Join us, and protect the future of global financial security!
Krakow-based opportunity with the possibility to work 100% remotely!
As a Senior Network Security Analyst, you will be working for our client, a leading global financial services organization, supporting their ongoing transformation program to build and integrate next-generation network security tools. Your role will focus on the integration of high-quality IDPS security policy alerts into the Global Security Centre (SOC) via the SIEM platform, ensuring robust cybersecurity measures are in place to protect the organization’s operations and customers.
Your main responsibilities: Collaborating with the IDPS Network Security Engineering team for policy development and tuning
- Analyzing and validating the quality and efficacy of IDPS policy alerts before SIEM ingestion
- Designing and implementing high-fidelity SIEM event/alert triggers based on tuned IDPS policy alerts
- Producing and maintaining documentation to support the establishment of enduring capabilities
- Performing gap analysis of current baseline policy against target policy and controls
- Providing consultation and subject matter expertise to the Cybersecurity teams
- Implementing and maintaining an effective KPI tracking process to demonstrate improvement and value
- Staying up to date on current cyber threats and vulnerabilities, especially network-related issues
- Ensuring business-aligned decisions and technology delivery in a compliant and effective manner
- Supporting regulatory and legislative compliance
You’re ideal for this role if you have:
- 3+ years’ experience working with Splunk and/or the Splunk Enterprise Security SIEM platform
- Experience working in an operational SOC and developing cyber-threat detection rules within a SIEM environment
- Demonstrable understanding of IDPS platforms and technologies (on-prem)
- Deep understanding of network protocols and traffic analysis (DNS/HTTP/SMB/FTP)
- Strong organizational and multitasking skills
- Effective communication and interpersonal skills
- Ability to build connections and work collaboratively across teams
- Technical cybersecurity qualifications (e.g., SANS GCIA)
- Willingness to continuously learn and share learnings with others
- Bachelor’s degree in IT, Computer Science, or a related field
It is a strong plus if you have:
- Knowledge and experience working with SOAR platforms (e.g., Phantom or Splunk SOAR)
- Knowledge of cloud-native IDPS offerings
- Experience with WAF solutions
- Proficiency in scripting skills like Python
- Experience in the financial services industry
#GETREADY to meet with us!
We would like to meet you. If you are interested please apply and attach your CV in English or Polish, including a statement that you agree to our processing and storing of your personal data. You can always also apply by sending us an email at recruitment@itds.pl.
Internal number #5545
Adres:
SKYLIGHT BUILDING | ZŁOTA 59 | 00-120 WARSZAWA
BUSINESS LINK GREEN2DAY BUILDING | SZCZYTNICKA 11| 50-382 WROCŁAW
Kontakt:
INFO@ITDS.PL
+48 883 373 832