Security Analyst

About the Role

As a Security Analyst in our CDC (Cyber Defense Center) Department, you will play a crucial role in safeguarding our organization’s digital assets. Your responsibilities will span various aspects of cybersecurity, including threat detection, incident response, and vulnerability management. You’ll collaborate with cross-functional teams to enhance our security posture and ensure compliance with industry standards.

Duties and responsibilities:

Security Monitoring:

• Monitor security events and alerts using our SIEM (Security Information and Event Management) system.
• Investigate and analyze suspicious activities, anomalies, and potential threats.
Collaborate with the incident response team to address security incidents promptly.

Security Incidents:

• Respond to security incidents promptly and effectively.
• Coordinate incident handling, containment, eradication, and recovery efforts.
Document incident details and lessons learned for continuous improvement.

Incident Response:

• Develop and maintain incident response playbooks and procedures.
• Participate in tabletop exercises and real-time incident simulations.
Work closely with other teams (network, IT-Security, system administrators, etc.) during incident resolution.

Threat Hunting / Purple Team:

• Conduct proactive threat hunting exercises to identify potential vulnerabilities and attack vectors.
• Collaborate with the red team (offensive security) to simulate real-world attacks and assess our defenses.
Provide actionable insights to improve our security controls based on purple team findings.

Vulnerability Management:

• Regularly assess and prioritize vulnerabilities across our environment.
• Coordinate vulnerability scanning and patch management efforts.
Ensure timely remediation of critical vulnerabilities.

Penetration Testing:

• Collaborate with external penetration testers or conduct internal penetration tests.
• Identify vulnerabilities in our systems, applications, and network infrastructure.
Provide actionable recommendations to remediate identified weaknesses.

KPI / Compliance Monitoring:

• Define and track key performance indicators (KPIs) related to security operations.
• Monitor compliance with security policies, standards, and regulations.
Generate reports and metrics for management and stakeholders.

Professional competencies:

• Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).
• Relevant certifications (e.g., CISSP, CEH, CompTIA Security+, etc.) are highly desirable.
• Strong analytical skills and attention to detail.
• Experience with security tools, such as EDR, vulnerability scanning, SOAR, mail security, SIEM platforms, vulnerability scanners, and penetration testing frameworks.
• Knowledge of industry standards (ISO 27001, NIST, CIS Controls, etc.)
Proficiency in English

What we offer:

Become part of a corporate culture that actively promotes constructive exchanges between colleagues, customers and partners. Work with us to improve people's lives in the long term. We can offer you interesting, varied tasks and excellent opportunities for advancement, as well as an attractive salary with extensive benefits, all within a dynamic family-owned company.

Benefits:

• Active participation in challenging developmental projects
• Open communication at all levels of the hierarchy
• Personal and professional development
• Stable work in a friendly team
• Flexible working hours
• Possibility to work in the combined stationary and home-office modes
• Free foreign language courses
• Training and integration events
• Private medical care
• Group Insurance
Multisport Card

The controller of the personal data contained in your CV and provided when you create an account in our application is B. Braun Business Services Poland Sp. z o.o. in Nowy Tomysl, 14 Tysiąclecia St. We process this data on the basis of Article 22 of the Labour Code, and if you provide us with more data than required by the Labour Code, we process it on the basis of your consent. The purpose of this processing is to consider your application in the recruitment process.

To find out more, such as how long we will keep your personal data, you can read the full information clause here: Klauzula Informacyjna dla Kandydatów - Kariera w Naszej Firmie - B. Braun

You can contact our Data Protection Officer at any time regarding your personal data: iod_bbbspl@bbraun.com .