CrawlJobs Logo
Kennametal Logo Kennametal · IT - Administration

Senior Analyst, IT Security & Data Protection

Poland, Poznan · Job Posted June 14, 2026
Apply Position
Job Link Share

Job Description

We are looking for a Senior Analyst, IT Security & Data Protection to support our global cybersecurity and privacy compliance programs. In this role, you will help ensure compliance with GDPR and cybersecurity frameworks while partnering with IT, Information Security, Legal, Procurement, and business stakeholders across the organization.

Job Responsibility

  • Own and coordinate Privacy Impact Assessments (PIAs / DPIAs) for new systems, vendors, tools, and processing activities, ensuring risks are identified, documented, and addressed prior to implementation
  • Support the review, maintenance, and operational application of Data Processing Agreements (DPAs) and Standard Contractual Clauses (SCCs) in partnership with Legal, Procurement, and IT
  • Maintain and oversee Records of Processing Activities (ROPA), supporting process owners and driving periodic review cycles to ensure accuracy and completeness
  • Evaluate systems and business processes for GDPR compliance, including lawful basis, purpose limitation, data minimization, retention, data subject rights, and access controls
  • Maintain and update privacy policies, standards, and procedures to reflect regulatory requirements and internal operating practices
  • Embed privacy‑by‑design and privacy‑by‑default principles into IT solutions and digital initiatives through proactive engagement with project teams
  • Support data protection incident and breach triage, fact‑finding, documentation, risk assessment support, and coordination with Information Security and Legal stakeholders
  • Manage the Data Privacy SharePoint and evidence repositories, ensuring documentation is current, well‑structured, and audit‑ready
  • Maintain GDPR training content and support awareness tracking and reporting
  • Support internal and external privacy audits, regulatory inquiries, and supervisory authority assessments

Requirements

  • Bachelor's degree in Information Security, Information Systems, Computer Science, or a related field
  • 5+ years of experience in data privacy, cybersecurity compliance, GRC, risk management, or a related area
  • Strong knowledge of GDPR and data protection requirements
  • Experience with audits, risk assessments, and compliance programs
  • Excellent communication and stakeholder management skills
  • Professional proficiency in English

Nice to have

  • Experience with ISO 27001, NIST, TISAX, Cyber Essentials, or similar frameworks
  • Experience in a global organization
  • CISSP, CISM, CRISC, ISO 27001, or related certifications
  • Familiarity with IT service management concepts (ITIL)
  • Experience with enterprise risk management programs or GRC platforms

What we offer

  • Work on global privacy and cybersecurity initiatives
  • Collaborate with international teams and stakeholders
  • Grow your expertise in a dynamic and evolving compliance environment
  • Competitive compensation, benefits, and flexible working arrangements
Kennametal - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Analyst, IT Security & Data Protection

8 matching positions

Senior Cloud Security Analyst

Reporting to the Global Head of Security under Product Security, the Sr Cloud Se...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
alterdomus.com Logo
Alter Domus
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, Information Security, or related professional experience
  • 6+ years’ experience in cloud security
  • 3+ years hand-on experience working with containerized environments
  • Excellent understanding of Azure, AWS, k8s
  • Experience working with cloud security posture management tooling
  • Hands-on experience on threat modeling and security architecture reviews
  • Hands-on experience of working with compliance requirements and turning them to technical controls
  • Knowledge of cloud security best practices and industry standards
  • Strong analytical and problem-solving skills
  • Ability to think critically and make data-driven decisions
Job Responsibility
Job Responsibility
  • Design and implement security controls across AWS, Azure environments
  • Continuously enhance our cloud security posture management (CSPM) program to identify and remediate risks in configurations and policies
  • Ensure SOC 2 cloud security controls are always executed and auditable
  • Oversee security for containerized applications and Kubernetes clusters
  • Establish best practices for container image security, pod security policies, and cluster network segmentation to protect our microservices
  • Ensure cloud systems and solutions are secure by design and champion a secure guardrails approach
  • Conduct continuous vulnerability and compliance validation to ensure ongoing adherence to security policies and regulations
  • Monitor cloud environments for security incidents and ensuring rapid response through automated mechanisms
  • Serve as subject matter expert on cloud technologies and security solutions
  • Perform technical security design, architecture, change and/or configuration audits/reviews on our hosting environments including Azure & AWS, servers, network devices, endpoints, and security technologies deployed (CNAPP, MDM, WAF, DDoS, etc.)
What we offer
What we offer
  • Flexible arrangements, generous holidays, plus an additional day off for your birthday
  • Continuous mentoring along your career progression
  • Active sports, events and social committees across our offices
  • 24/7 support available from our Employee Assistance Program
  • The opportunity to invest in our growth and success through our Employee Share Plan
  • Fulltime
Read More
Arrow Right

