[GPP] Security Analyst

Company Description

We are Software Mind, an awesome team of engineers who are ready to ramp up any top-notch company’s projects! Our aim? To always be one step ahead. Become part of a multicultural company in constant growth with an excellent work environment certified by Great Place To Work!

Job Description

Project – the aim you’ll have:

One from the North American company that has helped leading North American asset intensive companies make the right financial decisions. We are seeking a mid tier security analyst to join our team and help us protect our network and systems from cyber threats. You will be responsible for monitoring, detecting, analyzing, and responding to security incidents using various tools and platforms. You will also perform vulnerability assessments and remediation activities to ensure compliance with security standards and best practices.

As a member of the security team, the Security Analyst provides assistance in protecting our network and systems from cyber threats. The Security Analyst is responsible for using various tools and techniques to detect, analyze, and respond to security incidents, as well as for conducting documentation and process creation.

Position – how you’ll contribute:

• Monitoring and analyzing security events and alerts from various security systems, such as firewalls, intrusion detection and prevention systems, and security information and event management (SIEM) systems. 
• Manage and maintain tooling and frameworks, especially with end point detection and end point solutions.
• Incident response and handling. Work with CloudOps and Dev teams to resolve configuration issues in the cloud and systems.
• Implementation and maintenance of security controls, policies, and procedures (Cloud security posture management, Identity Protection, Zero Trust Frameworks) .
• Fine tuning logs and alerts .
• Help to formalize and document existing information security processes in Confluence
• Conduct quarterly access review activities and support other SOC2 calendar activities to support the audit lifecycle.
• Support compliance audits and assessments, such as SOC2, NIST and ISO 27001, by providing documentation and evidence of compliance.
• Help implement and standardize Security responses to security questionnaires using existing and new technologies.
• Building out metrics and KPIs

Qualifications

Expectations – the experience you need:

• A minimum of three years of experience in security operations and analysis 
• Robust understanding of security frameworks and methodologies 
• An advanced understanding of information security concepts, such as confidentiality, integrity, and availability, and common security controls. 
• At least three years of experience with security technologies, such as firewalls, intrusion detection and prevention systems, and SIEM systems. 
• Experience with Crowdstrike Falcon Complete
• Understanding of networking concepts and protocols. 
• Strong analytical and problem-solving skills.
• Strong o365 skills 
• Excellent communication and interpersonal skills.
• Experience with ticketing systems such as Jira and Salesforce

Additional skills – the edge you have:

• Hands-on experience with the following tools and platforms: Qualys vulnerability suite, Rapid7 SIEM

Additional Information

Our offer – professional development, personal growth:

• Flexible employment and remote work  
• International projects with leading global clients 
• International business trips  
• Non-corporate atmosphere 
• Internal & external training 
• Private healthcare and insurance  
• Multisport card 
• Well-being initiatives 

Position at: Software Mind Poland