We are seeking an Identity Remediation & Onboarding Analyst to join our Information Security team, supporting identity and access remediation initiatives across the firm.
We are partnering with our CyberArk and Linux engineering teams to secure sudo access and transition users with elevated privileges to passwordless SSH sessions using CyberArk. The contractor will coordinate across technical and business stakeholders, help define and manage the migration schedule, track progress, and support issue resolution throughout the rollout.
If capacity allows, this role may also support service account remediation efforts, including onboarding service accounts into CyberArk, coordinating appropriate Safe access configurations, and ensuring proper password rotation controls are implemented.
- Execute identity remediation initiatives across critical systems, eliminating orphaned accounts, stale access, excessive privileges, and unmanaged service accounts.
- Perform hands-on cleanup and risk reduction across accounts, entitlements, and privileged access in alignment with firm standards.
- Drive service account security improvements, including remediation of clear-text passwords, credential vaulting and rotation, ownership validation, and enforcement of lifecycle controls.
- Support onboarding of applications and privileged accounts into the firm's Identity Governance & Administration (IGA) solution, and Privileged Access Management platforms in alignment to firm's access control requirements.
- Reduce administrative access across critical platforms by identifying excessive privileged access and implementing least-privilege controls.
- Strengthen group and entitlement governance by simplifying complex group structures and aligning them to standardized access models.
- Partner with application, infrastructure, and engineering teams to implement access changes and close control gaps.
- Track remediation efforts through completion, maintaining audit-ready documentation and measurable evidence of risk reduction.
- Monitor shared mailboxes and ticketing queues related to remediation and onboarding activities, ensuring timely response, prioritization, and escalation.
- Leverage AI tools and large language models to automate repeatable analysis, reconciliation, and documentation tasks.
MUST
- Minimum of 3 years of professional experience in Identity & Access Management (IAM), information security, identity operations, or a related technology role.
- Hands-on CyberArk experience
- Linux knowledge
- Hands-on experience executing identity lifecycle management, account remediation, or access cleanup initiatives within an enterprise environment.
- Practical experience working with Identity Governance & Administration (IGA) solutions such as SailPoint, including onboarding applications or supporting entitlement management processes.
- Working knowledge of Active Directory, group-based access models, and service account management.
- Experience supporting privileged account onboarding or working with Privileged Access Management (PAM) solutions (e.g., CyberArk or similar).
- Demonstrated understanding of identity hygiene principles, least-privilege design, service account risk management, and access control best practices.
- Experience supporting remediation tracking and audit-related validation activities, including production of audit-ready evidence.
- Proven ability to analyze large access and entitlement datasets (e.g., access extracts, entitlement listings, reconciliation reports) to identify control gaps and prioritize corrective actions.
- Strong organizational skills with the ability to manage multiple remediation workstreams and drive issues through closure.
- Clear written and verbal communication skills, with the ability to coordinate remediation and onboarding efforts across global stakeholders.
- Hands-on experience leveraging AI tools or large language models to automate repeatable analysis, documentation, or reconciliation activities.
- Commitment to the highest ethical standards.
n/a
Luxoft DXC
2000
Luxoft, a DXC Technology Company is a global digital strategy and software engineering firm with over 17,000 international employees within its 58 offices in 29 countries. It is headquartered in Zug, Switzerland.
In January 2019, Luxoft was acquired by U.S. company DXC Technology. Luxoft partnered with LG Electronics to create a next-generation Autonomous Mobility concept vehicle that integrates consumers' personalized digital lifestyles into a driving experience. Luxoft enabled Switzerland's first Blockchain based e-vote platform with the City of Zug and Hochschule Luzern's Blockchain Lab.
Luxoft, a DXC Technology Company is a world-renowned company. It has been present on the Polish market for over 13 years. We have offices in Krakow, Warsaw, Wroclaw, and Gdansk. We employ over 2,000 professional experts carrying out projects for over 100 clients from the financial, automotive, medical, tourist industries, etc. We work for many international clients, including the USA, Great Britain, and Switzerland.
So far, Luxoft Poland has made a name for itself as a company that offers work on innovative projects, we offer various experiences in the field of IT, opportunities for rapid development, an extensive training program, and attractive benefits for employees.
At present, 62% of Luxoft Poland employees come from Poland, and 38% from around 50 countries, including Ukraine, Brazil, India, Turkey, Spain, Portugal, Italy, Romania, USA, etc.
At Luxoft, a DXC Technology Company almost 80 percent of employees are experts with the "Senior" experience level, with at least five years of experience. We care about our employees, so every day we try to provide them with the best possible conditions for work and development.
Technology is our passion! We focus on top engineering talent means that you will be working with the best industry professionals from around the world. Because of that, Luxoft is a global family with an epic atmosphere – we love what we do!