IAM Security Engineer

Description

SPS Commerce is seeking an IAM Security Engineer who will take charge of overseeing and administering IAM controls to fulfill SPS's security program and audit requirements. Additionally, this role will act as the technology backup for applications under the IAM team's purview. As part of this position, you'll collaborate with stakeholders throughout the organization to bolster both centralized and decentralized systems and applications. This presents a thrilling chance for a proactive individual with a strong inclination for innovation to introduce fresh concepts to the team and engage with cutting-edge technologies.

Does this sound like you? 

• You thrive on process improvement, finding joy in witnessing how your efforts positively influence the organization's objectives.
• As a self-starter, you eagerly pinpoint risks and demonstrate the persistence to follow through on remediation efforts.
• You thrive in a fast-paced, tech-forward environment within a team that prioritizes positivity, agility, and collaboration.
• You embody a lifelong learner mentality, relishing the opportunity to dive in, tackle challenges, and continually expand your expertise.

Why join SPS? 

We solve retail supply chain problems by cutting through inefficiency with innovation and automation. At SPS we empower retailers, suppliers, distributors, grocers, and logistics partners to work better together with our people, our process, and our tech products. We have the world’s largest retail network, and we don’t just lead the industry, we are the industry. 

At SPS, we believe every employee makes a difference. We ensure employees have the tools, resources, and training to explore new ideas and execute them. Our success comes from playing as a team and always playing to win. Careers don’t just grow here, they’re made here.

Day to Day 

Security Engineers ensure our IT and business practices have security defined, integrated, and implemented according to the SPS security framework, policies, standard, and guardrails. Together with the security and broader tech team, security engineers ensure that risk-based controls are implemented to protect SPS.  

• Stay informed of Identity and Access Management (IAM) security best practices and application to technology development and implementation practices for operations – accountable for driving the integration of approved IAM security patterns into development operations and existing continuous delivery/continuous improvement business processes
• Devise reasonable security controls to protect SPS and align with our business objectives
• Manage IAM and Data Protection platforms and capabilities as well as build new capabilities as needed to meet the needs of our internal and external customers
• Build automated capabilities to meet the needs and demands of our business customers
• Help support our operations team ensuring work handed to them if fully documented, work properly transitioned, and accepted.
• Develop, manage, and consult on the technical architecture for enterprise security controls
• Partner with business and technology operations groups to manage and maintain the security technology stack (identity solutions, cloud capabilities, audit tools)

Required Skills 

• Minimum 2 years of experience with Bachelor’s degree in related business or technical area, or an equivalency of education and work experience
• 1 years of hands-on experience in Cloud Security Environment
• 2 years of IT Security and/or security engineering experience and/or IAM
• Experience in designing and implementing standards, specifications and procedures
• Experience in providing technical security guidance to technical and non-technical audiences
• Experience with security frameworks such as ISO27001 and NIST CSF
• Experience with regulatory requirements from SOX and PCI-DSS

 Nice to haves? 

•  Master’s degree in related business or technical areas, or an equivalency of education and work experience
• System configuration and architecture experience
• Strong knowledge of industry accepted information security best practices, standards, and policies such as NIST CSF, OWASP, CIS, STIG, MITRE ATT@CK, etc.
• Experience with audits and providing audit evidence
• Demonstrated experience and understanding of business security and compliance requirements & ability to translate into well-engineered & integrated business solutions
• Strong interpersonal, oral, and written communication skills
• Certifications & Licenses: One or more industry certification - CISSP, CISM, CISA, CCFE, GIAC, CCIE, CCSP, ABCP, MBCP, ISA, PCIP, CEH

SPS Commerce offers a comprehensive package of benefits including health, dental, vision, disability, and life insurance, paid time-off, 401(k), health and flexible spending accounts, stock purchase plan and more.

** EOE including disability / veteran **