Requirements: English
Company: Corvil, a Pico company
Region: Warsaw , Masovian Voivodeship
Pico fuels the global capital markets community by providing exceptional market data services and customized managed infrastructure solutions.As financial industry experts at the center of markets and technology, we help our clients efficiently scale their business and quickly access markets. From infrastructure to connectivity, we support our clients through the full trading lifecycle.We are a global company headquartered in New York, with offices in Chicago, London, Singapore, Hong Kong and Tokyo.
Purpose of the role:
We are seeking a highly motivated Information Security Analyst to join our security operations team in Krakow. The successful candidate will be responsible for the daily monitoring and analysis of security events across a variety of systems, including email, SIEM, antivirus, IDS, and other security tools. You will play a key role in detecting and mitigating potential threats in a global environment, as well as staying up to date with emerging security vulnerabilities and trends.
The Information Security Analyst is responsible for understanding and providing appropriate surveillance for the critical cyber threats to Picos Information Systems. The Information Security Analyst will participate in the development and implementation of security policies and procedures, leverage Network Monitoring, Logging and Security Incident Event Management (SIEM) systems to produce alerts, audit data and reporting to detect suspicious activity and will analyze the threat data to help the Information Security team to determine what response is appropriate. This role is best suited for candidates who enjoy and have experience with computer, server, and network peripheral information security as well as candidates who excel at thinking critically to find ways to resolve security challenges. The position is focused on implementing and improving technology and procedures related to vulnerability management, device hardening and cyber security incident response. Looking for a self-starter with strong technical skills in the field.
Responsibilities and duties (include but not limited to)
- Monitoring, investigation and reporting of security incidents. Member and support of the Information Security Response Team
- Coordinate and perform internal as well as external penetration tests, application as well as network vulnerability assessment scans, and security risk assessment reviews.
- Ability to develop and analyze processes. Identify as well as detail information risk, governance and compliance concepts and principles. Monitor, evaluate, and advise on information security issues related to systems, data, network, and workflow to ensure security controls are appropriate and operating as intended.
- Identify potential security threats and vulnerabilities by staying current with emerging threats, attack vectors, and exploitation methods.
- Analyze identified threats or vulnerabilities and assess the associated risk based on the current threat landscape (analysis of CVEs and threat related feeds and information)
- Collaborate with the Incident Response team to address security incidents, performing triage, containment, and post-incident analysis
- Assist in the creation of security reports and documentation, supporting audit activities and compliance requirements.
- Work with a set of guidelines to help identify critical event data for additional analysis and escalation as appropriate
- Assist in the implementation and ongoing support of security systems.
- Work closely with IT and security teams to ensure proper integration and operation of security tools and technologies.
- Always observes all organizational procedures from a security risk perspective. Reports security risk concerns to appropriate leadership as defined in the incident response plan.
- Liaise with internal team members and external vendors in a professional manner while performing professional services, and/or security assessment activities.
- Performs other duties as assigned.
- Ability to multi-task and remain productive in a service-driven and results oriented environment.
- Demonstrated strong organizational, analytical, and problem-solving skills.
- Working knowledge of application & infrastructure security solutions (Firewalls, Intrusion Detection\Prevention Systems, Network Security, Password Management, Data Encryption, Vulnerability Scanners, SIEM Systems, and Access Control)
- Working knowledge of information security concepts, standards, and best practices.
- Assist with the design and implementation of disaster recovery and business continuity plans, procedures, audits, and enhancements
- Draft corrective action plans and coordinate remediation tasks.
- Assis