Specjalista ds. Analiz Bezpieczeństwa

Job Overview: We are seeking a detail-oriented and experienced Security Analyst with a focus on documenting security findings, incidents, and risks within our organization. The ideal candidate will work closely with the security operations, incident response, and risk management teams to ensure that all security incidents, vulnerabilities, and findings are thoroughly documented, analyzed, and reported. This is a critical role to support the continuous improvement of our security posture and maintain compliance with industry standards and best practices.
Document Security Findings:
Accurately document findings from security assessments, audits, vulnerability scans, and incident investigations.
Maintain clear, concise, and comprehensive records of security incidents, including timelines, actions taken, and outcomes.
Produce and update detailed security reports for various stakeholders, including management, technical teams, and auditors.
Record and categorize security incidents such as breaches, malware infections, phishing attacks, and other cyber threats.
Collaborate with incident response teams to ensure accurate documentation of incident timelines, root cause analysis, and corrective actions.
Track security incidents through their lifecycle, ensuring proper follow-up and resolution.
Vulnerability and Risk Documentation:
Maintain a log of vulnerabilities, risks, and the status of remediation efforts.
Work closely with technical security teams, including network, application, and endpoint security specialists, to ensure that findings are correctly documented and acted upon.
Coordinate with risk management and compliance teams to align findings with organizational risk profiles and regulatory requirements.
Compliance and Audit Support:
Ensure that all security documentation complies with internal policies, regulatory requirements (e.g., Support audit activities by providing accurate and timely documentation of security findings and remediation efforts.
Contribute to the development of best practices for documenting security findings, incidents, and risks.
Identify areas for process improvement in the documentation, tracking, and reporting of security issues.
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field, or equivalent work experience.
Proven experience (2-5 years) in security analysis, incident response, or related IT security role.
Strong understanding of security concepts, including risk management, threat modeling, vulnerability management, and incident response.
Certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), or equivalent.
Experience with security information and event management (SIEM) systems (e.g., Familiarity with incident tracking and documentation in ITIL or other service management frameworks.
Proactive attitude and willingness to learn about emerging security threats and technologies.