We are working with a fast-growing technology company committed to protecting its digital assets and maintaining a secure environment for its customers and employees. We seek an experienced and highly motivated Security Analyst to join our Security Operations team.
In this role, you will be a key contributor to our security posture, working to proactively identify, analyze, and respond to security threats. You will report to the Detect & Respond Lead and collaborate closely with other security professionals, engineers, and stakeholders across the business.
responsibilities :
Alert Triage and Investigation: Analyze and investigate security alerts generated by various sources, including our SIEM, IDS/IPS, EDR solutions, and cloud security platforms. Determine the root cause of security events and escalate potential incidents.
Provide comprehensive support for security incident response activities, encompassing containment, eradication, recovery, and post-incident analysis.
Participate in incident response simulations and tabletop exercises to test and improve our incident response plans.
Vulnerability Management: Collaborate with security and engineering teams to identify, assess, and remediate vulnerabilities across our infrastructure and applications.
Security Monitoring: Proactively monitor security tools and systems for suspicious activity, anomalies, and potential threats. Escalate concerns and initiate appropriate response actions.
Threat Intelligence: Stay abreast of emerging threats, vulnerabilities, and attack techniques. Contribute to the development and maintenance of threat intelligence resources to enhance our security posture.
Collaboration: Work effectively with the Managed Security Service Provider (MSSP) to review alerts, investigate incidents, and ensure efficient incident handling. Build strong relationships with internal teams and external partners.
Documentation: Maintain comprehensive and up-to-date documentation of security incidents, investigations, procedures, and playbooks.
Continuous Improvement: Contribute to the continuous improvement of our security operations processes, procedures, and tools. Identify opportunities for automation and efficiency gains.
Root Cause Analysis: Perform thorough root cause analysis of security events to identify underlying vulnerabilities, system weaknesses, and process gaps. Develop recommendations to prevent future incidents.
Playbook Development: Create and maintain playbooks for responding to our top security threats. Participate in testing and refining these playbooks to ensure they are effective and up-to-date.
Compliance Support: Assist with maintaining compliance with relevant security standards and regulations, including PCI DSS and ISO 27001.
Threat Hunting: Proactively search for and identify malicious activity within our environment using various threat intelligence sources, security tools, and your analytical expertise.
requirements-expected :
Minimum of 4 years of experience in a security analyst role, preferably within a fast-paced technology environment.
Strong understanding of security principles, best practices, and common security architectures.
In-depth knowledge of common attack vectors, threat actor TTPs, and cyber kill chain methodologies.
Extensive experience with security monitoring tools (SIEM, IDS/IPS, EDR, etc.).
Solid understanding of networking concepts, protocols (TCP/IP, DNS, HTTP, etc.), and network security.
Proven experience with log analysis, interpretation, and correlation.
Hands-on experience with cloud security concepts, tools, and best practices.
Excellent analytical and problem-solving skills with a strong attention to detail.
Strong written and verbal communication skills with the ability to explain technical concepts to both technical and non-technical audiences.
Ability to work independently and as part of a collaborative team.
Ability to adapt to changing priorities and work effectively under pressure in a dynamic environment.
offered :
Knowledge sharing within our company.
Agile and friendly atmosphere, non-violent communication and full respect for diversity.
Possibility to choose from onsite (in Lodz, Poland) or hybrid work (meetings from time to time in our office in Łódź city centre).
Remuneration on B2B contract: 900- 1.250 PLN net/day or 15.000- 20.000 PLN gross on Employment Agreement (UoP).
Possibility to engage not only technically, but also have an impact on the small company culture.
