This key role will provide ongoing assessment for newly identified vulnerabilities and respond to business-driven queries regarding potential false positives, vulnerability findings, sensitive data types, and guidance on mitigation strategies.
The primary deliverable is ensuring all newly discovered vulnerabilities undergo the correct risk assessment process, enabling the company to present a clear risk profile to senior stakeholders via automated reporting.
responsibilities :
Assess all newly discovered vulnerabilities to confirm that the assigned risk score accurately reflects the risk to the company
Review repositories to identify sensitive information and secret data types
Monitor external threat feeds to detect new risks
Manage the review of assigned JIRA tickets, evaluate potential false positives or mitigation approaches, and provide expert advice on remediation
Document patterns for remediation and false positive identification in central tools and apply them across the organizations threat landscape
Support urgent threat review sessions and act as deputy chair when required
Collaborate with internal teams, including the Head of Vulnerability Management Operations, to align actions with the companys risk appetite and expected responses
Undertake ad hoc tasks, such as supporting CSAT operational activities, handling escalations, and addressing team requests
requirements-expected :
Minimum of 4 years of experience in application security
Proficiency in vulnerability management tools (e.g., Checkmarx, Netsparker), DAST & SAST, GitHub, Stash, and data platforms
Knowledge of OWASP, CVE, CWE, cryptography, secret management, and security protocols
Strong understanding of Python and Java
Analytical skills for timely risk evaluation of vulnerabilities
Self-motivation, organizational excellence, proactivity, and strong ethical values
Residing in Poland required
offered :
Great Place to Work since 2015 - it’s thanks to feedback from our workers that we get this special title and constantly implement new ideas
Employment stability - revenue of PLN 2.1BN, no debts, since 2006 on the market
We share the profit with Workers - over PLN 60M has already been allocated for this aim since 2022
Attractive benefits package - private healthcare, benefits cafeteria platform, car discounts and more
Comfortable workplace – class A offices or remote work
Dozens of fascinating projects for prestigious brands from all over the world – you can change them thanks to Job Changer application
PLN 1 000 000 per year for your ideas - with this amount, we support the passions and voluntary actions of our workers
Investment in your growth – meetups, webinars, training platform and technology blog – you choose
Fantastic atmosphere created by all Sii Power People
