63 Vulnerability Assessment jobs in Ireland

McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve – we care.

What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow's health today, we want to hear from you.

We are seeking a Penetration Testing Engineer to join our Cybersecurity team. This role is pivotal in proactively identifying and mitigating security vulnerabilities across our applications, infrastructure, and cloud environments. The ideal candidate will have experience in offensive security, red teaming, and vulnerability exploitation, and will contribute to strengthening our security posture through rigorous testing and threat simulation.

Key Responsibilities:

• Penetration Testing
• Plan, execute, and report on penetration tests targeting web applications, APIs, mobile apps, infrastructure, and cloud environments.
• Simulate real-world attacks to assess the effectiveness of security controls and incident response capabilities.
• Develop customized exploits and tools to support advanced testing relevant to the engagement.
• Vulnerability Assessment & Exploitation:
• Conduct in-depth vulnerability assessments using both automated tools and manual techniques.
• Validate and exploit vulnerabilities to demonstrate potential impact and risk.
• Collaborate with Application teams & peer Cybersecurity groups to ensure timely remediation and risk mitigation.
• Project Management
• Scope and track compliance of applications & entities with pentest policy requirements.
• Scheduling and customer reach out to coordinate engagements with internal or external vendor resources.
• Reporting & Communication:
• Deliver detailed, actionable reports to technical and non-technical stakeholders.
• Present findings and recommendations to engineering, operations, and leadership teams.
• Maintain documentation of testing methodologies, tools, and results.
• Security Research & Innovation:
• Stay current with emerging threats, vulnerabilities, and offensive security techniques.
• Participate in threat modeling and contribute to the development of attack simulations.

Required / Basic Qualifications:

• 4+ years of hands-on experience in penetration testing, bug bounty, red teaming, or other relevant offensive security roles.
• Experience with Bug Bounty programs (HackerOne, BugCrowd)
• Proficiency in tools such as Burp Suite, Metasploit, Cobalt Strike, Nmap, and Kali Linux.
• Experience with cloud penetration testing (AWS, Azure, GCP).
• Familiarity with MITRE ATT&CK framework and threat emulation techniques.
• Understanding of secure coding practices and common vulnerabilities (e.g., OWASP Top 10).

Preferred Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, or a related field. Advanced certifications preferred (e.g., OSCP, OSCE, GPEN, GCPN, GXPN).
• Strong analytical and problem-solving abilities.
• Excellent written and verbal communication skills.
• Project and time management skills
• Experience in purple teaming and collaboration with defensive teams.
• Experience managing application security tools (SAST, DAST, SCA, WAF).

At McKesson, we care about the well-being of the patients and communities we serve, and that starts with caring for our people. That's why we have a Total Rewards package that includes comprehensive benefits to support physical, mental, and financial well-being. Our Total Rewards offerings serve the different needs of our diverse employee population and ensure they are the healthiest versions of themselves.

As part of Total Rewards, we are proud to offer a competitive compensation package at McKesson. This is determined by several factors, including performance, experience and skills, equity, regular job market evaluations, and geographical markets. The pay range shown below is aligned with McKesson's pay philosophy, and pay will always be compliant with any applicable regulations. In addition to base pay, other compensation, such as an annual bonus or long-term incentive opportunities may be offered.

Our Base Pay Range for this position
€53,300 - €88,800

You are as unique as your background, experience and point of view. Here, you'll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.

Job Description:
You are as unique as your background, experience and point of view. Here, you'll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.
Job Description:
Sun Life is a global Financial Services company. Our Security Testing team is responsible for detecting and exploiting weaknesses in Sun Life Applications by performing Penetration Tests with team members located in Waterford and around the globe. Right now, we are looking for people who are passionate about technology and Information Security and the important role it plays in keeping Sun Life Applications and client data safe to join us and experience what it's like to work in the exciting area of Penetration Testing.

Job Title:
Penetration Testing Intern
Core competencies/qualities:
Do you have a passion for technology and Information Security, enthusiasm and a willingness to learn? Do you enjoy solving problems? Trying different solutions until you reach the best result? Do you enjoy continuous learning and development? Are you familiar with and have an interest in the tools and techniques used by ethical hackers? Do you thrive collaborating with a team of diverse, inclusive professionals? If this sounds like you, please read on.

Overview of what we do:
Our Penetration Testing Security Analysts are part of the Information Security – Digital Security Threat Management team who provide a wide range of services in the Information Security space. From one day to the next you could be ethically hacking Sun Life's Web and Mobile applications, running vulnerability scans and analyzing results, performing retests of previous vulnerabilities, responding to queries related to vulnerabilities found during testing or researching and investigating new vulnerabilities and threats.

Responsibilities/tasks:
As a
Penetration Testing Intern
:

You will be tasked with participating in the below high-level services

• Perform penetration testing (Ethical Hacking) and vulnerability scanning activities for Sun Life's internal and external clients.
• Present reports and data on the findings from penetration testing to the various support teams responsible for these applications.
• Work with associated teams to help remediate the vulnerabilities found.
• Proactively research developments in the Information Security industry looking for opportunities to make improvements for the team and clients.

Job Category:
IT - Technology Services

Posting End Date:
30/09/2025

What makes a successful Penetration Testing Engineer ? Here are the top traits.

Conceptual

Proactive

Problem-Solver

Strategic

Technologically Savvy

Visual Thinker

Accomplish

Make a meaningful impact by using your problem-solving skills to push the boundaries of innovation in healthcare, while maintaining a healthy work-life balance.

Innovate

Foster a digital mindset to drive IT transformation across McKesson through our evolving data and technology tools.

Grow

Join a supportive environment where you can advance your career and develop both personally and professionally.

• Medical, Dental, and Vision
• Health Spending Accounts
• Flexible Spending Accounts

• 401(k) (U.S.)
• Pension (Canada)
• Employee Stock Purchase Plan

• Mental Health Programs
• Flexible Schedules
• Paid Time Off
• Wellness Program
• Education Reimbursement
• Volunteer Opportunities
• Flexible Work Environment

McKesson's commitment to diversity and inclusion starts at the top. We have also been named a Best Employer for Diversity by Forbes.

McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve – we care.

What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow's health today, we want to hear from you.

We are seeking a Penetration Testing Engineer to join our Cybersecurity team. This role is pivotal in proactively identifying and mitigating security vulnerabilities across our applications, infrastructure, and cloud environments. The ideal candidate will have experience in offensive security, red teaming, and vulnerability exploitation, and will contribute to strengthening our security posture through rigorous testing and threat simulation.

Key Responsibilities:

• Penetration Testing

• Plan, execute, and report on penetration tests targeting web applications, APIs, mobile apps, infrastructure, and cloud environments.

• Simulate real-world attacks to assess the effectiveness of security controls and incident response capabilities.

• Develop customized exploits and tools to support advanced testing relevant to the engagement.

• Vulnerability Assessment & Exploitation:

• Conduct in-depth vulnerability assessments using both automated tools and manual techniques.

• Validate and exploit vulnerabilities to demonstrate potential impact and risk.

• Collaborate with Application teams & peer Cybersecurity groups to ensure timely remediation and risk mitigation.

• Project Management

• Scope and track compliance of applications & entities with pentest policy requirements.

• Scheduling and customer reach out to coordinate engagements with internal or external vendor resources.

• Reporting & Communication:

• Deliver detailed, actionable reports to technical and non-technical stakeholders.

• Present findings and recommendations to engineering, operations, and leadership teams.

• Maintain documentation of testing methodologies, tools, and results.

• Security Research & Innovation:

• Stay current with emerging threats, vulnerabilities, and offensive security techniques.

• Participate in threat modeling and contribute to the development of attack simulations.

Required / Basic Qualifications:

• 4+ years of hands-on experience in penetration testing, bug bounty, red teaming, or other relevant offensive security roles.

• Experience with Bug Bounty programs (HackerOne, BugCrowd)

• Proficiencyin tools such as Burp Suite, Metasploit, Cobalt Strike, Nmap, and Kali Linux.

• Experience with cloud penetration testing (AWS, Azure, GCP).

• Familiarity with MITRE ATT&CK framework and threat emulation techniques.

• Understanding of secure coding practices and common vulnerabilities (e.g., OWASP Top 10).

.

Preferred Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, or a related field. Advanced certifications preferred (e.g., OSCP, OSCE, GPEN, GCPN, GXPN).

• Strong analytical and problem-solving abilities.

