Engineering - Security Engineering - Warsaw- Associate - VIDM - IAMWarsaw, Mazowieckie, Poland
Engineering - Security Engineering - Warsaw- Associate - VIDM - IAM
Engineering - Security Engineering - Warsaw- Associate - VIDM - IAMWarsaw, Mazowieckie, Poland

WHO WE ARE 

Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC and EMEA. Within Technology Risk, the Vulnerability, Identity & Data Management (VIDM) TechRisk team is the consultative and technology subject matter expertise arm, responsible for assessing new technology initiatives for risk, partnering with engineers to architect and design secure products and services, embedding implementation reviews and guiding technology innovation in terms of security and control across Goldman Sachs.

 

OUR MISSION

The TechRisk IAM team safeguards Goldman Sachs identities as the first line of defense by collaborating with Engineering Teams, Operational Risk, and Internal Audit to establish robust controls and good practices for identity and access management - fostering a secure, resilient, and compliant environment for internal employees and external customers of the Firm.

In delivering on this mission, the TechRisk VIDM IAM team must:

  • Collaborate with the rest of Technology Risk on information security and cybersecurity risk management throughout the firm across the IAM domain.
  • Establish and maintain appropriate policies, standards, and controls to adequately address information security risks in accordance with best practices and applicable regulations across the IAM domain.
  • Conduct ongoing testing and monitoring to evaluate adoption of necessary Engineering controls.
  • Ensure that the firm's senior management and Board of Directors are cognizant of changes in the information security environment across the IAM domain.

 

YOUR IMPACT

In this role, you will join the global Identity and Access Management (IAM) pillar within the VIDM TechRisk team, specifically the IAM Security, Strategy, Architecture and Platforms sub-pillar - the team is responsible for the identification of software security flaws, along with providing security assurance advice and guidance to engineers to help them manage application risks. You will interact with all parts of the firm, giving you the opportunity to grow within the Technology Risk team as well as other divisions within the firm. 

The ideal candidate should have experience integrating and tuning software security controls within continuous deployment SDLC, the ability to review, triage and remediate findings by interfacing with the Business Units, and help raise developer security awareness.

 

HOW YOU WILL FULFILL YOUR POTENTIAL

The IAM Security, Strategy, Architecture and Platforms sub-pillar, within the Identity and Access Management (IAM) pillar of the VIDM TechRisk team, is responsible for the identification of software security flaws, along with providing security assurance advice and guidance to engineers to help them manage application risks.

You will become a highly committed, trusted Risk Advisor with the discipline and interpersonal skills to work in a global environment, communicating the impact of technology risks and the approach to mitigation and acceptance. You will provide VIDM TechRisk risk assessment and advisory services to engineers as part of the Technology Risk function, while contributing directly to the team's strategic objectives.

 

IDEAL CANDIDATE

The ideal candidate is a technically grounded IAM specialist who combines engineering excellence with the judgment of a trusted risk advisor. They are equally comfortable reading a federation metadata file, debugging a Kerberos ticket flow, reviewing a NIST control mapping, and explaining identity risk to senior stakeholders.

You will become a highly committed, trusted Risk Advisor with the discipline and interpersonal skills to work in a global environment — communicating the impact of technology risks and the approach to mitigation and acceptance across Engineering.

 

JOB RESPONSIBILITIES

As part of the IAM Security, Strategy, Architecture and Platforms sub-pillar within the VIDM TechRisk team, you will:

  • Provide IAM risk advisory services to engineering teams, partnering on the design and architecture of secure identity, authentication, and authorization solutions.
  • Identify security flaws in IAM platforms and integrations, and provide security assurance advice and guidance to engineers to help them manage application risks.
  • Review, triage, and remediate findings by interfacing with Business Units and Engineering teams, and help raise developer security awareness around identity best practices.
  • Establish and maintain policies, standards, and controls to address information security risks across the IAM domain, in line with best practices and applicable regulations.
  • Conduct ongoing testing and monitoring to evaluate adoption of necessary engineering controls in the IAM space.

 

BASIC QUALIFICATIONS

  • Bachelor's degree in Computer Science, Information Security, or a related discipline or equivalent industry experience.

  • Hands-on experience designing, implementing, integrating, or assessing Identity and Access Management (IAM) systems in large, complex enterprise environments.

  • Working knowledge of industry-standard authentication and authorization protocols, including: OpenID Connect (OIDC), OAuth 2.0, SAML 2.0, Kerberos, WIMSE / SPIFFE (workload identity).

  • Practical experience with one or more of the following IAM technology stacks: Microsoft Entra ID and Active Directory, Heimdal Kerberosand MIT Kerberos, Ping Federate, Auth0, Okta.

  • Ability to review, triage, and remediate IAM-related security findings in partnership with engineering teams.

  • Strong interpersonal and communication skills to operate effectively in a global, cross-functional environment.

  • Fluent English.

 

Preferred Qualifications:

  • Experience integrating IAM controls into the SDLC and CI/CD pipelines, including automated control validation.
  • Familiarity with cryptographic primitives as applied to identity — token signing, key management, certificate-based authentication, and mTLS.
  • Understanding of Privileged Access Management (PAM), phishing-resistant MFA, Separation of Duties (SoD), and Zero Trust architectures.
  • Demonstrated interest or experience in the regulatory and controls aspects of IAM.
  • Genuine interest in Agentic AI authentication and authorization — identity for autonomous agents, delegated authority models, and scoped tokens for AI workloads.
  • Experience in hybrid and native public cloud IAM environments.
  • Industry certifications such as CISSP, CISM, CCSP, SANS GIAC (GSEC, GCIH, GPCS), or vendor-specific IAM certifications (Okta, Ping, Microsoft Identity).
  • Prior experience in financial services or another highly regulated industry.
  • Exposure to policy authoring, control design, or regulatory engagement within the IAM space.


 

ABOUT GOLDMAN SACHS

 
At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. 

 
We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers. 

 
We’re committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https://www.goldmansachs.com/careers/footer/disability-statement.html

 

 
© The Goldman Sachs Group, Inc., 2026. All rights reserved.
Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law.