IAM Security Risk Consultant

Start Date: ASAP / Within 1 Month / Flexible
Work Model: 100% remote 
Contract Type: B2B (140-160 PLN/h + VAT)

We are looking for a Security Risk Analyst to support a migration from hardware-based OTP tokens to software-based authentication tokens.
The engagement focuses on identifying, assessing, and documenting security and operational risks related to the migration, without involvement in solution design or implementation. The consultant will work with existing documentation and stakeholders to evaluate the current and target authentication models and produce a structured risk analysis report.

Expectations

• Experience in security risk analysis, cybersecurity consulting, IAM, or GRC-related roles.

• Practical understanding of MFA, OTP tokens, and authentication mechanisms.

• Ability to explain security risks at a conceptual level without deep technical implementation.

• Familiarity with hardware vs. software authentication models and their security trade-offs.

• Experience delivering formal risk or security assessment documentation.

Responsibilities

• Perform a security and risk assessment of the hardware-to-software token migration.

• Identify risks related to authentication, key handling, user devices, and migration processes.

• Assess potential impacts, likelihoods, and existing or recommended mitigations.

• Document findings in a clear, structured risk analysis report suitable for stakeholders.

• Collaborate with security, IAM, and business representatives to validate assumptions.

What We Offer

• Medicover healthcare package

• Multisport card

• Access to an e-learning platform

• Group life insurance