.
Threat and Control Assessment Consultant
  • Kraków
Threat and Control Assessment Consultant
Kraków, Kraków, Lesser Poland Voivodeship, Polska
ITDS Polska Sp. z o.o.
2. 9. 2024
Informacje o stanowisku

technologies-expected :


  • AWS
  • Google Cloud Platform
  • Microsoft Azure

about-project :


  • As a Threat and Control Assessment Consultant, you will be working for our client, a leading global financial institution. You will be part of a specialized team within the Cybersecurity Assessment and Testing function, responsible for identifying, assessing, and remediating security vulnerabilities across diverse IT environments, including on-premise, cloud, and third-party services. Your role involves collaborating with various technical and business stakeholders to ensure comprehensive threat modeling and control assessments, ultimately safeguarding the organization’s information and technology assets.
  • Join us, and transform cybersecurity challenges into solutions!
  • Krakow-based opportunity with the possibility to work 100% remotely!

responsibilities :


  • Performing effective threat and control assessments of services within internal, external, and cloud estates
  • Liaising with developers, architects, and technical leads to identify control gaps
  • Understanding business requirements and evaluating potential solutions with technical recommendations
  • Being hands-on with technology and contributing to the design and development of projects with security recommendations
  • Identifying threats across applications, databases, networks, and other infrastructure components
  • Engaging with other Cybersecurity teams, senior management, and business members regarding potential security issues
  • Contributing to process, procedures, and tool identification and development
  • Staying updated with industry trends and best practices

requirements-expected :


  • Proven experience in general security concepts and principles
  • Hands-on experience with threat modeling and assessing vulnerabilities
  • Strong understanding of application design and architecture
  • Knowledge and experience with network, host, and application security practices
  • Good working knowledge of Cloud Service Providers such as AWS, GCP, or Azure
  • Strong understanding of the Software Development Life Cycle (SDLC) with a focus on security
  • Experience in continuous improvement and process optimization
  • Understanding of emerging technologies and corresponding security threats
  • Strong stakeholder management and communication skills
  • Ability to communicate technical gaps into business risk effectively

benefits :


  • sharing the costs of sports activities
  • private medical care
  • remote work opportunities
  • flexible working time
  • fruits
  • integration events
  • corporate gym
  • mobile phone available for private use
  • computer available for private use
  • saving & investment scheme
  • no dress code
  • coffee / tea
  • drinks
  • christmas gifts
  • birthday celebration
  • sharing the costs of a streaming platform subscription
  • access to +100 projects
  • access to Pluralsight

  • Praca Kraków

    • Kraków - Oferty pracy w okolicznych lokalizacjach

    Odpowiedz na ogłoszenie
    Praca Kraków - Ciekawe oferty pracy w okolicy:
    Risk and Control Senior Specialist
    Third Party Security Assessment Specialist
    Threat Hunter
    Threat Prevention Engineer
    Cybersecurity Control Design and Oversight Analyst
    Vulnerability Assessment Analyst (Secrets Management)
    Third Party Security Assessment Specialist
    Risk and Control Senior Specialist
    Cybersecurity Control Design and Oversight Analyst
    111 387
    20 584