• Excellent written and verbal communication skills.

• Project and time management skills

• Experience in purple teaming and collaboration with defensive teams.

• Experience managing application security tools (SAST, DAST, SCA, WAF).

At McKesson, we care about the well-being of the patients and communities we serve, and that starts with caring for our people. That's why we have a Total Rewards package that includes comprehensive benefits to supportphysical, mental, and financial well-being. Our Total Rewards offerings serve the different needs of our diverse employee population and ensure they are the healthiest versions of themselves.

As part of Total Rewards, we are proud to offer a competitive compensation package at McKesson. This is determined by several factors, including performance, experience and skills, equity, regular job market evaluations, and geographical markets. The pay range shown below is aligned with McKesson's pay philosophy, and pay will always be compliant with any applicable regulations.In addition to base pay, other compensation, such as an annual bonus or long-term incentive opportunities may be offered.

Our Base Pay Range for this position

€53,300 - €88,800

About Us
We are the leader in human-centric cybersecurity. Half a million customers, including 87 of the Fortune 100, rely on Proofpoint to protect their organizations. We're driven by a mission to stay ahead of bad actors and safeguard the digital world. Join us in our pursuit to defend data and protect people.

How We Work

At Proofpoint, you'll be part of a global team that breaks barriers to redefine cybersecurity, guided by our BRAVE core values Bold in how we dream and innovate, Responsive to feedback, challenges, and opportunities, Accountable for results and best-in-class outcomes, Visionary in future-focused problem-solving, Exceptional in execution and impact.

Corporate Overview
Proofpoint is a leading cybersecurity company protecting organizations' greatest assets and biggest risks vulnerabilities in people. With an integrated suite of cloud-based solutions, Proofpoint helps companies around the world stop targeted threats, safeguard their data, and make their users more resilient against cyber-attacks. Leading organizations of all sizes, including more than half of the Fortune 1000, rely on Proofpoint for people-centric security and compliance solutions mitigating their most critical risks across email, the cloud, social media, and the web.

We are singularly devoted to helping our customers protect their greatest assets and biggest security risk their people. That's why we're a leader in next-generation cybersecurity. Protection Starts with People. #Proofpoint.

The Role
We are looking for a highly skilled and experienced Senior Security Engineer with a strong focus on Penetration Testing and Cloud Security Automation/DevSecOps to join our Security Engineering team.

In this role, you'll lead internal penetration testing efforts and red-team style assessments of critical infrastructure and applications, enabling secure-by-default infrastructure and secure software delivery pipelines. You will also apply your expertise in scripting, infrastructure-as-code (IaC), and cloud-native security practices to improve posture, visibility, and response.

Based in Cork, Ireland this key role will drive key Cloud/Data Centre security initiatives for Proofpoint Product portfolio. This is a high-impact role where you'll help define and execute both the offensive testing strategy and defensive automation roadmap. You'll be a go-to expert in uncovering vulnerabilities and building durable controls to prevent their exploitation at scale.

Key Responsibilities

• Penetration Testing & Offensive Security

• Design and execute targeted internal red team / penetration tests across infrastructure, SaaS, APIs, and cloud environments

• Perform manual and automated testing to simulate real-world attack scenarios, including lateral movement and privilege escalation

• Collaborate with engineering teams to remediate findings through secure architecture and configuration

• Perform application security testing (black-box, grey-box, and white-box), including SAST, DAST, and manual review

• Conduct red-team and purple-team exercises to simulate attacker behaviours and validate detection/resilience capabilities
• Support the development of exploit POCs, custom tooling, and automation pipelines for recurring testing scenarios
• Security Automation & DevSecOps Architect and build scalable cloud security automation pipelines from first principles, Develop and maintain Terraform modules, CI/CD integrations, and IaC security gates, Build and operate security data pipelines to ingest and analyse scan and detection data at scale
• Architect, build, and maintain security data pipelines to ingest, normalize, and analyse telemetry at scale
• Lead or contribute to threat modelling, risk assessments, and security architecture reviews.

