Gap Inc.
Sr Staff, Infosec Engineer - Selling Channel Security
Gap Inc., San Francisco, California, United States, 94199
Sr Staff, Infosec Engineer - Selling Channel Security
Join to apply for the
Sr Staff, Infosec Engineer - Selling Channel Security
role at
Gap Inc. About Gap Inc.
Our brands bridge the gaps we see in the world. Old Navy democratizes style to ensure everyone has access to quality fashion at every price point. Athleta unleashes the potential of every woman, regardless of body size, age, or ethnicity. Banana Republic believes in sustainable luxury for all. And Gap inspires the world to bring individuality to modern, responsibly made essentials. About The Role
We are seeking a Senior Staff IAM Engineer with deep expertise in designing identity and access management (IAM) solutions for APIs, customers, and microservices-based cloud environments. In this role, you will be responsible for architecting secure and scalable identity solutions that integrate seamlessly into our e-commerce platform. Your ability to collaborate, negotiate, and drive optimal security solutions with cross-functional teams—including architecture, DevSecOps, and product engineering—will be key to success. What You'll Do
Design and implement IAM solutions for APIs, customers, and microservices in a cloud-native e-commerce environment. Design robust authentication and authorization mechanisms, including OAuth, OpenID Connect, JWT, and mutual TLS. Partner with DevSecOps teams to embed IAM best practices into CI/CD pipelines, automating identity governance and access controls. Define and enforce security policies for identity management across cloud platforms (AWS, Azure, or GCP). Collaborate with architecture and engineering teams to maintain accurate network policy and design documentation. Qualifications and Skills
Proven experience designing IAM solutions for customer identity (CIAM), API security, and microservices authentication. Hands-on experience with AWS IAM, Azure AD, GCP IAM, or third-party identity providers (Okta, Ping Identity, Auth0, etc.). Strong understanding of OAuth 2.0, OpenID Connect, SAML, JWT, and federation architectures. Experience with containerized workloads (Kubernetes, Docker) and securing service-to-service communication. Familiarity with Terraform, CloudFormation, or other IaC tools for IAM automation; scripting experience is a plus. Security certifications like CISSP, CCSP, AWS Security Specialty, Azure Security Engineer are preferred. Excellent communication and negotiation skills to engage with architects, developers, and security teams. Benefits
Merchandise discount for our brands: 50% off regular-priced merchandise at Old Navy, Gap, Banana Republic, and Athleta, and 30% at Outlet. Competitive Paid Time Off. Volunteer hours allowance. 401(k) plan with company matching. Employee stock purchase plan. Comprehensive health insurance coverage. Gap Inc. is an equal opportunity employer committed to diversity and inclusion. We value all backgrounds and make employment decisions without regard to protected statuses. Recognized by Forbes as one of the World's Best Employers and for Diversity in 2022. Salary Range: $174,400 - $231,200 USD. Compensation varies based on qualifications, experience, skill, and location. Additional Details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Technology / Security Industry: Retail This job posting is active and not expired.
#J-18808-Ljbffr
Join to apply for the
Sr Staff, Infosec Engineer - Selling Channel Security
role at
Gap Inc. About Gap Inc.
Our brands bridge the gaps we see in the world. Old Navy democratizes style to ensure everyone has access to quality fashion at every price point. Athleta unleashes the potential of every woman, regardless of body size, age, or ethnicity. Banana Republic believes in sustainable luxury for all. And Gap inspires the world to bring individuality to modern, responsibly made essentials. About The Role
We are seeking a Senior Staff IAM Engineer with deep expertise in designing identity and access management (IAM) solutions for APIs, customers, and microservices-based cloud environments. In this role, you will be responsible for architecting secure and scalable identity solutions that integrate seamlessly into our e-commerce platform. Your ability to collaborate, negotiate, and drive optimal security solutions with cross-functional teams—including architecture, DevSecOps, and product engineering—will be key to success. What You'll Do
Design and implement IAM solutions for APIs, customers, and microservices in a cloud-native e-commerce environment. Design robust authentication and authorization mechanisms, including OAuth, OpenID Connect, JWT, and mutual TLS. Partner with DevSecOps teams to embed IAM best practices into CI/CD pipelines, automating identity governance and access controls. Define and enforce security policies for identity management across cloud platforms (AWS, Azure, or GCP). Collaborate with architecture and engineering teams to maintain accurate network policy and design documentation. Qualifications and Skills
Proven experience designing IAM solutions for customer identity (CIAM), API security, and microservices authentication. Hands-on experience with AWS IAM, Azure AD, GCP IAM, or third-party identity providers (Okta, Ping Identity, Auth0, etc.). Strong understanding of OAuth 2.0, OpenID Connect, SAML, JWT, and federation architectures. Experience with containerized workloads (Kubernetes, Docker) and securing service-to-service communication. Familiarity with Terraform, CloudFormation, or other IaC tools for IAM automation; scripting experience is a plus. Security certifications like CISSP, CCSP, AWS Security Specialty, Azure Security Engineer are preferred. Excellent communication and negotiation skills to engage with architects, developers, and security teams. Benefits
Merchandise discount for our brands: 50% off regular-priced merchandise at Old Navy, Gap, Banana Republic, and Athleta, and 30% at Outlet. Competitive Paid Time Off. Volunteer hours allowance. 401(k) plan with company matching. Employee stock purchase plan. Comprehensive health insurance coverage. Gap Inc. is an equal opportunity employer committed to diversity and inclusion. We value all backgrounds and make employment decisions without regard to protected statuses. Recognized by Forbes as one of the World's Best Employers and for Diversity in 2022. Salary Range: $174,400 - $231,200 USD. Compensation varies based on qualifications, experience, skill, and location. Additional Details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Technology / Security Industry: Retail This job posting is active and not expired.
#J-18808-Ljbffr