122 250
18 528
Senior Cloud Vulnerability Scanning SME – Cybersecurity Miejsce pracy: Kraków Technologies we use Expected AWS Python Optional Microsoft Azure Operating system Linux About the project As a Senior Cloud Vulnerability Scanning SME, you will be working for our client, a leading global bank dedicated to cutting-edge digital transformation in cybersecurity. You will play a critical role in safeguarding financial ecosystems by leading vulnerability discovery and remediation efforts across cloud environments, enabling secure and resilient banking services worldwide. Join us and contribute to shaping the future of cybersecurity innovation and operational excellence. Unleash the Future of Cybersecurity — Drive Innovation in Cloud Vulnerability Management! Krakow-based opportunity with hybrid work model (6 visits per month in the office). Only candidates with an existing legal right to work in the European Union will be considered for this role. Your responsibilities Act as the primary interface between Vulnerability Capture and Cloud Support functions, ensuring seamless collaboration. Oversee and perform vulnerability scans across diverse public cloud platforms, maintaining industry standards. Triaging and resolving issues arising from scanning activities, incident reviews, and assessments. Communicate vulnerability findings effectively to stakeholders at all levels, translating technical insights into business impact. Configure, operate, and optimize vulnerability management tools, implementing improvements to reduce false positives and enhance detection accuracy. Develop and refine scanning policies, rulesets, and configurations to strengthen security posture continually. Drive continuous improvements in vulnerability detection efficacy, coverage, and operational processes. Monitor emerging trends, tools, and intelligence feeds to enhance security capabilities while balancing usability. Lead projects aimed at extending functionality and remediating gaps within security scanning solutions. Our requirements At least 4 years of experience operating vulnerability scanning tools within an enterprise cloud environment. Hands-on knowledge of security testing tools, vulnerability scanning, and exploit frameworks such as native cloud tooling, Tenable, Wiz, or similar. Familiarity with AWS and/or Google Cloud environments; knowledge of Alibaba or Azure is a plus. Experience managing and building cloud vulnerability scanning capabilities. Understanding of malware, emerging threats, attacks, and vulnerability management best practices. Knowledge of industry frameworks like CIS Controls, Threat Modelling, OWASP, NIST 800 Series, and CSA Cloud Security. Basic scripting or programming skills, preferably in Python. Strong critical thinking, analytical skills, and ability to communicate complex issues clearly. A collaborative team player with leadership skills and the ability to influence stakeholders, including executive teams. Resilience, self-motivation, and an aptitude for driving change and delivering results under pressure. Excellent spoken and written English (Fluent level). Optional Secure development or threat modelling certifications. Additional cloud platform knowledge (Azure, Alibaba). This is how we organize our work This is how we work agile scrum What we offer Stable and long-term cooperation with very good conditions Enhance your skills and develop your expertise in the financial industry Work on the most strategic projects available in the market Define your career roadmap and develop yourself in the best and fastest possible way by delivering strategic projects for different clients of ITDS over several years Participate in Social Events, training, and work in an international environment Access to attractive Medical Package Access to Multisport Program Access to Pluralsight Flexible hours Benefits sharing the costs of sports activities private medical care flexible working time fruits integration events corporate gym saving & investment scheme no dress code coffee / tea drinks christmas gifts birthday celebration sharing the costs of a streaming platform subscription access to 100 projects access to Pluralsight Recruitment stages first online interview second online interview GETREADY to meet with us! ITDS Business Consultants is involved in many various, innovative and professional IT projects for international companies in the financial industry in Europe. We offer an environment for professional, ambitious, and driven people. We would like to meet you. If you are interested please apply and attach your CV in English or Polish, including a statement that you agree to our processing and storing of your personal data. ITDS’s Whistleblower Procedure You can report violations in accordance with ITDS’s Whistleblower Procedure available here: ITDS Polska Sp. z o.o. ITDS supports financial service providers to take the next steps. We identify what’s possible, every day. Opportunities in the areas of technology, organization, and digitization. We see where banks, insurers, payment companies, or fintech can go and how they can get there. That’s why we want to stimulate you to ramp up your ambition. Forget what you perceive as restraints and step towards the new reality. ITDS in Poland - Pure player in new Technologies & Financial Industry 300 IT implementation professionals 20 clients in the Banking, Insurance, Payment & Fintech Industry ITDS excels in digital strategy delivery and implementation of best-of-breed lending solutions. ITDS has delivered successful strategic projects throughout Europe since 1998. We combine the experience we’ve accumulated with in-depth knowledge of technologies, business processes, and EU legislation to unlock new business opportunities. Informujemy, że administratorem danych jest ITDS z siedzibą w Warszawie, ul. Złota 59 (dalej jako "administrator"). Masz prawo do żądania dostępu do swoich danych osobowych, ich sprostowania, usunięcia lub ograniczenia przetwarzania, prawo do wniesienia sprzeciwu wobec przetwarzania, a także prawo do przenoszenia danych oraz wniesienia skargi do organu nadzorczego. Dane osobowe przetwarzane będą w celu realizacji procesu rekrutacji. Podanie danych w zakresie wynikającym z ustawy z dnia 26 czerwca 1974 r. Kodeks pracy jest obowiązkowe. W pozostałym zakresie podanie danych jest dobrowolne. Odmowa podania danych obowiązkowych może skutkować brakiem możliwości przeprowadzenia procesu rekrutacji. Administrator przetwarza dane obowiązkowe na podstawie ciążącego na nim obowiązku prawnego, zaś w zakresie danych dodatkowych podstawą przetwarzania jest zgoda. Dane osobowe będą przetwarzane do czasu zakończenia postępowania rekrutacyjnego i przez okres możliwości dochodzenia ewentualnych roszczeń, a w przypadku wyrażenia zgody na udział w przyszłych postępowaniach rekrutacyjnych - do czasu wycofania tej zgody. Zgoda na przetwarzanie danych osobowych może zostać wycofana w dowolnym momencie. Odbiorcą danych jest serwis Hello HR oraz inne podmioty, którym powierzyliśmy przetwarzanie danych w związku z rekrutacją. Naruszenia można zgłaszać zgodnie z Procedurą zgłaszania nieprawidłowości ITDS dostępną tutaj: