CyberSecurity Analyst Identity and Access Management

Fanatics is building a leading global digital sports platform. The company ignites the passions of global sports fans and maximizes the presence and reach for hundreds of sports partners globally by offering innovative products and services across Fanatics Commerce, Fanatics Collectibles, and Fanatics Betting & Gaming, allowing sports fans to Buy, Collect and Bet. Through the Fanatics platform, sports fans can buy licensed fan gear, jerseys, lifestyle and streetwear products, headwear, and hardgoods; collect physical and digital trading cards, sports memorabilia, and other digital assets; and bet as the company builds its Sportsbook and iGaming platform. Fanatics has an established database of over 100 million global sports fans, a global partner network with over 900 sports properties, including major national and international professional sports leagues, teams, players associations, athletes, celebrities, colleges, and college conferences, and over 2,000 retail locations, including its Lids retail business stores.

As a market leader with more than 18,000 employees, and hundreds of partners, suppliers, and vendors worldwide, we take responsibility for driving toward more ethical and sustainable practices. We are committed to building an inclusive Fanatics community, reflecting and representing society at every level of the business, including our employees, vendors, partners and fans. Fanatics is also dedicated to making a positive impact in the communities where we all live, work, and play through strategic philanthropic initiatives.

FHI employees are expected to be on-site 4-days per week. We also offer the unique benefit of allowing employees to temporarily working from anywhere up to 20 days per year. 

The Role:
 

The CyberSecurity Analyst (Identity and Access Management) reports to the Sr. Director Information Security and will support efforts in securing the technology strategy and in helping to build and mature the Fanatics Holdings Inc (FHI) Secure programs. The Analyst will help to strengthen and mature Fanatics’ Identity & Access Management posture, and that of its subsidiaries, to protect sensitive data and critical systems from internal and external threats. The Analyst will protect FHI’s most critical assets by ensuring that access to privileged accounts is tightly controlled, monitored, and in compliance with security policy and regulations.

The Analyst will also work closely with our subsidiary security teams and our IT and Operational Technology teams to align and improve our Identity and Access Management programs.  

What You'll Do:

• Security governance for end-to-end identity lifecycle management.
• Administer and support authentication technologies, such as multi-factor authentication (MFA) and sign-sign on (SSO).
• Implement and manage privileged access management solutions to secure and monitor privileged accounts.
• Identify and continuously inventory privileged accounts across IT infrastructure.
• Implement access controls and policies to restrict and monitor the use of privileged accounts.
• Monitor and analyze privileged account usage, detecting and responding to suspicious activities.
• Integrate PAM solutions with other security tools and systems.
• Deploy, configure, and maintain SIEM solutions to collect and analyst log data.
• Administer and leverage SIEM tools to analyze security event data for anomalies and potential threats.
• Fine-tune SIEM configurations to improve detection accuracy and reduce false positives.
• Integrate threat intelligence feeds into the SIEM to enhance detection capabilities.
• Define and enforce security standards related to IAM.
• Maintain documentation related to IAM processes, configurations, incident response procedures and run books.
• Work closely with cross-functional teams, including IT, Legal, Privacy, and HR to align IAM processes with policy and regulatory requirements.
• Generate regular reports on security initiatives and programs for management.  
• Participate in rotating on-call schedule.

What We're Looking For:

• Bachelor’s degree in Information Security, Computer Science, Information Management Systems, or related field preferred.  
• Security certifications such as CCSP - Certified Cloud Security Professional and Certified Information Systems Security Professional (CISSP) are highly desired.
• 6+ years of progressive Information Security experience including 4+ years of IAM.
• Proficiency in PAM tools such as CyberArk or similar solutions.
• Understanding of network architecture, operating systems, and security protocols.
• Knowledge of scripting languages (e.g., PowerShell, Python) for automation and customization of PAM solutions.
• Proven experience in identity and access management, with a focus on Privileged Access Management (PAM), Multi-Factor Authentication (MFA), Identity Governance and Administration (IGA), and Security Information and Event Management (SIEM) technologies and processes.
• Strong understanding of security controls, risk management, and regulatory compliance (PCI/SOX/GDPR/etc.).
• Proficiency in Active Directory, LDAP, SAML, Oauth, and IdPs.  
• Proficiency in working with SIEM tools.
• Familiarity with IGA solutions such as SailPoint, Oracle Identity Manager, or Microsoft Identity Manager.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills.
• Ability to work collaboratively in teams and develop meaningful relationships to achieve common goals.
• Global experience preferred.  
• Ability to travel globally as needed. 

The salary range for this position is $132,000-198,000, which represents base pay only and does not include short-term or long-term incentive compensation. When determining base pay, as part of a final compensation package, we consider several factors such as location, experience, qualifications, and training.