Staff IAM Security Engineer

At Compass, our mission is to help everyone find their place in the world. Founded in 2012, we’re revolutionizing the real estate industry with our end-to-end platform that empowers residential real estate agents to deliver exceptional service to seller and buyer clients.

Engineering @ Compass

Compass has built the first modern end-to-end real estate platform by integrating agents, buyers and sellers through technology.

Until Compass, no one has achieved the blend of the Natural Intelligence that hundreds of thousands of enterprising real estate agents bring to this market, with the Artificial Intelligence that cloud, mobile and AI technologies enable.

We are building AI to empower AI - Artificial Intelligence to empower Agent Intelligence.

As one of the fastest growing technology companies of our generation, in an industry larger than any other, we have an opportunity and obligation to build a world-class engineering team and the operating platform that will transform real estate.

Security @ Compass

We are hands-on security engineers helping to build secure, resilient, and scalable web apps, mobile apps, and platform for the real estate industry.

We work with a diverse set of teams to provide and support transparent and automated security tooling and services. We architect secure web products, perform simulated attacks, identify weaknesses, and work with teams to remediate and protect our products.

You will lead our effort to build security as a service to drive safe-by-default environments and drive customer trust.

What you will do :

• Design a comprehensive IAM strategy and policies aligned with the organization's security posture, business goals, and regulatory requirements.
• Design and manage user attribute schemas and attributes, ensuring they accurately reflect business requirements, compliance needs, and security considerations.
• Oversee user lifecycle, including provisioning, deprovisioning, and modification of user accounts, ensuring timely and accurate access management in alignment with security best practices.
• Stay updated on emerging IAM trends, technologies, and best practices.
• Design, implement, and build new security controls to keep the enterprise technologies secure and reliable.
• Help build the foundational security principles used to support our rapidly growing agent population.
• Implement new solutions to thwart account takeovers and business email compromise.
• Evaluate the security properties and risks of 3rd-party systems and services that we would integrate into our enterprise environment.

Provide architecture and design reviews as needed.

• Conduct regular security assessments on controls and applications to iterate and improve the security posture
• Provide security guidance, resources, tooling, and support Compass’s continued growth into new markets.
• Partnering with the Detection and Response team to assist with the selection of corporate focus areas for detection and development of workflows and documentation for response.
• Ensure our team members are empowered to work in safe-by-default environments across all enterprise technologies : SaaS applications, Corporate Endpoints, Office Networks, Business Intelligence & Data Intelligence Tools to name a few.

Who you are :

• You are empathetic and accountable while helping contribute to improve the security program and our customers' trust.
• Able to communicate about security vulnerabilities and remediation techniques in an accessible way to a variety of audiences.
• Strong experience working with IAM systems such as identity providers, directory services and authentication protocols (SAML, OAuth, OIDC).
• Working experience working with Okta Expression Language.
• Working experience with Human Resources Information Systems and their integration with IAM solutions for user provisioning, de-provisioning, and attribute management.
• Experience with an automation and development-based approach for enterprise security controls using tools or scripting languages.

You understand the challenges of scale for security and leverage automation whenever possible.

• Enjoy collaborating and performing threat modeling exercises.
• Experience working and configuring security controls using endpoint technologies (EDR & MDM), modern SaaS applications such Google Workspace, Data Loss Prevention, and Network Firewalls.
• Strong understanding of security principles, standards, regulations, and best practices (e.g., NIST, ISO 27001,CPRA, CIS).
• Desire to grow and solve new challenges as Compass’s architecture rapidly evolves.
• Strong collaboration skills to work with a range of stakeholders located around the world.
• Comfortable teaching and leading development teams toward better security outcomes.

Compensation : The base pay range for this position is $152,100.00 -$228,200 annually; however, base pay offered may vary depending on job-related knowledge, skills, and experience.

Bonuses and restricted stock units may be provided as part of the compensation package, in addition to a full range of benefits.

Base pay is based on market location. Minimum wage for the position will always be met.

Perks that You Need to Know About :

• Participation in our incentive programs (which may include where eligible cash, equity, or commissions). Plus paid vacation, holidays, sick time, parental leave, marriage leave, and recharge leave;
• medical, tele-health, dental and vision benefits; 401(k) plan; flexible spending accounts (FSAs); commuter program; life and disability insurance;

Maven (a support system for new parents); Carrot (fertility benefits); UrbanSitter (caregiver referral network); Employee Assistance Program; and pet insurance.