Senior CSIRT Specialist

About Us

ERGO Technology & Services S.A. (ET&S S.A.) was established in January 2021 following the integration of ERGO Digital IT and Atena into one entity, leveraging both companies’ strengths and best practices. As a part of ERGO Technology & Services Management AG, the technology holding of ERGO Group AG, we support millions of internal and external customers with state-of-the-art IT solutions to everyday problems.

In October 2022, ET&S S.A. expanded its scope of operations by creating a Business Services unit to contribute in a new way to the growth of ERGO’s business. Acting as a co-partner and internal consultant, it adds non-IT value and supports the development of the entire ERGO Group, currently offering skills in reporting, analysis, actuarial, and input management. We are committed to fostering innovation and meeting the evolving needs of our clients worldwide.

Discover how we implement AI, IoT, Voice Recognition, Big Data science, advanced mobile solutions, and business-related services to anticipate and address our customers’ future needs.

About the role

Cyber threats are constantly evolving, and we need experts to stay ahead. At ERGO Technology & Services, we’re looking for a Senior CSIRT Specialist to lead the security incident response process, support technical investigations, drive remediation, and strengthen our cyber resilience. You’ll play a key role in advancing ERGO’s security incident response maturity. If you’re passionate about protecting critical systems in a dynamic environment, we encourage you to apply.

How you will get the job done

• providing technical leadership for security incident investigations and technical response
• defining technical requirements and conducting evidence-acquisition tasks
• defining and application of containment strategies
• proposing and supporting rapid response actions
• driving remediation measures during a security incident
• presenting technical results and recommendations from an investigation
• tracking and managing the tasks performed by technical responders
• implementing improvements in the security incident lifecycle and introducing performance enhancements in response and resolution
• evaluating the security incident procedures and policies continuously
• creating technical overview
• action identification during the whole security incident management process
• supporting lead responders with technical results and data
• knowledge sharing and development of junior technical responders

Skills and experience you will need

• fluency in written and verbal English
• more than 5 years of hands-on experience with hardware/software tools used in incident response, computer forensics, network security assessments
• deep knowledge in the IT & IT security area including network protocols, security technologies, security architecture, cyber security threats and vulnerabilities
• proven experience in cyber security incident management including but not limited to ransomware attacks, data breaches, and infrastructure compromise.
• strong knowledge about the threat landscape including APT groups and attack tactics, techniques, and procedures.
• deep expertise in incident documentation, reporting, and transforming technical information into senior management language.
• understating of security risk and mitigation strategy for IT infrastructure
• strong knowledge of security processes, standards, and frameworks (SANS, NIST, etc.)
• strong ability to work in a multinational and complex environment
• ability to coordinate people in different locations and at different stakeholder levels
• ability to stay focused, keep calm and work under pressure
• excellent communication and interpersonal skills
• strong analytical and problem-solving skills

Nice to have

• Bachelor or Master's degree in IT/Business IT/Computer Science or a similar area
• CISSP/ GCFA/ GCIA/ GCFE/ GNFA/ GREM/ GCIH/ CISM or similar certification
• Scripting skills (Python, visual basic, bash, PowerShell, etc.)

Perks & Benefits

Let's be healthy

Medical package, sports card, and numerous sports sections – these are some of the benefits that help our employees stay in good shape.

Let's be balanced

Work-life balance is a key aspect of a healthy workplace. We offer our employees flexible working hours, a confidential employee assistant program, as well as the possibility of remote working. However, staying at home with our in-office gaming room and dog-friendly office in Warsaw won’t be easy.

Let's be smart

We organize numerous workshops and training courses. Thanks to hackathons and meetups, our specialists share their expertise with others. Additionally, we have a wide range of digital learning platforms and language courses.

Let's be responsible

Each year, we participate in several CSR activities, during which, together with our colleagues, we do our best to create a better future.

Let's be fun

Company-wide bike races and soccer matches, film marathons in our cinema room or other engaging team-building activities – we got it covered!

Let's be diverse

Every team member is valued, regardless of gender, nationality, religious beliefs, disability, age, and sexual orientation or identity. Your qualifications, experience, and mindset are our greatest benefit!