.
Threat and Control Assessment Consultant
  • Kraków
Threat and Control Assessment Consultant
Kraków, Kraków, Lesser Poland Voivodeship, Polska
ITDS Polska Sp. z o.o.
28. 3. 2025
Informacje o stanowisku

about-project :


  • As a Threat and Control Assessment Consultant, you will be working for our client, a leading global financial institution. You will be part of a specialized team within the Cybersecurity Assessment and Testing function, responsible for identifying, assessing, and remediating security vulnerabilities across diverse IT environments, including on-premise, cloud, and third-party services. Your role involves collaborating with various technical and business stakeholders to ensure comprehensive threat modeling and control assessments, ultimately safeguarding the organizations information and technology assets.
  • Krakow - 6 days in the office per month

responsibilities :


  • Performing effective threat and control assessments of services within internal, external, and cloud estates
  • Liaising with developers, architects, and technical leads to identify control gaps
  • Understanding business requirements and evaluating potential solutions with technical recommendations
  • Being hands-on with technology and contributing to the design and development of projects with security recommendations
  • Identifying threats across applications, databases, networks, and other infrastructure components
  • Engaging with other Cybersecurity teams, senior management, and business members regarding potential security issues
  • Contributing to process, procedures, and tool identification and development
  • Staying updated with industry trends and best practices

requirements-expected :


  • Proven experience in general security concepts and principles
  • Hands-on experience with threat modeling and assessing vulnerabilities
  • Strong understanding of application design and architecture
  • Knowledge and experience with network, host, and application security practices
  • Good working knowledge of Cloud Service Providers such as AWS, GCP, or Azure
  • Strong understanding of the Software Development Life Cycle (SDLC) with a focus on security
  • Experience in continuous improvement and process optimization
  • Understanding of emerging technologies and corresponding security threats
  • Strong stakeholder management and communication skills
  • Ability to communicate technical gaps into business risk effectively

benefits :


  • sharing the costs of sports activities
  • private medical care
  • flexible working time
  • fruits
  • integration events
  • corporate gym
  • mobile phone available for private use
  • computer available for private use
  • saving & investment scheme
  • no dress code
  • coffee / tea
  • drinks
  • christmas gifts
  • birthday celebration
  • sharing the costs of a streaming platform subscription
  • access to +100 projects
  • access to Pluralsight

  • Praca Kraków

    • Kraków - Oferty pracy w okolicznych lokalizacjach

    Odpowiedz na ogłoszenie
    Praca Kraków - Ciekawe oferty pracy w okolicy:
    Digital Business Consultant
    control & payment analyst
    • Kraków
      Randstad Polska Sp. z o.o.
    Consultant / Senior Consultant (Global IT Controls) – CFO Advisory: IT Audit
    Process Control Engineer
    Executive Consultant - Financial Services - Credit Risk
    Process Control Engineer
    Process Control Engineer
    Zatrudnię ogrodnika/rolnika
    SAP Ariba Consultant
    Financial Accounting and Reporting Manager
    72 832
    6 921