More jobs:
IT Security Analyst; She/He/They
Job in
Town of Poland, Jamestown, Chautauqua County, New York, 14701, USA
Listed on 2026-07-02
Listing for:
Capco
Full Time
position Listed on 2026-07-02
Job specializations:
-
IT/Tech
Cybersecurity, Information Security
Job Description & How to Apply Below
Location: Town of Poland
* We are looking for Poland based candidate.
As an IT Security Analyst
, you will play a key role in supporting a large-scale Secrets & Credential Management initiative. You will analyze current‑state environments, identify control gaps, and define robust, scalable security requirements. Working across technical and business teams, you will help ensure that sensitive credentials are governed, controlled, and aligned with regulatory and operational expectations.
We offer a flexible collaboration model based on a B2B contract, with the opportunity to work on diverse projects.
Key Responsibilities:
- Conduct end‑to‑end analysis of secrets and credential management practices across applications, infrastructure, and platforms
- Identify, classify, and document secrets, including ownership, usage, storage, lifecycle stage, and associated risks
- Assess control gaps (e.g., unmanaged credentials, hardcoded secrets, weak auditability) and define remediation approaches
- Define functional and non‑functional requirements for centralized secrets management solutions
- Facilitate workshops with stakeholders to gather requirements, validate findings, and support governance activities
Required
Skills and Experience:
- Experience in IT security analysis, security requirements engineering, or security governance within complex environments
- Strong understanding of IAM, PAM, least privilege, and secure access governance principles
- Knowledge of credential types (passwords, SSH keys, API keys, tokens, certificates, service accounts)
- Ability to translate security risks and control gaps into actionable requirements
- Strong communication and documentation skills, with the ability to collaborate across technical and non‑technical teams
Nice to have:
- Experience with secrets management tools such as Cyber Ark, Hashi Corp Vault, or cloud‑native solutions
- Familiarity with security frameworks (ISO 27001, NIST, CIS Controls)
- Experience in transformation or migration projects involving credential centralization
- Exposure to regulated or highly controlled environments
- Experience supporting enterprise‑scale security initiatives
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×