Informacje o stanowisku

technologies-expected :

• SAST
• DAST

• Nessus

• This key role will provide ongoing assessment for newly identified vulnerabilities and respond to business-driven queries regarding potential false positives, vulnerability findings, sensitive data types, and guidance on mitigation strategies.
• The primary deliverable is ensuring all newly discovered vulnerabilities undergo the correct risk assessment process, enabling the company to present a clear risk profile to senior stakeholders via automated reporting.

• Assess all newly discovered vulnerabilities to confirm that the assigned risk score accurately reflects the risk to the company
• Review repositories to identify sensitive information and secret data types
• Monitor external threat feeds to detect new risks
• Manage the review of assigned JIRA tickets, evaluate potential false positives or mitigation approaches, and provide expert advice on remediation
• Document patterns for remediation and false positive identification in central tools and apply them across the organizations threat landscape
• Support urgent threat review sessions and act as deputy chair when required
• Collaborate with internal teams, including the Head of Vulnerability Management Operations, to align actions with the companys risk appetite and expected responses
• Undertake ad hoc tasks, such as supporting CSAT operational activities, handling escalations, and addressing team requests

• Minimum of 4 years of experience in application security
• Proficiency in vulnerability management tools (e.g., Checkmarx, Netsparker), DAST & SAST, GitHub, Stash, and data platforms
• Knowledge of OWASP, CVE, CWE, cryptography, secret management, and security protocols
• Strong understanding of Python and Java
• Analytical skills for timely risk evaluation of vulnerabilities
• Self-motivation, organizational excellence, proactivity, and strong ethical values
• Residing in Poland required

• Great Place to Work since 2015 - it’s thanks to feedback from our workers that we get this special title and constantly implement new ideas
• Employment stability - revenue of PLN 2.1BN, no debts, since 2006 on the market
• We share the profit with Workers - over PLN 60M has already been allocated for this aim since 2022
• Attractive benefits package - private healthcare, benefits cafeteria platform, car discounts and more
• Comfortable workplace – class A offices or remote work
• Dozens of fascinating projects for prestigious brands from all over the world – you can change them thanks to Job Changer application
• PLN 1 000 000 per year for your ideas - with this amount, we support the passions and voluntary actions of our workers
• Investment in your growth – meetups, webinars, training platform and technology blog – you choose
• Fantastic atmosphere created by all Sii Power People

Rzeszów - Oferty pracy w okolicznych lokalizacjach