    Solution Architect – API & CIAM

     

    Overview

     

    Marriott is seeking a strategic and technically skilled Solution Architect & Technical lead to lead the design and governance of our API Management and Customer Identity & Access Management (CIAM) platforms. This role is pivotal in enabling seamless, secure, and personalized guest experiences across our global digital ecosystem—from mobile apps and websites to loyalty partners and smart hotel technologies. This role is also key to helping Marriott define and realize its future state vision for Authentication and Authorization within the enterprise. The ideal candidate will bring expertise in AAA (Authentication, Authorization, and Accounting), modern identity protocols, and API Security best practices.

    Key Responsibilities

    Strategic Leadership

    + Define and evolve Marriott’s enterprise architecture strategy for APIs and CIAM, with a strong focus on AAA principles.

    + Align identity and access architecture with business priorities such as Digital+Technology Transformation (DTT), growing loyalty partner ecosystem, mergers/acquisitions, and global scalability.

    + Serve as a subject matter expert on identity, access, and API security for executive stakeholders and cross-functional teams

    AuthN & AuthZ Architecture

    + Define and enforce enterprise-wide AAA standards across digital guest experiences and partner integrations.

    + Design and implement secure, scalable authentication mechanisms for guests and partners across web, mobile, and IoT platforms.

    + Define and enforce authorization models (RBAC, ABAC, ReBAC) for APIs and digital services, ensuring least-privilege access and compliance with privacy regulations.

    + Architect secure API ecosystems using gateways with built-in threat protection, rate limiting, and token validation.

    + Analyze build versus buy opportunities for automating the future AAA architecture.

    + Ensure compliance with global data privacy regulations (e.g., GDPR, CCPA) and hospitality-specific standards.

    Governance & Enablement

    + Establish API and Client Provisioning governance frameworks, oversee implementation of developer portals / tools, and define lifecycle management practices to foster innovation, reuse and adequate security.

    + Establish API security standards, including encryption, token management, and secure onboarding of third-party developers and partners.

    + Define CIAM standards for identity federation, consent management, SSO, MFA, and guest data protection.

    + Define API access control policies, including scopes, claims, and consent management.

    Accounting, Monitoring & Compliance

    + Define logging, auditing, and monitoring frameworks to track identity and API usage for compliance, fraud detection, and performance optimization.

    + Collaborate with cybersecurity and privacy teams to ensure adherence to global regulations (e.g., GDPR, CCPA) and internal audit requirements.

    Collaboration & Execution

    + Partner with product, engineering, DevSecOps, and Global Information Systems (GIS) teams to adopt AAA and IAM best practices.

    + Lead architecture reviews and provide technical oversight for initiatives involving guest identity, loyalty platforms, and onsite digital access.

    + Mentor architects and developers on secure design patterns and identity-aware application development.

    Qualifications

    Required:

    + 8+ years of experience in enterprise architecture, with a focus on identity, access, and API security.

    + Hands-on experience with CIAM platforms (e.g., Okta, Auth0, ForgeRock) and API gateways (e.g., Akana).

    + Deep understanding of AAA principles and protocols: OAuth 2.0, OpenID Connect, SAML, JWT, and API key management.

    + Proven ability to design secure, scalable identity and access solutions for high-volume, customer-facing platforms.

    Preferred:

    + Experience in the hospitality industry or with global consumer brands.

    + Familiarity with hotel systems (PMS, CRS, loyalty platforms) and guest-facing technologies.

    + Cloud-native architecture experience (especially AWS).

    + TOGAF, SABSA, or CISSP certification.

    Soft Skills:

    + Strong communication and stakeholder engagement skills.

    + Strategic thinker with a hands-on, execution-oriented mindset.

    + Ability to influence across technical and business teams in a global enterprise.

     

    _At Marriott International, we are dedicated to being an equal opportunity employer, welcoming all and providing access to opportunity. We actively foster an environment where the unique backgrounds of our associates are valued and celebrated. Our greatest strength lies in the rich blend of culture, talent, and experiences of our associates.  We are committed to non-discrimination on any protected basis, including disability, veteran status, or other basis protected by applicable law._

     

    All locations offer 401(k) plan, stock purchase plan, discounts at Marriott properties, commuter benefits, employee assistance plan, and childcare discounts. Benefits are subject to terms and conditions, which may include rules regarding eligibility, enrollment, waiting period, contribution, benefit limits, election changes, benefit exclusions, and others. Click here (https://life.marriott.com/wp-content/uploads/2025/09/benefitsoverviewf\_2025edits\_8.19.25.pdf) to learn more.

     

    Full-time positions also offer coverage for medical, dental, vision, health care flexible spending account, dependent care flexible spending account, life insurance, disability insurance, accident insurance, adoption expense reimbursements, and paid parental leave.

     

    **Washington Applicants Only** : Employees will accrue paid sick leave, 0.0384 PTO balance for every hour worked and be eligible to receive minimum of 9 holidays annually.

     

    Marriott HQ is committed to a hybrid work environment that enables associates to Be connected. Headquarters-based positions are considered hybrid, for candidates within a commuting distance to Bethesda, MD; candidates outside of commuting distance to Bethesda, MD will be considered for Remote positions.

     

    Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. **Be** where you can do your best work,​ **begin** your purpose, **belong** to an amazing global​ team, and **become** the best version of you.