IT Security Analyst – project: Secrets & Credential Management

Brak informacji o wynagrodzeniu
SeniorFull-time·Umowa o pracę
#389295·Dodano wczoraj·0
Źródło: justjoin.it
Aplikuj teraz

Tech Stack / Keywords

SecurityIAMPAMAnalytical Thinking

Firma i stanowisko

Supports the enterprise-wide implementation of the Secrets & Credential Management project by analysing current-state processes, identifying security and control gaps, defining requirements, and driving the secure governance of technical and workforce secrets.

Wymagania

  • At least 5 years of experience in a similar position.
  • At least 2 years of experience in working with IAM projects.
  • Strong experience in IT security analysis, security requirements engineering, control assessment, or security governance in complex enterprise environments.
  • Proven knowledge of secrets and credential types, including passwords, SSH keys, API keys, tokens, certificates, service accounts and privileged credentials.
  • Experience in analysing IT processes, identifying control gaps, and translating findings into implementable security requirements.
  • Strong understanding of IAM, PAM, least privilege, segregation of duties, auditability, and secure access governance.
  • Ability to work across technical and non-technical stakeholder groups and drive structured analysis in ambiguous environments.
  • Strong documentation, workshop facilitation, and communication skills in English.
  • Experience in regulated, global, or highly controlled environments.

Nice to have:

  • Experience with CyberArk, HashiCorp Vault, Azure Key Vault, AWS Secrets Manager, GCP Secret Manager or similar platforms.
  • Knowledge of ISO 27001, NIST, CIS Controls or enterprise security governance frameworks.
  • Experience in transformation or migration projects involving credential centralization and legacy cleanup.
  • Relevant security certifications.

Obowiązki

  • Conduct end-to-end analysis of existing secret and credential management practices across applications, infrastructure, platforms, and operational processes.
  • Identify, classify and document technical and workforce secrets, including ownership, usage, storage location, criticality, lifecycle stage, access model, and associated risks.
  • Assess current-state control weaknesses such as unmanaged SSH keys, hardcoded credentials, shared accounts, undocumented secret usage, insufficient rotation, and weak auditability.
  • Define and document detailed functional and non-functional requirements for centralized secrets management capabilities.
  • Support the design of compliant lifecycle processes for creation, storage, access, usage, rotation, revocation, emergency access and decommissioning of secrets.
  • Analyse dependencies across systems, applications, service accounts, technical users, and operational teams to support onboarding and migration planning.
  • Prepare clear and defensible security analysis deliverables, including gap assessments, process documentation, risk assessments, control requirements, and remediation recommendations.
  • Facilitate and document workshops with technical, operational, and business stakeholders to gather requirements, validate findings and resolve ambiguities.
  • Contribute to tool evaluation activities by translating operational and security needs into concrete assessment criteria and use cases.
  • Validate whether proposed solution approaches meet defined security, compliance, and operational expectations.
  • Support reporting and governance activities by maintaining traceability of findings, risks, requirements, remediation items, and implementation dependencies.
  • Ensure analysis outputs are audit-ready, internally consistent, and suitable for decision-making at project and stakeholder governance level.

Benefity

  • The opportunity to participate in a variety of projects.
  • Multisport Plus card.
  • Private medical care (LUX MED).
  • Group insurance.
  • Access to comprehensive psychological support, individual sessions with coaches and psychodietitians, as well as inspiring webinars.
  • Remote work from any location, or a hybrid model using our offices located in Poznań.
  • A home office package to increase remote work comfort (chair, additional monitor, ergonomic mouse, etc.).
  • Modern offices equipped with amenities such as a pool table, foosball, darts, and relaxation zones.
  • Opportunities to spend time together after work - combining our employees’ passions through ski trips, cycling tours, and sailing adventures.
  • Regular company-wide and team-based integration events, as well as many other occasions to meet and exchange ideas with colleagues.
  • Celebrations of important moments in the lives of our employees.
  • An open approach to new ideas and initiatives, including charity actions.
Karta sportowa
Opieka zdrowotna
Ubezpieczenie
Elastyczne godziny
Napoje w biurze
Darmowe przekąski
Płatne święta
Spotkania integracyjne

Inne informacje

Informujemy, że administratorem danych jest NTT DATA Business Solutions sp. z o.o. z siedzibą w Tarnowie Podgórnym, ul. __Owocowa 21b (kod pocztowy 62-080) (dalej jako "administrator"). Masz prawo do żądania dostępu do swoich danych osobowych, ich sprostowania, usunięcia lub ograniczenia przetwarzania, prawo do wniesienia sprzeciwu wobec przetwarzania, a także prawo do przenoszenia danych oraz wniesienia skargi do organu nadzorczego. Dane osobowe przetwarzane będą w celu realizacji procesu rekrutacji. Podanie danych w zakresie wynikającym z ustawy z dnia 26 czerwca 1974 r. Kodeks pracy jest obowiązkowe. W pozostałym zakresie podanie danych jest dobrowolne. Odmowa podania danych obowiązkowych może skutkować brakiem możliwości przeprowadzenia procesu rekrutacji. Administrator przetwarza dane obowiązkowe na podstawie ciążącego na nim obowiązku prawnego, zaś w zakresie danych dodatkowych podstawą przetwarzania jest zgoda. Dane osobowe będą przetwarzane do czasu zakończenia postępowania rekrutacyjnego i przez okres możliwości dochodzenia ewentualnych roszczeń, a w przypadku wyrażenia zgody na udział w przyszłych postępowaniach rekrutacyjnych - do czasu wycofania tej zgody. Zgoda na przetwarzanie danych osobowych może zostać wycofana w dowolnym momencie. Odbiorcą danych jest serwis Just Join IT oraz inne podmioty, którym powierzyliśmy przetwarzanie danych w związku z rekrutacją.

NTT DATA Business Solutions

NTT DATA Business Solutions

11 aktywnych ofert

Zobacz wszystkie oferty
Aplikuj teraz