Vulnerability Assessment Analyst

Join us, and safeguard digital landscapes with expert precision!

Krakow-based opportunity with the possibility to work 100% remotely!

As a Vulnerability Assessment Analyst, you will be working for our client, a prominent global financial institution. You will be part of the Cybersecurity Assessment and Testing function, responsible for identifying, assessing, and remediating security vulnerabilities across diverse IT environments, including on-premise, cloud, and third-party services. Your role involves collaborating with various technical and business stakeholders to ensure comprehensive vulnerability management and effective mitigation strategies, ultimately safeguarding the organization’s information and technology assets.

Your main responsibilities: Leading the review of newly discovered vulnerabilities to ensure accurate risk scoring

• Monitoring external threat feeds to identify newly reported risks
• Managing the review of assigned tickets, determining false positives, and providing remediation guidance
• Documenting remediation patterns and false positive identification in central tools
• Identifying critical operation paths for streamlined and efficient methods
• Maintaining operational documentation on reports and existing filters
• Taking ownership of Vulnerability Assessment key control and risk indicators
• Supporting routine governance submissions with commentary
• Participating in imminent threat review sessions
• Collaborating with the Global Head of Vulnerability Management and team members for information alignment
• Handling ad hoc tasks, including support to CSAT operational activities and escalations

You’re ideal for this role if you have:

• Strong understanding and application of the Vulnerability Management Lifecycle
• Ability to use multiple tools for data conveyance and future planning
• Creative and lateral thinking for skill uplift, process identification, and technological adjustments
• Insightful threat and risk recognition to support Cyber Security Operational models
• Proficiency in producing clear, concise reports for various stakeholders
• Practical experience with vulnerability scanning technologies (e.g., Nessus, Tenable.io)
• Knowledge of vulnerability assessments, mitigation approaches, and criticality ratings
• Understanding of Patch Management and cybersecurity principles
• Experience with MS Excel, SharePoint, Microsoft Teams, and Confluence
• Excellent organizational, administrative, analytical, and problem-solving skills
• High integrity, ethical values, and a proactive, independent approach
• Strong interpersonal skills for relationship building within and outside the organization
• Experience in Cyber Security Operations, Risk Management, and Governance within mid to large enterprises
• Minimum of 3-5 years’ experience in IT Security or similar roles
• Ability to work remotely

It is a strong plus if you have:

• Experience in engaging with business, technology, regional, and regulatory stakeholders
• Industry-recognized cybersecurity-related certifications (e.g., CISSP, CRISC, CISM)
• Proven track record of delivering activities on time to a high standard
• Flexible approach to shifting or competing priorities
• Experience working in international and diverse environments

#GETREADY  to meet with us!

We would like to meet you. If you are interested please apply and attach your CV in English or Polish, including a statement that you agree to our processing and storing of your personal data. You can always also apply by sending us an email at recruitment@itds.pl.

Internal number #5641