Job Description

Location – Krakow

Why is this job for you:

The Manager of Identity Services will be responsible for overseeing identity governance and privileged access management (PAM) initiatives across the organisation.

This role involves leading efforts to ensure secure, compliant, and efficient management of user identities, access rights, and privileged accounts in a complex, multinational environment.

Reporting directly to the Head of Security Operations, the Manager will collaborate closely with the Security Programme Delivery team to build and mature the Identity Services team. This includes developing processes, defining key objectives—such as achieving and maintaining a high Microsoft Identity Score—and establishing clear responsibilities to support organisational security goals.

The position demands a strategic mindset, technical expertise, and the ability to drive cross-functional initiatives in a fast-paced, global setting.

You will:

Team Building and Leadership

• Work collaboratively with the Security Programme Delivery team to recruit, onboard, and develop a high-performing Identity Services team

• Define team structure, roles, and responsibilities to align with organizational objectives

• Foster a culture of continuous improvement, mentorship, and knowledge sharing within the team

Process Development and Optimization

• Design, implement, and refine identity management processes, including onboarding/offboarding workflows, access reviews, and compliance reporting

• Establish standardized procedures for identity governance and PAM to ensure consistency across global operations

Objective Setting and Performance Metrics

• Define and track key objectives, such as improving the Microsoft Identity Score through enhanced Azure AD configurations, conditional access policies, and identity protection measures

• Develop KPIs and dashboards to monitor team performance, identity health, and risk mitigation efforts

Identity Governance and Administration (IGA)

• Lead the implementation and management of identity governance solutions to control user identities and access rights throughout the organisation

• Utilize SailPoint IdentityIQ or similar tools to automate identity lifecycle management, including provisioning, de-provisioning, and role-based access control (RBAC)

• Conduct regular access certification campaigns, enforce least-privilege principles, and integrate with enterprise directories (e.g., Active Directory, Azure AD) to mitigate risks associated with unauthorized access

• Ensure compliance with regulatory requirements such as GDPR, SOX, and ISO 27001 by maintaining accurate identity data and audit trails

Privileged Access Management (PAM)

• Oversee the deployment and operation of PAM solutions using CyberArk to secure privileged accounts, credentials, and sessions. Implement just-in-time access, password rotation, and session monitoring to protect critical systems and infrastructure

• Develop strategies for discovering, onboarding, and managing privileged accounts across on-premises, cloud, and hybrid environments

• Respond to incidents involving privileged access breaches and collaborate with incident response teams to enhance PAM controls.

Collaboration and Stakeholder Management

• Partner with IT, HR, compliance, and business units to align identity services with organizational needs

• Coordinate with the Security Programme Delivery team on projects involving identity integration for new applications, mergers/acquisitions, and cloud migrations

• Provide expert guidance on identity-related risks and recommend solutions to senior leadership

Technology Implementation and Innovation

• Support the evaluation, select, and integrate identity tools and technologies, with a focus on SailPoint for IGA and CyberArk for PAM

• Stay abreast of emerging trends in identity management, such as zero-trust architectures and AI-driven threat detection, to recommend enhancements that improve security posture.

Risk Management and Compliance

• Identify and assess identity-related risks, develop mitigation plans, and ensure adherence to internal policies and external regulations

• Conduct audits, vulnerability assessments, and penetration testing focused on identity systems

• Prepare reports and presentations for the Head of Security Operations and executive stakeholders on identity program status and achievements

Incident Response and Continuous Improvement

• Support security incident investigations related to identity and access issues

• Lead root-cause analyses and implement corrective actions

• Drive initiatives for process automation, tool optimization, and training to elevate the maturity of identity services

You have:

• Bachelor’s degree

• Fluency in English

• Technical Expertise:

• Proven experience with SailPoint IdentityIQ for identity governance and administration, including workflow customization, connector integration, and compliance reporting

• Hands-on familiarity with CyberArk for privileged access management, such as Enterprise Password Vault, Privileged Session Manager, and Application Access Manager

• Strong knowledge of Microsoft identity technologies, including Azure Active Directory, and experience in improving Microsoft Identity Score metrics

• Security Knowledge:

• Deep understanding of identity and access management principles, including RBAC, ABAC, multi-factor authentication (MFA), and single sign-on (SSO)

• Familiarity with security frameworks like NIST, CIS, and zero-trust models

• Demonstrated ability to build and lead technical teams in a multinational environment. Experience in process design, objective setting, and performance management

• Excellent communication and interpersonal skills for collaborating with diverse stakeholders

• Strong problem-solving abilities, with a proactive approach to identifying and addressing risks

• Ability to manage multiple priorities in a dynamic, global organization