About Nintendo of America: From the launch of the Nintendo Entertainment Systemâ„¢ more than 30 years ago, Nintendo’s mission has been to create smiles through unique entertainment experiences. Here at Nintendo of America Inc., we deliver on this mission by partnering closely with Nintendo Co., Ltd., to bring Nintendo’s iconic and cherished franchises including Marioâ„¢, Donkey Kongâ„¢, The Legend of Zeldaâ„¢, Metroidâ„¢, Animal Crossingâ„¢, Pikminâ„¢ and Splatoonâ„¢ across the Americas through our video games, hardware systems, and collaborations with partners on a range of other entertainment initiatives like feature films and theme parks.

Based in Redmond, Washington, Nintendo of America serves as headquarters for Nintendo’s operations in the Americas. We are an equal opportunity employer offering a welcoming and inclusive environment in service to one another, our products, and the diverse consumers and communities we call home. For more information about Nintendo, please visit the company’s website at https://www.nintendo.com/. 

Job Summary: This role is part of the IT: Information Security department at Nintendo of America (NOA) on the Identity team and will support Identify and Identity Access Management (IAM) work for HRIS systems globally at Nintendo. Position designs, builds, and supports enterprise Identity and Access Management (IAM) platforms and services, including cloud and hybrid identity infrastructure. Leads the implementation, integration, and optimization of identity security solutions and identity lifecycle systems. Establishes identity engineering standards, architectures, and operational procedures to ensure secure, scalable, and compliant access across the enterprise. 

Description of Duties:

• Designs, implements, and supports enterprise identity infrastructure, including cloud-native and hybrid identity architectures. 
• Serves as a technical authority for Microsoft Entra (Azure AD) and SailPoint, including authentication, authorization, identity lifecycle management, and governance. 
• Defines functional and technical identity requirements and recommends solutions with significant organizational impact. 
• Develops identity architecture standards, patterns, and reference designs aligned with Zero Trust and least‑privilege principles. 
• Assesses emerging identity and access technologies and translates capabilities into technical designs and roadmaps. 
• Collaborates and networks with stakeholders across the enterprise, including subsidiaries and global NCL partners. 
• Engineers identity security controls including conditional access, MFA, privileged access management (PAM), identity governance, and access certifications. 
• Evaluates and enhances identity systems to address security, performance, availability, operational resilience, monitoring, and auditability. 
• Integrates identity platforms with enterprise systems, applications, directories, HRIS, and security tooling using APIs and standard protocols (SAML, OIDC, OAuth, SCIM). 
• Documents all technology changes through appropriate change control. 
• Ensures identity platforms meet regulatory, compliance, and internal control requirements (e.g., NIST, PCI and JSOX, SOX-aligned controls). 
• Documents identity system changes through established change management and configuration control processes. 
• Provides on-call support as needed. 

Summary of Requirements:

• Minimum of seven (7) years of experience in enterprise systems engineering, with significant focus on Identity and Access Management
• Proven experience designing and operating identity infrastrucure and identity security platforms in complex enterprise environments.
• Deep hands-on experience with Microsoft Entra (Azure AD) including conditional access, MFA, identity protection and hybrid identity.
• Strong experience with SailPoint (IdentityIQ/IdentityNow) including identity lifecycle, access governance, certifications, and integrations.
• Demonstrated ability to lead complex identity intiatives requiring analysis of multiple variables and cross-functional dependencies.
• Strong understanding of underlying infrastucture concepts (networking, directories, cloud platforms) and how they impact identity systems.
• Experience with automation, scripting, and identity orchestration (e.g. PowerShell, APIs, workflow engines)
• In-depth knowledge of identity security principles (Zero Trust, least privilege, PAM, federation)
• Bachelor of Science degree in Computer Science, IT, Information Systems, Engineering, or related field; or equivalent combination of education and experience.
• Identity and security certifications (e.g. Microsoft Identity certification, SailPoint certification) are preferred.

Applicants must be legally eligible to work in the United States to be considered. Visa sponsorship is not available for this role.

This position is HYBRID in Redmond, WA. Hybrid positions require regular onsite work following the schedule and guidelines for their division. This position is not open to fully remote status at this time.