Cyber Architect - Info Security Tech Senior Analyst

The Cyber Architect - Info Security Tech Senior Analyst is an intermediate level...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience
  • Additional technical certifications are preferred
  • Demonstrated ability to research and apply current information regarding the IS field
  • Threat modelling using industry standard methodologies (e.g. STRIDE/DREAD) Experience developing Reference Security Architecture and Design Patterns to support proactive and automated controls
  • Strong knowledge of security for applications related to authentication / authorization, data protection, session management, data validation, and end point protections
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Plan, research, and design security architecture for IT systems and applications (internally developed as well as vendor supplied) for processing multiple classification levels of data on prem, and cloud
  • Determine the security controls for above, document appropriately and partner with IT architecture/development stakeholders to implement during early in system development life cycle
  • Perform security architecture and risk assessment of internally developed or acquired IT systems and applications using best practices including threat modelling. Ensure that security design and controls are consistent with organization's security architecture principals
  • Establish relationships with cross-functional areas including Business, Technology, and Compliance stakeholders and serve as a SECURITY subject-matter expert
  • Manage risk by analyzing the root cause of security issues, determining compensating controls, and driving remediation
  • Coordinate with system development and infrastructure units to identify Information Security (IS) risks and the appropriate controls for development, day-to-day operation, and emerging technologies
  • Perform regular assessments based on changes in the threat landscape
  • Provide information security support with related activities during systems development (e.g. authentication, encryption)
  • Identify significant IS threats and vulnerabilities
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Senior IT Risk Analyst

Berkshire Hathaway Specialty Insurance (BHSI) has an exciting opportunity for a ...
Location
Location
United States , Boston
Salary
Salary:
95000.00 - 125000.00 USD / Year
bhspecialty.com Logo
Berkshire Hathaway Specialty Insurance
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of experience in IT risk, IT audit/compliance, or cyber GRC
  • Experience running RCSAs, defining KRIs/KPIs, and presenting risk insights to senior stakeholders
  • Strong documentation skills, including writing risk narratives, control designs, control matrices, testing procedures, and remediation plans
  • Effective communication and partnership skills
  • able to challenge constructively and receive challenge professionally
  • Experience conducting vendor risk reviews, including SOC 2 analysis, control gap identification, and remediation follow‑up
  • Solid background knowledge of major risk and control frameworks (Technology, Cyber, Enterprise), such as NIST CSF, COSO ERM, COBIT, etc.
  • Working knowledge of U.S. IT regulations (e.g., SOX, CCPA/CPRA, PCI, NY‑DFS) is recommended
  • Ability to work in a team-based environment and communicate effectively and efficiently with others domestically and globally
Job Responsibility
Job Responsibility
  • Lead risk identification, risk assessment, and ongoing monitoring
  • maintain the IT risk register and ensure risks map to business objectives and risk appetite/tolerances
  • Drive Risk and Control Self‑Assessments (RCAs) with different risk and control owners
  • advise on control design for identity & access, change/release, resiliency/DR, cloud security, data protection, and vulnerability management
  • Define and socialize KRIs/KPIs, risk dashboards, trends, and heat maps
  • deliver clear status to Technology leadership, and key stakeholders
  • Partner with Vendor Risk Management Team to evaluate critical vendors (including AI‑enabled services), review SOC reports/certifications, assess control gaps, and track remediation/compensating controls through closure
  • Track risk issues, action plans, and target dates
  • validate remediation and retest where needed
  • participate in lessons‑learned and scenario exercises
What we offer
What we offer
  • Comprehensive Health, Dental and Vision benefits
  • Disability Insurance (both short-term and long-term)
  • Life Insurance (for you and your family)
  • Accidental Death & Dismemberment Insurance (for you and your family)
  • Flexible Spending Accounts
  • Health Reimbursement Account
  • Employee Assistance Program
  • Retirement Savings 401(k) Plan with Company Match
  • Generous holiday and Paid Time Off
  • Tuition Reimbursement
  • Fulltime
Read More
Arrow Right

