Sr Staff, Infosec Engineer - Selling Channel Security

About Gap Inc.

Our brands bridge the gaps we see in the world. Old Navy democratizes style to ensure everyone has access to quality fashion at every price point. Athleta unleashes the potential of every woman, regardless of body size, age or ethnicity. Banana Republic believes in sustainable luxury for all. And Gap inspires the world to bring individuality to modern, responsibly made essentials.     

This simple idea—that we all deserve to belong, and on our own terms—is core to who we are as a company and how we make decisions. Our team is made up of thousands of people across the globe who take risks, think big, and do good for our customers, communities, and the planet. Ready to  learn fast, create with audacity and lead boldly? Join our team.

About the Role

We are seeking a Senior Staff IAM Engineer with deep expertise in designing identity and access management (IAM) solutions for APIs, customers, and microservices-based cloud environments. In this role, you will be responsible for architecting secure and scalable identity solutions that integrate seamlessly into our e-commerce platform. Your ability to collaborate, negotiate, and drive optimal security solutions with cross-functional teams—including architecture, DevSecOps, and product engineering—will be key to success.

What You'll Do

What you’ll do

• As a key member of the Product Security organization, you will be designing and implementing cutting-edge security solutions at scale.
• Design and Engineer repeatable processes/solutions and implementation of new technologies and tools across the enterprise technology footprint.  
• Help drive technical and operational maturity from a security standpoint across all of Gap channels.
• Bring an automation-first mindset to drive productivity across all operational tasks.
• Work with Architects and Engineers to maintain accurate and reliable documentation of our network policy and design.  
• IAM Architecture & Design: Develop and implement IAM solutions for APIs, customers, and microservices in a cloud-native e-commerce environment.
• API Security: Design robust authentication and authorization mechanisms, including OAuth, OpenID Connect, JWT, and mutual TLS.
• DevSecOps Integration: Partner with DevSecOps teams to embed IAM best practices into CI/CD pipelines, automating identity governance and access controls.
• Cloud Security & IAM Governance: Define and enforce security policies for identity management across cloud platforms (AWS, Azure, or GCP).

Requirement Qualifications and Skills

• Expertise in IAM & API Security: Proven experience designing IAM solutions for customer identity (CIAM), API security, and microservices authentication. Strong familiarity with common vulnerabilities and attack vectors across various industries – retail, ecom, fintech etc.
• Cloud-Native IAM: Hands-on experience with AWS IAM, Azure AD, GCP IAM, or third-party identity providers (Okta, Ping Identity, Auth0, etc.).
• Deep Protocol Knowledge: Strong understanding of OAuth 2.0, OpenID Connect, SAML, JWT, and federation architectures.
• Microservices & DevSecOps: Experience integrating IAM solutions with containerized workloads (Kubernetes, Docker) and securing service-to-service communication.
• Programming & Automation: Familiarity with Terraform, CloudFormation, or other IaC tools for IAM automation. Scripting experience (Python, Bash, etc.) is a plus.
• Security Certifications (Preferred): CISSP, CCSP, AWS Security Specialty, Azure Security Engineer, or equivalent.
• Strong Communication & Negotiation Skills: Ability to engage with architects, developers, and security teams to align on optimal IAM strategies.

Who You Are

Benefits at Gap Inc.

• Merchandise discount for our brands: 50% off regular-priced merchandise at Old Navy, Gap, Banana Republic and Athleta, and 30% off at Outlet for all employees.
• One of the most competitive Paid Time Off plans in the industry.*
• Employees can take up to five “on the clock” hours each month to volunteer at a charity of their choice.*
• Extensive 401(k) plan with company matching for contributions up to four percent of an employee’s base pay.*
• Employee stock purchase plan.*
• Medical, dental, vision and life insurance.*
• See more of the benefits we offer.

*For eligible employees