Cyber Security Analyst

We are hiring Cybersecurity Design and Control Analysts for a leading financial services client of our in Krakow, the role can be hybrid or fully remote. You will be responsible for monitoring, assessing, and improving security controls to protect an organization's IT infrastructure, networks, and data. This role involves ensuring compliance with security policies, identifying vulnerabilities, and collaborating with IT and security teams to mitigate risks.

Key Responsibilities:

• Assess and monitor security controls to ensure compliance with internal policies and regulatory requirements.
• Conduct security risk assessments and provide recommendations for improving security postures.
• Assist in the development and maintenance of security policies, procedures, and standards.
• Identify vulnerabilities and implement corrective measures to mitigate security risks.
• Monitor security logs and alerts for potential threats and respond to incidents as necessary.
• Collaborate with IT teams to ensure security best practices are integrated into system designs.
• Support audits, compliance reviews, and security assessments such as SOC 2, ISO 27001, NIST, and GDPR.
• Conduct security awareness training to educate employees on cybersecurity risks and best practices.
• Prepare reports and documentation on security control findings, incidents, and risk mitigation efforts.
• Stay up to date with evolving cybersecurity threats, technologies, and industry trends.

Qualifications & Skills:

• Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).
• 2+ years of experience in cybersecurity, IT security, risk management, or compliance.
• Familiarity with security frameworks such as NIST, ISO 27001, CIS Controls, or PCI-DSS.
• Experience with security tools such as SIEM, vulnerability scanners, firewalls, and endpoint protection.
• Knowledge of IDAM, VIAO, Seco is desirable.
• Knowledge of cloud security (AWS, Azure, GCP) is a plus.
• Strong analytical and problem-solving skills.
• Excellent communication and documentation skills.
• Relevant certifications (e.g., Security+, CISSP, CISM, CISA) are a plus.