As a Technical/Legal Analyst, you will be working for our client, a leading financial institution focused on ensuring robust and compliant data access controls. In this role, you will be at the forefront of translating complex regulatory requirements into actionable policies, ensuring alignment with organizational standards and industry best practices. You will collaborate with cross-functional teams to develop and maintain policy-as-code frameworks that enhance data security and compliance across multiple platforms.
Join us, and make a difference in regulatory compliance!
Krakow-based opportunity with the possibility to work 80% remotely!
responsibilities :
Interpreting legal, regulatory, and organizational policies to translate them into executable policies using Rego or other policy-as-code frameworks
Collaborating with legal, compliance, and IT teams to ensure accurate implementation of data access and entitlement policies
Developing and maintaining policy-as-code scripts that enforce data governance and security protocols
Continuously monitoring and updating policies to reflect changes in regulations
Integrating policy checks into deployment pipelines using CI/CD tools
Ensuring data security practices, such as encryption and access control, are consistently applied
Testing and validating policies to ensure compliance with regulatory requirements
Communicating policy requirements and updates to non-technical stakeholders
Identifying and addressing gaps in current policy frameworks
Assisting in audits and reviews related to data access and security compliance
requirements-expected :
3+ years of experience in policy management, compliance, or data governance
Proven experience with policy-as-code frameworks, particularly Open Policy Agent (OPA) and Rego
Strong understanding of regulatory requirements in the banking sector, such as GDPR, PCI-DSS, and SOX
Hands-on experience in writing and testing policies
Familiarity with cloud platforms like GCP, Azure, or Alibaba Cloud and their security models
Experience with CI/CD tools and integrating policy checks into deployment pipelines
Solid understanding of data security practices, including encryption and access control
Excellent analytical and problem-solving skills
Strong communication skills for collaboration across teams
Detail-oriented mindset with a focus on accuracy and compliance
benefits :
sharing the costs of sports activities
private medical care
remote work opportunities
flexible working time
fruits
integration events
corporate gym
mobile phone available for private use
computer available for private use
saving & investment scheme
no dress code
coffee / tea
drinks
christmas gifts
birthday celebration
sharing the costs of a streaming platform subscription