We are looking for a Person - true enthusiast os cybersecurity field. We are starting to build a center of cybersecurity competencies - dedicated for Europe.

Responsible for the definition, implementation and management of IT security policies, standards and baselines, particularly in the area of application security (SDLC, shift-left security) and cloud security.

Responsible for application and cloud security strategic planning, delivery and reporting. Provides security support for business projects delivering new/changed IT business solutions.

Responsibilities:

• Define and update IT security requirements (policies, standards, baselines), in particular in the area of application and cloud security.

• Define and support implementation of application security strategy taking into account cloud operating model and shift-left security.

• Develop and support implementation of cloud security strategy, governance and controls.

• Support delivery and operations of DevSecOps security testing tooling used by delivery teams.

• Support delivery and operations of CyberSecurity solutions protecting applications exposed to the Internet – in particular WAF and DDoS protection.

• Provide security support for business projects – in particular define IT security requirements, support secure design of solutions, check if requirements are implemented and organise security testing prior go-live.

• Support delivery teams and architects community with security advisory.

• Collaborate with other Security team members and contribute development of overall cyber security governance and controls.

• Help manage security incidents and provide a rapid response service in the event of a security breach.

• Monitor cyber security industry, identify new emerging threats and protection solutions.

Requirements:

• Minimum 5 years of Information Technology and 3 year of Security experience,

• Foundational knowledge of all security domains and controls (ISO 27001/2),

• Understanding and working experience of cloud security, application security, secure architecture, DevSecOps tooling.

• Master’s or Bachelor’s degree (Information Technology),

• Excellent English verbal and written communication skills,

• Excellent communication and interpersonal skills,

• Problem solving approach,

• Great work organizational skills.

• Security skills proven with one of industry recognised certifications: CISSP, CISM, CISA, CompTIA, Security+, GSEC;

• Cloud computing knowledge proven with CCSK, CCSP and CSP specific (in particular AWS) certifications,

• Hands on experience with cloud computing security tooling,

• Experience with DevSecOps security testing toolig (SAST, DAST, SCA, etc),

What we offer?

• Rate from 130zł netto/h on B2B contract (it depends on your experience and knowledge)

• Semi-annual evaluation meetings and a clearly defined career path and salary forecast

• A friendly Buddy to guide you through the onboarding further training and career opportunities

• Training possibilities for personal development after completing the onboarding period

• Space to implement your ideas

• Access to language learning platform eTutor

• Fitness card (Benefit Multisport)

• An open and casual company culture filled with internal events

• The opportunity to quickly develop professionally on projects in Europe and all over the world

• Great integration events :)

• Parking space

• Employee Referral Program