Information Security Analyst

We’re BrainRocket — an international software development and digital solutions company driven by 1,300 talented professionals across Cyprus, Malta, and Portugal.
Here, everything moves at rocket speed: driving innovation, pioneering projects, and fast-tracking careers.
Together, we turn ideas into action—let’s get started!

We are looking for an Information Security Analyst who will join our team in the Cyprus office.

✅ Responsibilities:

 ✔ Development and Optimization of Access Management Processes

• Design and implement structured access management workflows that ensure efficiency, security, and compliance.
• Develop and maintain standardized processes for access requests, approvals, modifications, and removals.

 ✔ Access Governance & Compliance

• Establish and maintain access governance frameworks aligned with industry standards (ISO 27001, GDPR, SOC 2).
• Ensure access controls and policies support the principle of least privilege and segregation of duties (SoD).
• Define and enforce review cycles for access rights in collaboration with business and IT teams.

 ✔ Role-Based Access Control (RBAC) & Privileged Access Management (PAM)

• Develop and implement RBAC models, defining clear roles, permissions, and approval workflows.
• Maintain the RBAC registry, ensuring all role definitions are relevant and optimized.
• Support Privileged Access Management (PAM) initiatives, ensuring secure handling of privileged accounts.

 ✔ Access Reviews & Audits

• Conduct regular access reviews for critical systems, applications, and cloud environments.
• Identify and resolve access discrepancies, policy violations, and security risks.
• Provide necessary documentation and reports to support internal and external audits.

 ✔ Access Management Automation & Tooling

• Identify opportunities to automate access management workflows (e.g., access provisioning, deprovisioning, and role approvals).
• Work with IT and Security teams to integrate Okta with all business critical systems
• Optimize the approval and review processes through automation and self-service capabilities.

 ✔ Collaboration with Stakeholders

• Partner with HR, IT, and Security teams to ensure seamless integration of access management processes with business operations.
• Work closely with system owners to define role structures and ensure proper segregation of duties.
• Act as a subject matter expert on access management, providing training and guidance to internal teams.

 ✔ Defining and implement  KPIs & Metrics for Access Management (e.g., time to approve access, % of stale accounts, audit pass rate).

✅ Requirements:

✔ 1-2 years of experience in a security operations or IT security role.

✔ Understanding of information security principles, best practices.

✔ Excellent written and verbal communication skills are required.

✔The ability to convey complex security concepts clearly and understandably to employees at all levels.

✔ Strong analytical and problem-solving skills.

✔ Familiarity with security information and event management (SIEM) tools.

✅ Nice to have: 

✔ A Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field is a plus.

✔ Familiarity with regulatory requirements such as ISO27001, ISO27701, PCI DSS, GDPR, and others is a plus.

✅ We offer excellent benefits, including but not limited to:

✔️Snacks in the Office.

✔️24 days of vacation per year.

✔️Attractive office location and facilities.

✔️Medical insurance.

✔️Breakfasts and lunches in the office (partially paid by the Company).

✔️Languages classes (partially paid by the Company).

✔️Social Club of the Company.

Bold moves start here. Make yours. Apply today!