Project description

We are seeking an Identity Remediation & Onboarding Analyst to join our Information Security team, supporting identity and access remediation initiatives across the firm.

• We are partnering with our CyberArk and Linux engineering teams to secure sudo access and transition users with elevated privileges to passwordless SSH sessions using CyberArk. The contractor will coordinate across technical and business stakeholders, help define and manage the migration schedule, track progress, and support issue resolution throughout the rollout.

• If capacity allows, this role may also support service account remediation efforts, including onboarding service accounts into CyberArk, coordinating appropriate Safe access configurations, and ensuring proper password rotation controls are implemented.

Responsibilities

Execute identity remediation initiatives across critical systems, eliminating orphaned accounts, stale access, excessive privileges, and unmanaged service accounts.

Perform hands-on cleanup and risk reduction across accounts, entitlements, and privileged access in alignment with firm standards.

Drive service account security improvements, including remediation of clear-text passwords, credential vaulting and rotation, ownership validation, and enforcement of lifecycle controls.

Support onboarding of applications and privileged accounts into the firm's Identity Governance & Administration (IGA) solution, and Privileged Access Management platforms in alignment to firm's access control requirements.

Reduce administrative access across critical platforms by identifying excessive privileged access and implementing least-privilege controls.

Strengthen group and entitlement governance by simplifying complex group structures and aligning them to standardized access models.

Partner with application, infrastructure, and engineering teams to implement access changes and close control gaps.

Track remediation efforts through completion, maintaining audit-ready documentation and measurable evidence of risk reduction.

Monitor shared mailboxes and ticketing queues related to remediation and onboarding activities, ensuring timely response, prioritization, and escalation.

Leverage AI tools and large language models to automate repeatable analysis, reconciliation, and documentation tasks.

Skills

Must have

Minimum of 3 years of professional experience in Identity & Access Management (IAM), information security, identity operations, or a related technology role.

Hands-on CyberArk experience

Linux knowledge

Hands-on experience executing identity lifecycle management, account remediation, or access cleanup initiatives within an enterprise environment.

Practical experience working with Identity Governance & Administration (IGA) solutions such as SailPoint, including onboarding applications or supporting entitlement management processes.

Working knowledge of Active Directory, group-based access models, and service account management.

Experience supporting privileged account onboarding or working with Privileged Access Management (PAM) solutions (e.g., CyberArk or similar).

Demonstrated understanding of identity hygiene principles, least-privilege design, service account risk management, and access control best practices.

Experience supporting remediation tracking and audit-related validation activities, including production of audit-ready evidence.

Proven ability to analyze large access and entitlement datasets (e.g., access extracts, entitlement listings, reconciliation reports) to identify control gaps and prioritize corrective actions.

Strong organizational skills with the ability to manage multiple remediation workstreams and drive issues through closure.

Clear written and verbal communication skills, with the ability to coordinate remediation and onboarding efforts across global stakeholders.

Hands-on experience leveraging AI tools or large language models to automate repeatable analysis, documentation, or reconciliation activities.

Commitment to the highest ethical standards.

Nice to have

n/a

Other

Languages

English: B2 Upper Intermediate

Seniority

Regular

Related jobs

View all vacancies

SL2 Engineer (Networking)

Technical Support (SL2)

India

Remote India

Junior BI Support Engineer

Technical Support (SL2)

Romania

Bucharest

Senior L2 Production Support Engineer

Technical Support (SL2)

India

Hyderabad, IN

Luxoft Benefits*

Global Relocation

●Relocation options **
●Experience in an international environment
●Cross-cultural experience

Recognition and Evaluation

●Feedback culture
●Regular appraisals

Time Off***

●Annual holiday - 20 or 26 days. The duration of the leave depends on the overall seniority
●Occasional leave - 1 or 2 days/ depending on the circumstances
●Child care leave - 2 days or 16 hours per year
●Absence due to force majeure - 2 days or 16 hours per year
●Maternity Leave - 20 weeks
●Parental Leave - 41 weeks
●Paternity Leave - 14 days

Luxoft Training Center

●Expert-led tech courses covering basic to advanced topics
●Internal instructor-led soft skills courses
●Comprehensive in-house self-learning resources for both soft and hard skills
●Access to external self-learning libraries like ProQuest eBook and Udemy for Business
●Cloud Programs: MS Cloud Academy, AWS Partner Academy, Google Cloud Academy
●Custom Learning Programs: upskilling, reskilling, technical mentorship
●Leadership Programs for Managers