What You Bring To The Team

• Extensive experience in Offensive Security, DevSecOps, security engineering roles
• Penetration testing experience across infrastructure, cloud services, and web applications
• Familiarity with tools such as Burp Suite, Metasploit, Nmap, OSINT, BloodHound, Prowler, Kube-hunter, or custom scripts
• Solid understanding of MITRE ATT&CK, OWASP Top 10, CWE, and cloud attack paths
• Thorough understanding of AWS, Azure, or GCP security models, IAM, and threat surfaces
• Proven ability to build cloud-native security automation using Terraform (IaC), CI/CD tools and pipelines, Python/Go/Bash
• Excellent communication and collaboration skills with the ability to drive cross-functional initiatives.

Beneficial Experience

• Experience with SIEMs, SOAR, or threat intel platforms
• Experience with container security (e.g., Docker, Kubernetes, Falco, Trivy)
• Exposure to managing Network IPS/IDS systems (such as Stamus/Suricata
• Certifications OSCP, OSWE, OSEP, CRTO, GXPN or equivalent are a plus

Why Proofpoint
Protecting people is at the heart of our award-winning lineup of cybersecurity solutions, and the people who work here are the key to our success. We're a customer-focused and a driven-to-win organization with leading-edge products. We are an inclusive, diverse, multinational company that believes in culture fit, but more importantly 'culture-add', and we strongly encourage people from all walks of life to apply.

We believe in hiring the best and the brightest to help cultivate our culture of collaboration and appreciation. Apply today and explore your future at Proofpoint

Why Proofpoint? At Proofpoint, we believe that an exceptional career experience includes a comprehensive compensation and benefits package. Here are just a few reasons you'll love working with us

• Competitive compensation
• Comprehensive benefits
• Learning & Development We are committed to the growth and development of our team members, offering a range of programs including leadership and professional development workshops, stretch project assignments, and mentoring opportunities to help employees reach their full potential.
• Flexible work environment (Remote options, hybrid schedules, flexible hours, etc.).
• Annual wellness and community outreach days
• Always on recognition for your contributions
• Global collaboration and networking opportunities

Our Culture

Our culture is rooted in values that inspire belonging, empower purpose and drive success-every day, for everyone. We encourage applications from individuals of all backgrounds, experiences, and perspectives. If you need accommodation during the application or interview process, please reach out to How to Apply Interested? Submit your application here https We can't wait to hear from you

1

body{font:16px Arial,Helvetica;}p{padding:10px;margin:0}

Security Analyst (OT)

Newbridge

(Open to public competition)

The Security Analyst will support the Technology Security Manager in the identification and ongoing monitoring of specific security risks within BnM OT and IT systems. The Security Analyst will liaise with the business and other IT functions and the wider business representatives to resolve issues, manage risk and to solve problems and deal with difficulties that arise with compliance of policy, process and other guidelines.

The main duties and responsibilities of the role will include the following:

• Development and enforcement of OT Security Controls/Policies to protect the Confidentiality, Integrity and Availability of BnM assets.
• Support annual external or Internal audits as required, reporting of risks, controls and/or standards that are in place.
• Keep abreast of information security frameworks and methodologies and other information security related best practice appropriate to the role.
• Provide analysis, assessment and trending of security log data from a large number of security devices.
• All employees are expected to co-operate fully with all provisions taken by the company for ensuring Health and Safety, and Welfare of co-employees and members of the public using the premises.
• Proactively participate in the Performance Management process to ensure delivery of own, and the wider team's, objectives.

The Person
The ideal candidate will possess the following qualification, skills, knowledge and attributes:

• 3-5 years industry experience.
• 3rd level qualification in Information Technology or equivalent experience in a related field.
• Strong communication and Business Analysis skills are essential for the role.
• Experience with CISSP/CEH/CompTIA an advantage.

The selection process for this role will include candidate screening from application.

If you wish to be considered simply click "Apply" on the job advert, on or before 8th October 2025.

BnM is an equal opportunities employer.

body{font:16px Arial,Helvetica;}p{padding:10px;margin:0}

Security Analyst (OT)

Newbridge

(Open to public competition)

The Security Analyst will support the Technology Security Manager in the identification and ongoing monitoring of specific security risks within BnM OT and IT systems. The Security Analyst will liaise with the business and other IT functions and the wider business representatives to resolve issues, manage risk and to solve problems and deal with difficulties that arise with compliance of policy, process and other guidelines.

