Senior Information Security Analyst

at  StockX

ADDITIONAL SKILLS (PREFERRED):

• Experience with other cloud platforms (e.g., Azure, GCP).
• Knowledge of infrastructure as code (IaC) tools (e.g., Terraform, CloudFormation).
• Experience with security information and event management (SIEM) systems.
  Pursuant to the San Francisco Fair Chance Ordinance, Los Angeles Fair Chance Initiative for Hiring Ordinance, and any other state or local hiring regulations, we will consider for employment any qualified applicant, including those with arrest and conviction records, in a manner consistent with the applicable regulation.
  Pursuant to the various pay transparency laws/acts, the base salary range is $100,000 to $120,000 plus opportunities for benefits (e.g., medical, dental), equity and discretionary bonuses. Compensation is dependent on geography and may vary.

ABOUT US

StockX is proud to be a Detroit-based technology leader focused on the large and growing online market for sneakers, apparel, accessories, electronics, collectibles, trading cards, and more. StockX’s powerful platform connects buyers and sellers of high-demand consumer goods from around the world using dynamic pricing mechanics. This approach affords access and market visibility powered by real-time data that empowers buyers and sellers to determine and transact based on market value. The StockX platform features hundreds of brands across verticals including Jordan Brand, adidas, Nike, Supreme, BAPE, Off-White, Louis Vuitton, Gucci; collectibles from artists including KAWS and Takashi Murakami; and electronics from industry-leading manufacturers Sony, Microsoft, Nvidia, and Apple. Launched in 2016, StockX employs more than 1,000 people across offices and verification centers around the world.
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. This job description is intended to convey information essential to understanding the scope of the job and the general nature and level of work performed by job holders within this job. However, this job description is not intended to be an exhaustive list of qualifications, skills, efforts, duties, responsibilities or working conditions associated with the position. StockX reserves the right to amend this job description at any time

WHY YOU’LL LOVE THIS ROLE

The IAM Specialist is responsible for the design, implementation, and maintenance of the organization’s Identity and Access Management (IAM) systems and processes. This role plays a crucial part in ensuring that the right individuals have appropriate access to resources, while protecting sensitive data and systems from unauthorized access.

WHAT YOU’LL DO:

• Authentication and Authorization:
• Implement and maintain authentication mechanisms (e.g., multi-factor authentication, password policies).
• Configure and manage access control policies and rules.
• Monitor authentication logs for suspicious activity.
• Identity Governance:
• Assist in developing and enforcing IAM policies and procedures.
• Conduct regular access reviews and certifications.
• Ensure compliance with relevant regulations and standards (e.g., GDPR).
• Privileged Access Management (PAM):
• Use PAM solutions to monitor and control privileged access.
• Audit privileged activity and sessions.
• User Provisioning and Deprovisioning:
• Work with IT on automation of user provisioning and deprovisioning processes.
• Knowledge of onboarding and offboarding processes
• Single Sign-On (SSO):
• Knowledge of SSO solutions for seamless user access to multiple applications.
• Documentation and Training:
• Develop and maintain documentation for IAM processes and procedures.
• Provide training to end-users and other stakeholders on IAM policies and best practices.
• Security Monitoring and Incident Response:
• Monitor IAM systems for security events and incidents.
• Assist in investigating and responding to security breaches related to identity and access.