💻 Ework Group - founded in 2000, listed on Nasdaq Stockholm, with around 13,000 independent professionals on assignment - we are the total talent solutions provider who partners with clients, in both the private and public sector, and professionals to create sustainable talent supply chains.

With a focus on IT/OT, R&D, Engineering and Business Development, we deliver sustainable value through a holistic and independent approach to total talent management.

By providing comprehensive talent solutions, combined with vast industry experience and excellence in execution, we form successful collaborations. We bridge clients and partners & professionals throughout the talent supply chain, for the benefit of individuals, organizations and society.

🔹 For our Client from banking industry we are looking forSecrets Management IT Security Business Analyst to implementation project🔹

We are looking for a PAM/Secrets Management IT Security Business Analyst to join our PAM team within our Identity and Access Management (IAM) organization. This is an opportunity for you to be part of an international team, eager to support our mission to Protect the Bank: De-risked, Compliant, Secure & Protected.

How We Understand Secrets Management:

We define secrets management as the practice of securely handling non-human privileged access used by applications, services, and automated processes. Secrets are sensitive credentials that enable controlled access to systems and data across tools, applications, DevOps pipelines, containers, and cloud environments. Effective secrets management ensures these credentials are protected, centrally governed, and used only as intended.

Typical examples include privileged account credentials, passwords, certificates, SSH keys, API keys, and encryption keys.

At Nordea, we have highlighted a need for enhanced Secrets Management and are ramping up a project to address this gap.

As a IT Security Business Analyst, you will play a key role in developing and maturing our capabilities to enhance Nordea’s security. You will take part in assessing and validating our use-cases, requirements and gaps and suitable tools and solutions to manage Secrets within Nordea. Contribute in supporting the team to complete POC for selected tools and solutions and creating a suggestion of a plan for the implementation. Support in creating implementation plan and support the completion of the project.

· Driving and facilitating meetings with key stakeholders

· Documenting and keeping track of functional requirements for Secrets Management, identified use cases etc.

· Work closely with Project Manager, Product Owner, Process Owner, IAM Architect and SMEs to increase the maturity level of the PAM offering in Nordea

Must-have knowledge and experience

• Experience working with risk management area

• Experience from previously completed Vendor selection for Secrets Management. Including documentation of functional and non-functional requirements, use-cases.

• Great collaboration, communication and negotiation skills for working with various stakeholders within Nordea

• Experience working within change management

• Knowledge of identity & PAM security best practices, for both on-premise and cloud environments

• Knowledge of fundamental security approaches and principles (such as SoD, Least Privilege, Zero Trust)

• Previous experience working in a DevOps team in Agile/Scrum setup

• Understanding of IT processes and system development lifecycle

• Familiarity with Cyber Security controls and frameworks (such as CIS, COBIT, NIST, ISO 2700x)

• Strong technical analytical and documentation skills

• A structured and organized way of working with the ability to deliver results with high quality

• The ability to do conversion between business and technical context

• A strong can-do attitude and self-driven approach

• Fluency in English (spoken and written)

Nice-to-have knowledge and experience

• Previous experience working with CyberArk technology

• Experience working with PAM and Secrets Management

• Experience working with PAM controls & requirements

Contact person: fredrik.from@eworkgroup.com

Client code: BN01

Whistleblowing Policy, which provides guidelines for reporting misconduct can be found on Ework website: https://www.eworkgroup.com/about-us/our-responsibility