The main duties and responsibilities of the role will include the following:

• Development and enforcement of OT Security Controls/Policies to protect the Confidentiality, Integrity and Availability of BnM assets.
• Support annual external or Internal audits as required, reporting of risks, controls and/or standards that are in place.
• Keep abreast of information security frameworks and methodologies and other information security related best practice appropriate to the role.
• Provide analysis, assessment and trending of security log data from a large number of security devices.
• All employees are expected to co-operate fully with all provisions taken by the company for ensuring Health and Safety, and Welfare of co-employees and members of the public using the premises.
• Proactively participate in the Performance Management process to ensure delivery of own, and the wider team's, objectives.

The Person:

The ideal candidate will possess the following qualification, skills, knowledge and attributes:

• 3-5 years industry experience.
• 3rd level qualification in Information Technology or equivalent experience in a related field.
• Strong communication and Business Analysis skills are essential for the role.
• Experience with CISSP/CEH/CompTIA an advantage.

The selection process for this role will include candidate screening from application.

If you wish to be considered simply click "Apply" on the job advert, on or before 8th October 2025.

BnM is an equal opportunities employer.

Our Client a leading Organisation in the Renewable Energy Sector are looking to attract a
Security Analyst (OT)
for their business. The successful candidate will support the Technology Security Manager in the identification and ongoing monitoring of specific security risks within the Organisation's OT and IT systems.

The Security Analyst will liaise with the business and other IT functions and the wider business representatives to resolve issues, manage risk and to solve problems and deal with difficulties that arise with compliance of policy, process and other guidelines

Key Responsibilities

• Development and enforcement of OT Security Controls/Policies to protect the Confidentiality, Integrity and availability of Company assets
• .Support annual External or Internal audits as required, reporting of risks, controls and/or standards that are in place
• Keep abreast of information security frameworks and methodologies and other information security related best practice appropriate to the role
• Provide analysis, assessment and trending of security log data from a large number of security devices
• All employees are expected to co-operate fully with all provisions taken by the company for ensuring Health and Safety, and Welfare of co-employees and members of the public using the premises
• Proactively participate in the Performance Management process to ensure delivery of own, and the wider team's, objectives

Key Requirements

The ideal candidate will possess the following qualification, skills, knowledge, and attributes

• 3-5 years industry experience
• 3rd level qualification in Information Technology or equivalent experience in a related field
• Strong communication and Business Analysis skills are essential for the role
• Experience with CISSP/CEH/CompTIA an advantage.

SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG's shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.

In the Americas, SMBC Group has a presence in the US, Canada, Ireland, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization's extensive global network. The Group's operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.

• This is a hybrid role, requiring the successful candidate to attend our Tralee office.
• Current hours of support begin at 7am through until 10pm Monday – Friday, working 7.5 hours each day on a shift rotation basis which changes each week

Role Description

SMBC are seeking a detail-oriented and proactive Security Analyst to join our Identity & Access Management (IAM) team. This role is responsible for protecting the integrity, confidentiality, and availability of information by ensuring appropriate security controls are enforced on company assets, while maintaining high standards of availability, resilience, and performance.

The Security Analyst will focus on managing Active Directory, creating and maintaining access packages, and analysing unstructured ServiceNow tickets to support access governance and security operations. The ideal candidate will have at least 2 years of experience in a similar role and a strong understanding of IAM principles. This position works closely with the IAM Engineering team to ensure secure and efficient access management across the organization.

The successful candidate will be process-oriented, possess strong communication skills, and be comfortable liaising with stakeholders at all levels. This role is part of a global support team within a multinational financial services company. Support hours run from 7:00 AM to 10:00 PM (Monday–Friday), with 7.5-hour shifts on a weekly rotation. Occasional planned Saturday work (approximately 5 times per year) and coverage during local bank holidays may be required to support global operations.

This role will report to the Team Lead of Security Analyst Team.

Role Objectives: Delivery

• Manage and maintain Active Directory user and group configurations.
• Design, implement, and manage access packages and entitlement workflows.
• Analyse and triage unstructured ServiceNow tickets related to access requests, incidents, and provisioning issues.
• Collaborate closely with the IAM Engineering team to support automation, policy enforcement, and system enhancements.
• Ensure compliance with internal security policies and external regulatory requirements.
• Participate in access reviews, audits, and remediation efforts.
• Document processes, procedures, and technical configurations for knowledge sharing and audit readiness.
• Contribute to process improvement initiatives (e.g., Lean) and assist with automation to reduce manual work.
• Provide an escalation point to IT Support teams for users with access and identification issues. Assist with audits of network and data access to ensure user rights assignments are applied correctly and kept in appropriate scope according to technology policy.

