About us:

At Auctane, we are united by a passion to help sellers — wherever they are, however they operate — fulfill the promises they make to consumers. The Auctane mission is to fuel commerce through exceptional delivery. We make it possible for businesses to meet the ever rising expectations of their customers, and we make the world smaller and more accessible to consumers everywhere. Auctane brands enable hundreds of thousands of merchants to annually deliver billions of products — over $200 billion worth — to customers around the globe. And Auctane is just getting started.

Auctane is a team of shipping and software experts with a passion for helping merchants move their ideas, dreams and innovations around the globe. The Auctane family includes ShipStation, ShipWorks, ShipEngine, ShippingEasy, Stamps, Endicia, Metapack, Shipsi, GlobalPost, and Packlink. Our partners include Amazon, UPS, USPS, eBay, BigCommerce, Shopify, WooCommerce, and Walmart.

Our values:

About the role:

The mission of this role is to be a key contributor to the day to day operational InfoSec management. The role will be responsible for leading the detection and response of cyber security threats/incidents, as well as managing the vulnerability management process.

This role will play a key part in shaping the processes and ways of working to best ensure Auctan identifies and responds to threats and cyber attacks.

What will you be doing?

• Learn and train, to enhance knowledge of Security Orchestration and Automation. Working to review and enrich playbooks and see opportunities for automation efficiencies in our Security detection and response capabilities.
• Liaising with the Engineering teams on incident response, vulnerability management and remediation actions
• Responsible for providing technical expertise in the support of security incidents using a plethora of leading security tools, coupled with continuous learning and training
• Working with AWS & GCP Cloud-native security tooling such as GuardDuty, Security Hub, GCP Security Command Center to ensure a level of protection & monitoring of threats in Auctane Public Cloud envs.
• Following up on regular security reviews, vulnerability, risk assessments and audits utilising our CSMP tool Wiz and Endpoint vulnerability tool Crowdstrike.
• Building relationships with all staff to promote “Security by Design” throughout the Engineering Teams and wider business, including Infosec Training and Awareness
• Being part of the internal Infosec / cyber security incident process - investigate suspected attacks and help manage security incidents, including providing post-mortem analysis, identify causes, develop solutions and preventive measures
• Responding swiftly to new and emerging security threats and vulnerabilities, investigate suspected attacks and be an integral part of the Information security incident process

What are we looking for?

As a trusted authority within Information Security who can demonstrate and apply the following:

• Previous experience working in an Incident Response style role (internal or customer facing)
• General/ Basic Knowledge:
• IT (Mac, Windows OS’s)
• Public cloud Environments (AWS, GCP)
• Networking Protocols
• Awareness of MITRE ATT&CK framework in a Detect and Respond environment
• Entry level Experience of security tooling and technologies, including:
• EDR (Crowdstrike)
• Email Protection (email - Abnormal)
• Google Workspace
• Identify Providers (OKTA)
• GCP/AWS native security (Guard Duty, Security Hub)
• Knowledge of vulnerabilities, threats, attack methods and infection vectors with Cloud Environments.
• Able to balance the demands of delivering high quality and demanding timescales.
• Hold yourself accountable to delivering on your commitments.
• Have a “can-do” attitude and demonstrate a passion for new technology and learning and cross-team collaboration.

What will make you stand out?

• Knowledge of vulnerabilities, threats, attack methods and infection vectors with SDLC
• Experience in using automation to solve problems (Tines.io) and SIEM
• Involvement in the Scoping and coordination of 3rd Party Pen Tests
• General development knowledge:
• A desire to constantly challenge the norm

What do we offer?

• 🗓️ Annual Salary Review: We are reviewing the salaries of all our teams annually in order to evaluate an increase according to individual performance and the business results.
• 📦 99% discount on your personal shipment orders via Packlink.pro
• 💙 Up to 500 PLN/year to match your NGO donations! We are happy to support your initiatives by duplicating the amount donated.
• 😊 Volunteer day. You can take 1 day off per year in order to participate in volunteering activities! We will love to see some pictures in our slack!
• Referral Fee 🔗 We need your support in hiring top-class talent! We offer a referral bonus of 4-20K, depending on the complexity of the role and the hiring process.
• 👩‍⚕️We have an Employee Assistance Program with psychological assistance free of charge.
• ⚖️ Great work-life balance We offer a flexible work schedule and will do our best to adapt to your personal situation. Working in a fast-paced environment can be intense, but that doesn’t mean you shouldn’t enjoy your free time!
• 💜 An inclusive and upbeat work environment Leave your suit behind... we’re a t-shirt and converse kind of place! More importantly, our company culture promotes diversity and inclusion. The personality and opinions of each of our team members are important and valid, and we aim to offer all employees a safe environment where they can be themselves and thrive.
• 🌍 A cross-cultural atmosphere We are a truly international team of 20 nationalities that speak 10 languages. Our company language is English and all internal communication and company-wide meetings are in English.
• 🏟️ Company events Work hard, play hard! We do our best every day, even at our regular team-building events. 
• 📺 Internal and external training, free access to online training platforms such as Linkedin Learning
• 🏠 Possibility to work in a home-office using equipment provided by AUCTANE, or in our office prepared in accordance with all safety requirements.
• 📙 Personal Training Budget. Up to 7.600/ 3.500 PLN/year training budget (certifications, conferences attendance, etc.) to invest in your professional development. We want to help you improve your technical skills, feel involved in the product community, and develop your soft skills to lead teams and manage other stakeholders.
• 🌅 Up to 30 days of vacation per year (additional days are granted along with seniority at AUCTANE).
• 🗺️ Languages classes every week. Thirsty for knowledge? Learn a new language by joining our free English/Spanish/German classes. You can connect and enjoy taking up a new language or improving your current skills with one of our great instructors.
• 🏥 Free private medical insurance.
• 📄 Attractive life insurance.
• 🏐 Co-financing for sports and recreational activities
• 🏐 Gym membership co-financing 
• 🏢 A nice Office in Zielona Gora (free drinks, snacks…)

Do you want to know a little bit more about the team? Please, don’t hesitate to reach out to Amazing Auctane-PL and our Instagram