Goldman Sachs

Engineering - Security Engineering - Warsaw- Associate - VIDM - IAM

Goldman Sachs  •  Warsaw, PL (Hybrid)  •  5 days ago
Apply
Save Job
Mark Applied Mark Interviewed Mark Offered
Hide Job Report Job
AI can make mistakes so check important info. Chat history is never stored.

Job Description

WHO WE ARE

Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC and EMEA. Within Technology Risk, the Vulnerability, Identity & Data Management (VIDM) TechRisk team is the consultative and technology subject matter expertise arm, responsible for assessing new technology initiatives for risk, partnering with engineers to architect and design secure products and services, embedding implementation reviews and guiding technology innovation in terms of security and control across Goldman Sachs.

OUR MISSION

The TechRisk IAM team safeguards Goldman Sachs identities as the first line of defense by collaborating with Engineering Teams, Operational Risk, and Internal Audit to establish robust controls and good practices for identity and access management - fostering a secure, resilient, and compliant environment for internal employees and external customers of the Firm.

In delivering on this mission, the TechRisk VIDM IAM team must:

  • Collaborate with the rest of Technology Risk on information security and cybersecurity risk management throughout the firm across the IAM domain.
  • Establish and maintain appropriate policies, standards, and controls to adequately address information security risks in accordance with best practices and applicable regulations across the IAM domain.
  • Conduct ongoing testing and monitoring to evaluate adoption of necessary Engineering controls.
  • Ensure that the firm's senior management and Board of Directors are cognizant of changes in the information security environment across the IAM domain.

YOUR IMPACT

In this role, you will join the global Identity and Access Management (IAM) pillar within the VIDM TechRisk team, specifically the IAM Security, Strategy, Architecture and Platforms sub-pillar - the team is responsible for the identification of software security flaws, along with providing security assurance advice and guidance to engineers to help them manage application risks. You will interact with all parts of the firm, giving you the opportunity to grow within the Technology Risk team as well as other divisions within the firm.

The ideal candidate should have experience integrating and tuning software security controls within continuous deployment SDLC, the ability to review, triage and remediate findings by interfacing with the Business Units, and help raise developer security awareness.

HOW YOU WILL FULFILL YOUR POTENTIAL

The IAM Security, Strategy, Architecture and Platforms sub-pillar, within the Identity and Access Management (IAM) pillar of the VIDM TechRisk team, is responsible for the identification of software security flaws, along with providing security assurance advice and guidance to engineers to help them manage application risks.

You will become a highly committed, trusted Risk Advisor with the discipline and interpersonal skills to work in a global environment, communicating the impact of technology risks and the approach to mitigation and acceptance. You will provide VIDM TechRisk risk assessment and advisory services to engineers as part of the Technology Risk function, while contributing directly to the team's strategic objectives.

IDEAL CANDIDATE

The ideal candidate is a  technically grounded IAM specialist who combines engineering excellence with the judgment of a trusted risk advisor. They are equally comfortable reading a federation metadata file, debugging a Kerberos ticket flow, reviewing a NIST control mapping, and explaining identity risk to senior stakeholders.

You will become a highly committed, trusted Risk Advisor with the discipline and interpersonal skills to work in a global environment — communicating the impact of technology risks and the approach to mitigation and acceptance across Engineering.

JOB RESPONSIBILITIES

As part of the  IAM Security, Strategy, Architecture and Platforms sub-pillar within the VIDM TechRisk team, you will:

  • Provide IAM risk advisory services to engineering teams, partnering on the design and architecture of secure identity, authentication, and authorization solutions.
  • Identify security flaws in IAM platforms and integrations, and provide security assurance advice and guidance to engineers to help them manage application risks.
  • Review, triage, and remediate findings by interfacing with Business Units and Engineering teams, and help raise developer security awareness around identity best practices.
  • Establish and maintain policies, standards, and controls to address information security risks across the IAM domain, in line with best practices and applicable regulations.
  • Conduct ongoing testing and monitoring to evaluate adoption of necessary engineering controls in the IAM space.

BASIC QUALIFICATIONS

  • Bachelor's degree in Computer Science, Information Security, or a related discipline or equivalent industry experience.

  • Hands-on experience designing, implementing, integrating, or assessing Identity and Access Management (IAM) systems in large, complex enterprise environments.

  • Working knowledge of industry-standard authentication and authorization protocols, including: OpenID Connect (OIDC), OAuth 2.0, SAML 2.0, Kerberos, WIMSE / SPIFFE (workload identity)

  • Practical experience with one or more of the following IAM technology stacks: Microsoft Entra ID and Active Directory, Heimdal Kerberosand MIT Kerberos, Ping Federate, Auth0, Okta

  • Ability to review, triage, and remediate IAM-related security findings in partnership with engineering teams.

  • Strong interpersonal and communication skills to operate effectively in a global, cross-functional environment.

  • Fluent English

Preferred Qualifications:

  • Experience integrating IAM controls into the  SDLC and CI/CD pipelines, including automated control validation.
  • Familiarity with  cryptographic primitives as applied to identity — token signing, key management, certificate-based authentication, and mTLS.
  • Understanding of  Privileged Access Management (PAM),  phishing-resistant MFA,  Separation of Duties (SoD), and  Zero Trust architectures.
  • Demonstrated interest or experience in the  regulatory and controls aspects of IAM.
  • Genuine interest in  Agentic AI authentication and authorization — identity for autonomous agents, delegated authority models, and scoped tokens for AI workloads.
  • Experience in  hybrid and native public cloud IAM environments.
  • Industry certifications such as  CISSP, CISM, CCSP, SANS GIAC (GSEC, GCIH, GPCS), or vendor-specific IAM certifications (Okta, Ping, Microsoft Identity).
  • Prior experience in  financial services or another  highly regulated industry
  • Exposure to  policy authoring, control design, or regulatory engagement within the IAM space.
ABOUT GOLDMAN SACHS



At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world.



We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers.



We’re committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https://www.goldmansachs.com/careers/footer/disability-statement.html





© The Goldman Sachs Group, Inc., 2026. All rights reserved.

Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law.


Goldman Sachs

About Goldman Sachs

We aspire to be the world’s most exceptional financial institution, united by our shared values of partnership, client service, integrity, and excellence.

Operating at the center of capital markets, we act as one firm, mobilizing our people, capital, and ideas to deliver superior results across our clients’ most complex challenges.

For 156 years, Goldman Sachs has delivered world-class execution on a global scale across our leading Global Banking & Markets and Asset & Wealth Management businesses.

Apprenticeship is central to our culture, with hands-on coaching and access to leaders who bring decades of experience and expertise. With office locations around the world, we offer a broad range of career opportunities to those who insist on excellence and thrive on performance.

Find our Social Media Disclosures here: gs.com/social-media-disclosures

Industry
Finance & Insurance
Company Size
10,000+ employees
Headquarters
New York, New York
Year Founded
Unknown
Website
goldmansachs.com
Social Media