Sr Analyst IT Security-Poland

 About Kennametal

With over 85 years as an industrial technology leader, Kennametal Inc. delivers productivity to customers through materials science, tooling and wear-resistant solutions. Customers across aerospace and defense, earthworks, energy, general engineering and transportation turn to Kennametal to help them manufacture with precision and efficiency. Learn more at  kennametal.com . Follow @Kennametal: Instagram, Facebook, LinkedIn and YouTube.

Senior Analyst, IT Security & Data Protection

Location: Poland (Hybrid)

About the Role

We are looking for a Senior Analyst, IT Security & Data Protection to support our global cybersecurity and privacy compliance programs. In this role, you will help ensure compliance with GDPR and cybersecurity frameworks while partnering with IT, Information Security, Legal, Procurement, and business stakeholders across the organization.

What You'll Do

• Own and coordinate Privacy Impact Assessments (PIAs / DPIAs) for new systems, vendors, tools, and processing activities, ensuring risks are identified, documented, and addressed prior to implementation.
• Support the review, maintenance, and operational application of Data Processing Agreements (DPAs) and Standard Contractual Clauses (SCCs) in partnership with Legal, Procurement, and IT.
• Maintain and oversee Records of Processing Activities (ROPA), supporting process owners and driving periodic review cycles to ensure accuracy and completeness.
• Evaluate systems and business processes for GDPR compliance, including lawful basis, purpose limitation, data minimization, retention, data subject rights, and access controls.
• Maintain and update privacy policies, standards, and procedures to reflect regulatory requirements and internal operating practices.
• Embed privacy‑by‑design and privacy‑by‑default principles into IT solutions and digital initiatives through proactive engagement with project teams.
• Support data protection incident and breach triage, fact‑finding, documentation, risk assessment support, and coordination with Information Security and Legal stakeholders.
• Manage the Data Privacy SharePoint and evidence repositories, ensuring documentation is current, well‑structured, and audit‑ready.
• Maintain GDPR training content and support awareness tracking and reporting.
  Support internal and external privacy audits, regulatory inquiries, and supervisory authority assessments.

What We're Looking For

• Bachelor's degree in Information Security, Information Systems, Computer Science, or a related field.
• 5+ years of experience in data privacy, cybersecurity compliance, GRC, risk management, or a related area.
• Strong knowledge of GDPR and data protection requirements.
• Experience with audits, risk assessments, and compliance programs.
• Excellent communication and stakeholder management skills.
• Professional proficiency in English.

Nice to Have

• Experience with ISO 27001, NIST, TISAX, Cyber Essentials, or similar frameworks.
• Experience in a global organization.
• CISSP, CISM, CRISC, ISO 27001, or related certifications.
• Familiarity with IT service management concepts (ITIL).
• Experience with enterprise risk management programs or GRC platforms.

Why Join Us?

• Work on global privacy and cybersecurity initiatives.
• Collaborate with international teams and stakeholders.
• Grow your expertise in a dynamic and evolving compliance environment.
• Competitive compensation, benefits, and flexible working arrangements.

If you're passionate about data protection, cybersecurity governance, and compliance, we'd love to hear from you.

 Kennametal Inc. is an Equal Employment Opportunity employer