Senior IAM Engineer

The GapTech team is chartered with driving revenue and profit growth in Gap’s online and direct channel business through the development and implementation of analytics, decision support systems, and predictive models for profit maximizing analytical processes.

InfoSec SecOps engineers and operates all on premise security technology used to protect Gap Inc. information assets. We deliver technical security capabilities to GapTech customers that minimize threats to the business. We drive the security technology roadmap, improving and enhancing GapTech ability to protect, detect, and respond to technical threats.

The SecOps IAM team is looking for enthusiastic and security minded developers. Potential candidates tend to be curious learners, apply their skills to understand the challenge provided to solve, build and maintain a robust IAM solution. Candidates will also need to have knowledge of directories, databases and cloud (SaaS/PaaS) integrations.


  • The candidate will need to fully understand existing authentication and federation ecosystems, be able to design solutions for ongoing business requirements and be hands-on to drive the implementation process.
  • Assess current environment and make continuous improvement to it to align with future state architecture.
  • Work closely with Architects, Application owners, Product managers to drive PKI-enablement of applications and devices.
  • Deliver PKI solutions for internal applications, devices, systems and manage PKI systems.
  • Work with vendors and third parties to evaluate new products, features and solutions
  • Lead meetings with internal stakeholders across IT and the business
  • Work closely with IAM, NetSec, Data Protection and Product Security team members to ensure the best solution is delivered in a timely manner
  • Develop and maintain IAM artifacts (strategy, decisions, solution design, etc.)


  • Primary experience in PrimeKey PKI, Thycotic Secret Server and Secure Networking
  • Understanding of Kerberos, OAuth, OpenID Connect, Web Services, Wireless Networks, AD, LDAP, MFA technologies
  • Technical proficiency with technologies like PKI, 802.1x/EA-TLS Authentication protocols
  • Proven experience managing and deploying PKI infrastructure including managing CAs, SCEP for cert enrollment, CMP (Certificate management protocol) for automation
  • Experience with certificate management functions – Registration Authorities (RAs), CRLs, HSMs, OSCP to deploy complex PKI system with other technologies
  • Experience working on large, cross functional, globally distributed and complex projects
  • Hands-on, results-oriented, delivery-driven individual requiring minimal guidance
  • Ability to communicate ideas effectively to team members
  • Ability to multi task, change focus based on prioritization, work in a high-pressure, fast-moving environment
  • Influence the strategy in the Identity and Access Management space by consistently comparing current processes with regulatory requirements and current industry best practices
  • Strong communication and interpersonal skills

Minimum Educational Level:

  • Bachelor degree or equivalent
  • Security certifications: CISSP, CISM, CISA, CEH, etc. preferred

Minimum Experience:

  • 5+ years’ experience in Information Security 
  • 3+ years’ experience in managing PKI environments


Meet Some of Gap Inc.'s Employees

Jared W.

IT Business Analyst

Jared operates as a function lead between Gap’s business partners and technical leads. He helps them understand the business requirements to deliver high-quality technology to Gap’s customers.

Angela R.

Director, Customer Success

Angela focuses her energy and work on Gap’s internal customers—their employees. She is accountable for ensuring Gap develops productivity technology for their employees to be successful in their day-to-day roles.

Back to top