Lead IAM Security Expert

Nasze wymagania: 8+ years of experience in cybersecurity or IT security, with strong focus on IAM Hands-on experience designing and implementing IAM and access governance solutions Deep understanding of: Identity lifecycle management; Role-based and attribute-based access control; Privileged Access Management Strong experience with authentication, SSO, MFA, and identity federation Experience integrating IAM solutions with enterprise and cloud platforms Solid understanding of risk management in cloud and hybrid environments Ability to translate security and compliance requirements into working technical solutions Excellent communication skills with technical and non-technical stakeholders Fluency in English Mile widziane: Experience with DSPM solutions, DLP technologies, or data governance frameworks. Knowledge of regulatory requirements related to data protection (e.g., GDPR, ISO 27001, SOC). Background in advisory roles, architecture reviews, or technical project leadership. Certifications such as CISSP, CISM, CCSP, or equivalent are advantageous. O projekcie: Security is a core pillar of our business, and our Information Security Advisory & Testing function plays a critical role in enabling secure growth across the organization. The Identity & Access Management (IAM) domain is fundamental to protecting our internal systems, data, and platforms. Within Security Advisory, we work hands-on with Corporate Systems, engineering teams, and product organizations to design, implement, and continuously improve identity governance, access controls, and authentication mechanisms across a complex, global environment. The team operates across two closely connected areas: • Identity & Access Governance (enterprise identity lifecycle, access controls, privileged access) • Data Security & DSPM (secure access to sensitive data, identity-driven controls) This role sits at the center of IAM engineering, governance, and security team. As a Lead IAM Security Expert, you will be the technical authority for identity and access management solutions across the organization. Reporting into the Information Security Advisory & Testing leadership, you will work as a highly hands-on expert, owning IAM capabilities end-to-end — from design and implementation to operational improvement. This is a technical, individual-contributor–focused role, with two direct reports as of now. You will define IAM architectures, implement controls, review designs, and actively solve complex access and identity problems in collaboration with IT and engineering teams. You will translate security and compliance requirements into scalable, automated IAM solutions that work in real-world enterprise and cloud environments. Zakres obowiązków: IAM Architecture & Engineering (Hands-On) • Design, implement, and maintain enterprise IAM solutions across on-prem and cloud environments • Own identity lifecycle processes (joiner / mover / leaver), access provisioning, de-provisioning, and recertification • Actively configure, integrate, and improve IAM platforms and supporting tooling Identity Governance & Access Control • Build and enforce robust access governance models for business, technical, and privileged access • Ensure least-privilege access through role models, entitlement design, and segregation-of-duties controls • Lead access reviews, certifications, and remediation activities Privileged Access Management (PAM) • Design and operate controls for privileged accounts, including break-glass, session management, and vaulting • Reduce standing privileges and improve privileged identity hygiene across environments Authentication & Federation • Define and implement authentication standards (SSO, MFA, conditional access) • Manage identity federation, integrations, and trust relationships with internal and external systems Secure-by-Design Enablement • Work directly with Corporate Systems and engineering teams to embed IAM requirements into new systems and platforms • Review architectures and technical designs from an identity and access perspective • Provide concrete, implementable guidance — not just advisory recommendations IAM Risk & Compliance • Identify IAM-related risks, control gaps, and misconfigurations • Support audits and compliance initiatives (e.g. GDPR, ISO 27001, SOC) with strong technical evidence • Translate regulatory requirements into technical IAM controls Automation & Continuous Improvement • Improve IAM processes through automation, APIs, and infrastructure-as-code where applicable • Reduce manual access handling and operational friction • Continuously optimize identity controls based on risk, usage, and business needs Technical Advisory & Troubleshooting • Act as escalation point for complex IAM issues and incidents • Troubleshoot identity, access, and federation problems across distributed systems • Provide expert-level guidance to security and engineering teams Oferujemy: A collaborative environment with colleagues from all over the world (Engineering offices in Europe, Asia and US) Ability to shape your own workday and career via a clearly defined professional and personal development plan Opportunity to work with senior leadership team and develop yourself within an inspiring and fast-growing company Vibrant and inclusive community, including Women in Tech and Pride groups which welcome all participants Flexible working hours