#1 Job Board for tech industry in Europe

  • Job offers
  • TVM Security Analyst
    Security

    TVM Security Analyst

    Katowice
    Type of work
    Full-time
    Experience
    Mid
    Employment Type
    Permanent
    Operating mode
    Remote

    Tech stack

      Cybresecurity principles

      regular

      Problem-solving

      regular

      Cloud security GCP

      regular

      SIEM

      regular

      Wiz

      regular

      Rapid7

      regular

      SentinelOne

      regular

      CISSP

      regular

      CySA+

      regular

    Job description

    Online interview

    Appfire is seeking a highly-skilled, self-motivated, and dedicated Threat and Vulnerability Management (TVM) Security Analyst to join our Information Security team. In this role, you will be responsible for monitoring, assessing, and mitigating security risks within our organization, while supporting security incident and event management as a part of our SecOps team. You will play a critical role in identifying vulnerabilities, analyzing threats, and implementing robust security measures to safeguard our information systems.

    Appfire is a cloud-focused company, so you will be expected to have (preferred) or obtain the necessary skills to identify threats and vulnerabilities in the cloud with providers such as AWS, Azure, and GCP.

    You will be expected to engage in professional development to maintain continual growth in professional skills and knowledge essential to the position and thrive in a highly collaborative workplace and actively engage in helping create secure software applications. 


    Your everyday tasks will include:


    Threat Management:

    • Proactively identify, assess, and manage security threats to the organization’s information systems and networks.
    • Develop and implement threat management strategies, including threat hunting, analysis, and response.
    • Leverage threat intelligence sources to understand the evolving threat landscape and to support adjusting defenses accordingly.
    • Collaborate with cross-functional teams to evaluate and mitigate potential threats before they can impact the organization.
    • Ensure effective communication of threat information to relevant stakeholders and provide recommendations for mitigating actions


    Vulnerability Assessment:

    • Conduct regular vulnerability scans on the organization’s IT infrastructure to identify weaknesses.
    • Analyze scan results and security assessments to determine the risk level of identified vulnerabilities.
    • Working cross-functionally, prioritize vulnerabilities based on their potential impact and likelihood of exploitation.


    Incident Response:

    • Help develop and execute incident response plans.
    • Support the investigation of security events and incidents to determine their cause, impact, and necessary remediation steps.
    • Collaborate with IT and security teams to contain and mitigate threats.


    Risk Management:

    • Evaluate and recommend security controls and countermeasures to reduce risk.
    • Help develop security policies, procedures, and standards to ensure consistent protection across the organization.
    • Report on the organization’s security posture, providing insights and recommendations to senior management.


    Security Awareness and Training:

    • Contribute to the development and delivery of security awareness and work with teams across the organization to ensure security policies and procedures are understood and followed.


    Compliance and Governance:

    • Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, SOC2, GDPR, NIST).
    • Participate in security audits and assessments to verify compliance and identify areas for improvement.


    Skills and experience you'll need to succeed:

    • Education: A Bachelor’s degree in Cybersecurity, Information Technology, or a related field is preferred.
    • Experience: 3-5 years of experience in cybersecurity or a related field.
    • Technical Expertise: Strong knowledge of cybersecurity principles, network security, and threat management tools.
    • Analytical Skills: Ability to analyze and interpret complex data to identify security threats and vulnerabilities.
    • Problem-Solving: Strong problem-solving skills to develop and implement effective security solutions.
    • Communication: Excellent written and verbal communication skills to explain technical concepts to non-technical stakeholders.
    • Cloud Security Skills: Familiarity and hands-on experience with cloud security tools and technologies in AWS, Azure or GCP.
    • Certifications: Relevant certifications such as CISSP, CySA+, CEH, CompTIA Security+, or cloud-specific certifications are preferred.


    Tools and Technologies:

    • SIEM (Security Information and Event Management): Sumologic or equivalent. preferred
    • Vulnerability Scanners: Wiz, Rapid7, Burpsuite, Snyk, preferred.
    • Endpoint Protection: SentinelOne preferred.
    • Network Monitoring: AWS, Azure, GCP cloud security preferred.
    • Threat Intelligence Platforms: MISP, STIX/TAXII, OTX


    Beyond the resume skills that match our culture and this role:

    • You are dedicated to elevating client and co-worker experiences, knowing that exceptional work centers on serving others.
    • You adapt swiftly to new business demands, understanding that change fuels collective and individual growth.
    • You excel in communication, effectively connecting in remote/hybrid environments using tools like Slack, Zoom, and G Suite and through occasional in-person events.
    • You have exceptional coaching, mentoring, and people development skills.


    We offer:

    Financial benefits

    • Every Appfire employee is eligible for company equity.
    • Home Office allowance – 200 PLN/month to cover your electricity and internet bills.
    • MyBenefit Platform – 150 PLN/month to spend on shopping, culture and entertainment, Multisport, travel, and more.
    • Lunch Card – 300 PLN/month to spend on groceries/restaurants (excluding alcohol and other excise duties items).

    Skills development benefits

    • Access to the Appfire University learning platform – a hub of knowledge, interactive resources, and engaging instructor-led courses designed to fuel your learning journey with unparalleled depth and accessibility.
    • English language courses.

    PTO, health & well-being

    • 26 working days of paid annual leave, regardless of years of experience.
    • Wellness Days – additional time off each month to recharge and take care of yourself.
    • Private healthcare.
    • Life Insurance.

    Volunteering

    • 3 fully paid days each year to participate in Appfire Town, Appfire’s Corporate Social Responsibility (CSR) Program.

    Other

    • Indefinite Employment contract from day one, no trial periods.


    Check similar offers

    IT Security Specialist (SoD)

    New
    ERGO Technology & Services
    Undisclosed Salary
    Warszawa
    IAM
    English

    Release Manager with Cybersecurity

    New
    DCV Technologies
    Undisclosed Salary
    Kraków
    Python
    Jenkins
    CI/CD

    SOC Specialist

    New
    KMD Poland
    Undisclosed Salary
    Warszawa
    , Fully remote
    Fully remote
    SoC
    EDR/SIEM tools
    Microsoft Azure

    Cybersecurity Engineer - Data Protection

    New
    GPC Global Technology Center
    Undisclosed Salary
    Kraków
    Code42
    MS Purview
    OneTrust

    Threat Hunter/Cybersecurity Analyst

    New
    CQURE
    10K - 11K PLN
    Warszawa
    Cybersecurity
    English
    Azure