CSIRT Security Engineer

In Cyclad we work with top international IT companies in order to boost their potential in delivering outstanding, cutting edge technologies that shape the world of the future. Currently, we are looking for a CSIRT Security Engineer. In this role, you will be responsible for ensuring the proper implementation of security and continuity policies, influencing business decisions, and strengthening the overall security posture in an agile environment.

Project information:

• Location: Warsaw (Hybrid work model, 1 day per week from the office)

• Remuneration: 200 - 210 PLN net + VAT per hour on B2B

• Type of employment: B2B contract

• Project language: English

Responsibilities:

• Ensure the deployment and enforcement of security and business continuity policies within the assigned tribe

• Act as a security advisor, influencing business and technical decisions in alignment with security objectives

• Ensure applications are properly onboarded into security tools (e.g., SAST, AVS, Pentests, SCA, ANON)

• Promote security by design and security by default principles in software development and architecture

• Support teams in troubleshooting and resolving security issues; lead cross-functional vulnerability remediation initiatives

• Participate in Agile ceremonies (Sprint Planning, Backlog Reviews) with a strong focus on security requirements

• Provide regular reporting on application security posture and vulnerabilities to IT Risk & Cyber Security stakeholders

• Collaborate with central IT Risk & Cyber Security teams and other Tribe Security Officers to share best practices

• Coordinate and follow up on business continuity tests and exercises

• Support IT risk identification, assessment, and definition of mitigation measures

• Monitor and track remediation plans and ensure timely execution

• Report and escalate IT risks based on severity levels

• Prepare and collect evidence for internal controls and audit processes

Requirements:

• Proven experience in cybersecurity, IT risk, or a similar security-related role

• Strong understanding of security governance, risk management, and compliance principles

• Experience working in Agile environments and collaborating with cross-functional teams

• Knowledge of application security practices and tools (e.g., SAST, SCA, penetration testing)

• Ability to assess risks, define mitigation strategies, and track remediation activities

• Strong analytical and problem-solving skills

• Excellent communication and stakeholder management skills

• Ability to influence both technical and business decisions

• Experience in preparing documentation for audits and internal controls

• Proactive mindset with a strong sense of ownership

We offer:

• Private medical care with dental care (covering 70% of costs). Family package option possible.

• Multisport card (also for an accompanying person).

• Life insurance.

• Work with talented engineers on large-scale, technically challenging projects.