Well-being and Work-life Balance

●Multisport card
●Possibility to order Multisport card at the corporate rate for family members
●LuxGood Program: wellbeing seminars, contests, relaxation sessions, yoga sessions, etc.
●One Team Program: Buddy for each New Joiner; seminars, meeting and workplace space to support integration with local community and culture; “Hire me” workshops for partners
●Preferential banking offer
●Preferential car leasing offer
●Cafeteria program discounts for shops, cinema tickets, holiday offers
●Luxoft Social Benefit Fund: sport and recreation benefits, the possibility to receive financial support

Health Care

●Private Healthcare Insurance with unlimited access to specialists
●Full dental support
●Travel Insurance
●Possibility to add private healthcare coverage for family members at the corporate rate
●Life insurance at the corporate rate for employees and family members, including payment of the basic package for the employee by the employer
●Reimbursement for corrective glasses

Company Events and Friendly Environment

●Many fun social activities organized by the Luxoft team offline in your city
●Online entertainment events for whole company and local team events
●A workplace where you’re treated with respect within a multicultural team

Internal Mobility

●Rotation between projects and accounts
●New career opportunities

Self-Learning Library

CSR Projects

*The acquisition of rights to the above benefits depends on the form of cooperation. Benefits apply to those employed under a contract of employment.

**Please note that relocation is not available for all open positions. At Luxoft Poland it is possible to work remotely only from the territory of Poland.

***Options offered by the Polish government.

Warsaw, Poland

Req. VR-122906

Technical Support (SL2)

BCM Industry

13/05/2026

Req. VR-122906

Apply for Information Security Support Engineer in Warsaw

*Indicates a required field

First name

Last name

Your country

Your City

Phone

Specialization

Attach your resume (max file size 1MB; allowed extensions: doc, txt, pdf, docx) Upload resume

Number of years of experience in the specialization you are applying for

What are your monthly gross salary expectations?

Read Explanatory Notes

Under the terms of your specific consent or to perform our obligations under a contract with you, as applicable, we, Luxoft Holding Inc. will manually and electronically process your personal data, specifically your first name, last name, phone number, e-mail address and other data you provide us through this form.

Within this context, we process personal data only for the specific purpose(s) indicated in the individual consent language or other notices provided below.

We will – insofar as reasonably necessary for the purpose you have agreed to and within the scope of applicable laws – transfer your personal data to other entities within the Luxoft Group and to the group of third party recipients listed in our Privacy Notice. Such Recipients can be located outside the European Union (EU) and/or the European Economic Area (EEA) (“Third Countries”). The Third Countries concerned, e.g. the USA, may not have the level of data protection that you enjoy e.g. under the GDPR. This can result in disadvantages such as an impeded enforcement of data subjects’ rights, a lack of control over further processing and access by state authorities. You may only have limited legal remedies against this. Insofar our transfer of your personal data to recipients in Third Countries is not covered by an adequacy decision of the EU Commission, we achieve an adequate level of data protection as further detailed out in our Privacy Notice.

With your consent, we personalise marketing communications to you by way of carrying out marketing research analysis, analysing the surfing-behaviour of our website visitors and to adjust it to their detected tendencies, as well as to plan more efficient future marketing activities. This personalised marketing does not include any automated decision-making activities.

Further information on how we process personal data in general is available in our Privacy Notice. You may withdraw any given consent at any time. The withdrawal of your consent(s) will not affect the lawfulness of processing before its withdrawal. For any request in this context, please e-mail us at: DPO@luxoft.com.

Before uploading CV or any other information to this website, to learn more about your obligations and restrictions arising from the use of this website, please read our Terms of Use.

By clicking the Agree and Send button, you consent that Luxoft Holding Inc. can process your provided personal data for the purpose of processing your application to establish a potential employment, internship or relocation with Luxoft Holding Inc., a relevant affiliate of the Luxoft Group or Luxoft Group’s clients, as applicable. You consent to the retention of your personal data, with the purpose of contacting you for potential future employment opportunities. If you refer a friend, we will process your provided personal data of you and your referral to award you with a bonus for such recommendation. You can withdraw your consent at any time with effect for the future. Before you consent, please click on „Read these Explanatory Notes“ and view our Privacy Notice (e.g. for your data subject rights).

Note: Our system automatically converts each CV into our standardized format, enabling our HR teams to process applications more efficiently.

I consent that Luxoft Holding Inc. and the affiliates of the Luxoft Group can process my personal data for the purpose of sending me regular emails with information about Luxoft as an employer including job vacancies and (ii) marketing communications with information about recruitment-related events, organized webinars, conferences, as well as the Logeek Magazine and other similar publications. I can withdraw my consent at any time with effect for the future. These communications are personalised to my interests in accordance with our Privacy Notice.

Related Jobs

All jobs

MENU

Information Security Support Engineer

Project description

Responsibilities

Skills

Other

Related jobs

SL2 Engineer (Networking)

Junior BI Support Engineer

Senior L2 Production Support Engineer

Luxoft Benefits*