SOC Analyst Senior Cyber Security Engineer

Position: SOC Analyst Senior Cyber Security Engineer. Experience: 2 to 4 yrs. Lo...
Location
Location
India , Noida
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 2-year experience working in security operations environment or 2 years’ experience in IT operations Data Centre, SOC/NOC
  • Very good English verbal & written communication skills
  • Good understanding of networking concepts and operating systems
  • Good understanding of key customer infrastructure components - Proxy, Firewall, Antivirus
  • Technical capability and maturity to assist and guide the team of Analysts
  • Should have worked and have good understanding of the following security tools: (SentinelOne IR, Service Now Tool, Microsoft Defender)
  • Ability to learn new skills and adopting new technologies and work collaboratively in an international context
  • Capability to understand and work in a complex environment and concern for quality and detail
  • Ability to synthesize and analyze a variety of contexts and manage customer confidentiality
  • Knowledge on ITIL basic practice
Job Responsibility
Job Responsibility
  • Ensure all threats at customer environment are detected and notified in timely manner
  • Continuous review of Incidents to ensure compliance with standard operating procedures
  • Provide training and feedback to Security Analysts to ensure high quality deliverables
  • Identify and execute continuous improvements in monitoring including threat scenarios and operating procedures
  • Interact with customers on queries and improvements related to service deliverables
  • Should know and able to contribute to MSSP services (Managed Security Services Provider)
  • Perform root cause analysis for any errors /deficiencies pointed out in the monitoring service
  • Review the alert to determine relevancy and urgency, create new trouble tickets for incident
  • Ensure thorough knowledge of Protection of Personal Identifiable Information and GDPR
Read More
Arrow Right

Senior Technical Security Analyst

As a Technical Security Analyst on the Trust team, you'll be a part of a highly ...
Location
Location
Salary
Salary:
Not provided
shopify.com Logo
Shopify
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • an understanding of information security fundamentals, privacy and compliance standards
  • an understanding of cloud technologies, containerized environments and infrastructure as code
  • experience working with compliance teams or auditors and familiarity with compliance programs such as SOC, PCI, or SOX
  • experience building or maintaining controls and security safeguards for frameworks
  • experience using automation to simplify security and IT practices
  • familiarity with AI tooling, and how to integrate it to accelerate your workflows and augment your skills
  • ability to create and maintain trusted relationships
  • excellent communication skills, including technical breakdowns
  • passion for documenting strategy and approach
  • demonstrated impact in performing assessments
Job Responsibility
Job Responsibility
  • provide operational security guidance to ensure programs are running effectively, efficiently and without gaps
  • collaborate with cross functional teams and gather evidence for assessments, implementations, and use of new tools and workflows
  • automate and improve security workflows and tasks across the scope of our security programs
  • evaluate and instantiate the third parties, and build controls that balance security with speed
  • monitor Shopify’s current control stack and make recommendations to reduce security risk
  • lead and contribute to projects that build out and harden security at Shopify
  • contribute to the management and execution of cyclical controls within operational frameworks
  • collect evidence and samples to support audit activities and ensure compliance with relevant standards
  • supporting the development and implementation of new projects and initiatives, ensuring alignment with strategic goals
  • increase automation and reducing toil in existing controls, and finding new ways to protect Shopify against emerging risks
Read More
Arrow Right