Qualifications And Skills

• 2+ years of experience in a Security Analyst or IAM-related role.
• Hands-on experience with Active Directory (in Entra & On Prem) and access management tools.
• Proficiency in ServiceNow, especially in analysing and resolving unstructured tickets.
• Familiarity with IAM concepts such as least privilege, RBAC, and access lifecycle management.
• Strong analytical and problem-solving skills.
• Have strong verbal and written communication skills.
• Ability to demonstrate a self-motivated and disciplined approach to learning and working.
• Demonstrate basic knowledge of polices and controls regarding data sharing and access restrictions between restricted parties.
• Willingness to learn and grow within a team environment
• Ability to work in a team environment and demonstrate leadership skills when needed.
• Possess a highly developed sense of personal accountability and follow-through with an ability to effectively prioritize multiple personal tasks, projects, and goals.

Additional Requirements
SMBC's employees participate in a hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process.

SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know

SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG's shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.

In the Americas, SMBC Group has a presence in the US, Canada, Ireland, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization's extensive global network. The Group's operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.

• This is a hybrid role, requiring the successful candidate to attend our Tralee office.
• Current hours of support begin at 7am through until 10pm Monday – Friday, working 7.5 hours each day on a shift rotation basis which changes each week

SMBC are seeking a detail-oriented and proactive Security Analyst to join our Identity & Access Management (IAM) team. This role is responsible for protecting the integrity, confidentiality, and availability of information by ensuring appropriate security controls are enforced on company assets, while maintaining high standards of availability, resilience, and performance.

The Security Analyst will focus on managing Active Directory, creating and maintaining access packages, and analysing unstructured ServiceNow tickets to support access governance and security operations. The ideal candidate will have at least 2 years of experience in a similar role and a strong understanding of IAM principles. This position works closely with the IAM Engineering team to ensure secure and efficient access management across the organization.

The successful candidate will be process-oriented, possess strong communication skills, and be comfortable liaising with stakeholders at all levels. This role is part of a global support team within a multinational financial services company. Support hours run from 7:00 AM to 10:00 PM (Monday–Friday), with 7.5-hour shifts on a weekly rotation. Occasional planned Saturday work (approximately 5 times per year) and coverage during local bank holidays may be required to support global operations.

This role will report to the Team Lead of Security Analyst Team.

• Manage and maintain Active Directory user and group configurations.
• Design, implement, and manage access packages and entitlement workflows.
• Analyse and triage unstructured ServiceNow tickets related to access requests, incidents, and provisioning issues.
• Collaborate closely with the IAM Engineering team to support automation, policy enforcement, and system enhancements.
• Ensure compliance with internal security policies and external regulatory requirements.
• Participate in access reviews, audits, and remediation efforts.
• Document processes, procedures, and technical configurations for knowledge sharing and audit readiness.
• Contribute to process improvement initiatives (e.g., Lean) and assist with automation to reduce manual work.
• Provide an escalation point to IT Support teams for users with access and identification issues. Assist with audits of network and data access to ensure user rights assignments are applied correctly and kept in appropriate scope according to technology policy.

• 2+ years of experience in a Security Analyst or IAM-related role.
• Hands-on experience with Active Directory (in Entra & On Prem) and access management tools.
• Proficiency in ServiceNow, especially in analysing and resolving unstructured tickets.
• Familiarity with IAM concepts such as least privilege, RBAC, and access lifecycle management.
• Strong analytical and problem-solving skills.
• Have strong verbal and written communication skills.
• Ability to demonstrate a self-motivated and disciplined approach to learning and working.
• Demonstrate basic knowledge of polices and controls regarding data sharing and access restrictions between restricted parties.
• Willingness to learn and grow within a team environment
• Ability to work in a team environment and demonstrate leadership skills when needed.
• Possess a highly developed sense of personal accountability and follow-through with an ability to effectively prioritize multiple personal tasks, projects, and goals.

SMBC's employees participate in a hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process.

SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know