Vulnerability Threat & Defect Remediation Analyst

Join us, and drive innovative cybersecurity solutions worldwide!

Krakow-based opportunity with the possibility to work 100% remotely!

As a Vulnerability Threat & Defect Remediation Analyst, you will be working for our client, a leading global organization dedicated to managing information security risks. This role involves ensuring the cybersecurity control environment is robust and effective, addressing identified vulnerabilities, and managing remediation activities. You will collaborate with various internal and external stakeholders to drive the timely closure of security gaps and mitigate risks across the organization.

Your main responsibilities:

• Collaborating with internal and external customers to drive remediation of gaps and ensure their closure
• Coordinating remediation activities for security-driven risks across multiple functions and regions
• Driving end-to-end remediation of Red Team findings
• Proactively tracking gaps identified during security assessments and third-party security reviews
• Maintaining and documenting remediation plans, metrics, and reports
• Managing escalations if remediation activities are not completed on time
• Working with the Metrics and Reporting team to establish effective security testing metrics
• Providing guidance on the remediation framework as needed
• Supporting the functional lead in developing and maintaining an efficient Remediation team
• Embedding a culture of continuous self-improvement and development within the team
• Mentoring and providing guidance for junior team members
• Preparing operational reports using data from various sources
• Reviewing automated reports for data variances and implementing action plans to resolve issues
• Supporting other operational and governance activities within CSAT as needed

You’re ideal for this role if you have:

• Bachelor’s degree and/or experience in IT security governance and operational processes
• Good understanding of cybersecurity risk and control frameworks and familiarity with information security standards and key cyber regulations
• Experience in risk and compliance management, vulnerability management, and security testing
• Ability to understand and assess threats, controls, and vulnerabilities and articulate these to both technical and business stakeholders
• One or more industry-recognized cybersecurity-related certifications (CEH preferred)
• Positive and professional attitude, team player, flexible and adaptable
• Confidence and responsibility in personal work and development
• Ability to produce clear and concise reports for targeted audiences, including senior management
• Fluent English
• Ability to build strong relationships and communicate complex issues with various stakeholders
• Proficiency in Microsoft Excel, including pivot tables and large data set manipulation
• Excellent organizational, administrative, analytical, and data management skills
• Proactive, independent, with a positive attitude, and ability to work remotely

It is a strong plus if you have:

• Experience in the Financial Services industry or global corporate service provider
• Familiarity with regulatory requirements and other risk and compliance matters
• Demonstrated ability to influence, persuade, and manage stakeholders effectively
• Experience with Power BI, ServiceNow, and Cyberport

#GETREADY  to meet with us!

We would like to meet you. If you are interested please apply and attach your CV in English or Polish, including a statement that you agree to our processing and storing of your personal data. You can always also apply by sending us an email at recruitment@itds.pl.

Internal number #5619