SOC Analyst Senior Cyber Security Engineer

Job Description: Minimum 2-year experience working in security operations enviro...
Location
Location
India , Noida
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 2-year experience working in security operations environment or 2 years’ experience in IT operations Data Centre, SOC/NOC
  • Should know and able to contribute to MSSP services (Managed Security Services Provider)
  • Ensure thorough knowledge of Protection of Personal Identifiable Information and GDPR
  • Certification (Must): SC:200 / SC:900
  • CC2 - Certified in CyberSecurity
  • Engineering graduate - preferably B.E. /B.Tech in IT or Computer Engineering
  • At least one Certification Preferred - CC2 - Certification in CyberSecurity
  • SC-900: Microsoft Security, Compliance, and Identity Fundamentals certified
  • SC-200: Microsoft Security Operations Analyst
  • ready for 24x7 support services
Job Responsibility
Job Responsibility
  • Ensure all threats at customer environment are detected and notified in timely manner
  • Continuous review of Incidents to ensure compliance with standard operating procedures
  • Provide training and feedback to Security Analysts to ensure quality deliverables
  • Identify and execute continuous improvements in monitoring, including threat scenarios and operating procedures
  • Interact with customers on queries and improvements related to service deliverables
  • Perform root cause analysis for any errors /deficiencies pointed out in the monitoring service
  • Review the alert to determine relevancy and urgency, create new trouble tickets for incident
Read More
Arrow Right

Senior GRC & Information Protection Analyst

In this contingent resource assignment, you may: Consult on complex initiatives ...
Location
Location
United States , Charlotte, NC (Brevard) / Chandler, AZ
Salary
Salary:
69.00 - 74.00 USD / Hour
apexsystems.com Logo
Apex Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of Information Security or GRC (Governance, Risk, Controls) experience
  • Strong experience with enterprise metrics, reporting, and audit support
  • Excellent communication skills and high attention to detail
Job Responsibility
Job Responsibility
  • Execute enterprise governance activities related to data-at-rest protection
  • Interpret and apply information security policies, standards, and controls
  • Analyze risk and control gaps and drive remediation actions
  • Own and manage enterprise security metrics cycles (collection, validation, analysis)
  • Develop executive-level dashboards, summaries, and presentations
  • Provide insights and commentary on risk trends and control effectiveness
  • Produce audit-ready documentation and evidence
  • Support audit reviews, regulatory requirements, and compliance reporting
  • Maintain defensible records aligned with enterprise standards
  • Evaluate complex security and governance challenges
What we offer
What we offer
  • medical
  • dental
  • vision
  • life
  • disability
  • ESPP (employee stock purchase program)
  • 401K program with company match after 12 months
  • HSA (Health Savings Account on the HDHP plan)
  • SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions
  • corporate discount savings program
Read More
Arrow Right

Senior Data Loss Prevention (DLP) Analyst

The Senior Data Loss Prevention (DLP) Analyst is a subject matter expert respons...
Location
Location
United States , San Jose
Salary
Salary:
152000.00 - 180000.00 USD / Year
archer.com Logo
Archer Aviation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Security, Computer Science, or related fields
  • 3+ years of experience in cybersecurity, with a focus on data loss prevention, insider threat, or data protection
  • Deep technical expertise in DLP solutions (e.g., Microsoft Purview, Cyberhaven, Digital Guardian, Netskope)
  • Experience with data discovery, classification, and protection technologies
  • Strong analytical, investigative, and incident response skills
  • Familiarity with SIEM tools and user behavior analytics (UBA)
  • Excellent written and verbal communication skills
  • ability to convey technical concepts to non-technical stakeholders
  • Ability to work collaboratively in cross-functional teams and manage multiple priorities
Job Responsibility
Job Responsibility
  • Design, implement, and maintain enterprise DLP technology solutions across endpoints, servers, cloud, and network environments
  • Act as a subject matter expert for DLP tools (Cyberhaven, Digital Guardian, Case Management)
  • Develop and refine DLP policies and technical architecture diagrams
  • Oversee DLP endpoint agent deployment, configuration, and maintenance
  • Lead data discovery and classification efforts using DLP and information protection tools
  • Collaborate with privacy, engineering, and cybersecurity teams to ensure data is classified and protected
  • Monitor and analyze DLP alerts to detect and respond to potential data loss or exfiltration incidents
  • Investigate and resolve incidents involving the theft or loss of sensitive data
  • Manage insider risk using dedicated tools
  • Tune DLP policies and rules to reduce false positives and enhance detection accuracy
  • Fulltime
Read More
Arrow Right