.
Security Operations Analyst
  • Kraków
Security Operations Analyst
Kraków, Kraków, Lesser Poland Voivodeship, Polska
Cytiva Poland
13. 7. 2025
Informacje o stanowisku

technologies-expected :


  • Splunk
  • Sentinel
  • SIEM
  • QRadar
  • ArcSight
  • EDR/XDR

technologies-optional :


  • Python
  • PowerShell
  • Bash

about-project :


  • The Security Operations Analyst is responsible for monitoring, analyzing, and responding to security incidents to protect the organization’s digital assets and infrastructure. By proactively identifying threats and vulnerabilities, they play a critical role in minimizing risk and ensuring business continuity.
  • This position reports to the Senior Manager, Security Operations and is part of the Information Security Team which operates globally. This will be an on-site role, based at our office in Kraków, Poland working as part of a global team.

responsibilities :


  • Perform advanced security incident analysis and digital forensics to identify threats and mitigate risks.
  • Lead complex security investigations, including malware analysis, network traffic analysis, and endpoint detection.
  • Provide guidance to L1 and L2 SOC analysts, improving the quality of information coming into the Security Operations team.
  • Investigate and respond to escalated security incidents in a timely manner.
  • Collaborate with our engineering teams to optimize and fine-tune SIEM (e.g., Splunk, Microsoft Sentinel, Elastic Security) and other security tools.
  • Conduct proactive threat hunting to uncover hidden threats and vulnerabilities within the organization.
  • Partner with other IT and security teams to improve the organizations security posture.
  • Produce detailed reports and recommendations for remediation and security improvements, including hosting post incident reviews with wider technical teams.

requirements-expected :


  • Minimum 5+ years of experience in a corporate IT environment, with at least 2 years in an L3 or senior analyst role.
  • Deep knowledge of security frameworks such as MITRE ATT&CK, NIST, CIS Controls, and ISO 27001.
  • Experience with SIEM platforms (e.g., Splunk, Sentinel, QRadar, ArcSight) and EDR/XDR solutions. Vendor certifications are a plus.
  • Hands-on experience with incident response, threat hunting, and forensic investigations.
  • Familiarity with cloud security (AWS, Azure, Google Cloud) and modern attack techniques. Certifications such as OSCP, CEH are a plus.

benefits :


  • sharing the costs of sports activities
  • private medical care
  • sharing the costs of professional training & courses
  • life insurance
  • integration events
  • parking space for employees
  • extra social benefits
  • employee referral program

  • Praca Kraków
  • Chief security officer Kraków

    • Kraków - Oferty pracy w okolicznych lokalizacjach

    Odpowiedz na ogłoszenie
    Praca Kraków - Ciekawe oferty pracy w okolicy:
    Lead Cloud Security Analyst
    • Kraków
      HSBC Service Delivery (Polska) Sp. z o.o.
    Senior Director, Supply Operations - Adtech
    Business Analyst
    Praca w ochronie agent mobilny
    Dowódca zmiany obiekt biurowy
    Pracownik Ochrony
    Cybersecurity Operations Engineer
    Business Analyst (AI Productivity Analyst – Developer Tools)
    Cloud Security Consultant
    88 666
    8 117