StockX is hiring a
Senior Information Security Analyst

Summary

The IAM Specialist is responsible for designing, implementing, and maintaining the organization's Identity and Access Management (IAM) systems and processes. This role includes authentication and authorization, identity governance, privileged access management, user provisioning and deprovisioning, Single Sign-On (SSO), documentation and training, security monitoring, and incident response. The ideal candidate should have a Bachelor's degree in Computer Science or a related field, 2-3 years of experience in IAM or a related field, and relevant certifications such as CISSP or CISM.

Requirements

• Education: Bachelor's degree in Computer Science, Information Security, or a related field
• Experience: 2-3 years of experience in IAM or a related field
• Certifications: CISSP, CISM, or other relevant security certifications are a plus

Responsibilities

• Authentication and Authorization: Implement and maintain authentication mechanisms, configure and manage access control policies and rules, monitor authentication logs for suspicious activity
• Identity Governance: Assist in developing and enforcing IAM policies and procedures, conduct regular access reviews and certifications, ensure compliance with relevant regulations and standards
• Privileged Access Management (PAM): Use PAM solutions to monitor and control privileged access, audit privileged activity and sessions
• User Provisioning and Deprovisioning: Work with IT on automation of user provisioning and deprovisioning processes, knowledge of onboarding and offboarding processes
• Single Sign-On (SSO): Knowledge of SSO solutions for seamless user access to multiple applications
• Documentation and Training: Develop and maintain documentation for IAM processes and procedures, provide training to end-users and other stakeholders on IAM policies and best practices
• Security Monitoring and Incident Response: Monitor IAM systems for security events and incidents, assist in investigating and responding to security breaches related to identity and access

Preferred Qualifications

• Experience with other cloud platforms (e.g., Azure, GCP)
• Knowledge of infrastructure as code (IaC) tools (e.g., Terraform, CloudFormation)
• Experience with security information and event management (SIEM) systems

Benefits

Health insurance, retirement benefits, paid time off, remote work, flexible hours, life and disability insurance, bonuses and incentives, professional development opportunities, wellness programs, family and parental leave