Requirements: English
Company: Appfire
Region: Wroclaw , Lower Silesian Voivodeship
Do you have a strong understanding of information security GRC operations? Appfire, the leading provider of Atlassian apps, is looking for a creative problem-solver and a self-starter to join our Information Security team. The GRC Security Analyst will handle diverse security-related tasks and issues for our rapidly growing company, including managing risk through a shared vision with Appfires business leaders. Youll be asked to keep up with the latest industry requirements and will assist in the identification of security risks and the associated execution of remediation and corrective action plans, ensuring we are following up with those steps previously agreed upon by the business. Additionally, youll participate in regular vendor reviews and ensure compliance with Appfire policy, as well as provide ISO 27001 and other audit support. If youre a highly organized, detail-oriented expert communicator, lets chat!Amplified by our partnership and strategic investment from private equity powerhouse Silversmith Capital Partners, a recent surge of marquee brand acquisitions, and an additional $100M investment from TA Associates, Appsfire is uniquely poised to accelerate our leadership position within the billion-dollar Atlassian app market. Appfire is looking for a GRC Security Analyst. You will report to one of our Managers and be a member of the Information Security. You can choose to work remotely from any location in Poland. Support our sales channels regarding prospect and customer security questions, assessments, and audits, including speaking to technical controls and their alternatives and appropriate risk mitigation. Identify, document, and track information security policy-related non-conformities and assist in developing and monitoring corrective action plans. Assist in identifying tracking information security risks, assessing impact, and tracking the execution of mitigation plans. Assist in tracking information security risk acceptances and exceptions and monitoring the execution of remediation plans. Track and ensure adequate and timely resolution to all audit and risk assessment findings/issues relating to information security. Assist in the monitoring of business continuity (BC) and disaster recovery (DR) testing. Support the annual review and update of information security-related policies and processes. Bachelors Degree in Computer Science, Information Security, Engineering, related curriculum, or equivalent experience. ~2+ years of experience working in information security risk and/or compliance roles. ~ Knowledge of common Information Security frameworks such as CIS, ISO 27001 SOC 2. ~ Prior experience with cloud-based security tools, technologies, and controls a plus (e.G, Amazon AWS, Azure, Heroku, GCP)~ You excel in communication, effectively connecting in remote/hybrid environments using tools like Slack, Zoom, and G Suite and through occasional in-person events. Home Office allowance 200 PLN/month to cover your electricity and internet bills. You can apply for a 50% tax-deductible cost on creative works (AKUP/IP tax-deductible costs). English language courses. Private healthcare. ~ Indefinite Employment contract from day one, no trial periods.