What sets us apart drives us ahead: between local roots and global relevance, we are a unique blend of tradition and future, of foundation and growth. We value bright minds and inspire them to grow with their ideas. Come and shape the future of finance with us.

 

 

 Senior Cyber Security Resilience Specialist

Warsaw | Up to 40% working from home possible | Reference 8163

 

 

Cyber Security Resilience Specialist is responsible for continuous improvement, and operational effectiveness of Cyber Security Resilience services, with a primary focus on File Integrity Monitoring (FIM), Secure Configuration Baselines (SCB), and Vulnerability Management (VM).

The role acts as a subject matter expert, driving the maturity of resilience controls, ensuring regulatory compliance, supporting audit readiness, and leading technical initiatives across the enterprise security landscape. The position partners with infrastructure, platform, engineering, risk, and compliance teams to ensure cyber resilience capabilities remain effective, scalable, and aligned with regulatory expectations. The individual is expected to provide technical expertise and contribute to the strategic evolution of security monitoring and vulnerability operations.

 

What You Will Do

  • Contribute to continuously improve Cyber Security Resilience services related to: File Integrity Monitoring (FIM), Secure Configuration Baselines (SCB), Vulnerability Management (VM)
  • Define operational standards, processes and KPI improvements for resilience controls.
  • Drive the adoption of cybersecurity best practices and regulatory requirements across the organization.
  • Ensure resilience controls remain aligned with evolving threat landscapes and business requirements.
  • Provide subject matter expertise for FIM, SCB, and Vulnerability Management platforms and processes.
  • Lead the deployment, optimization, and enhancement of security monitoring capabilities.
  • Drive continuous improvement initiatives to enhance data quality, monitoring coverage, and risk visibility.
  • Support platform lifecycle management, including upgrades, onboarding of new assets, and strategic enhancements.
  • Analyze vulnerability trends, exposure levels, and remediation effectiveness across the environment.
  • Engage directly with technology teams to prioritize and drive remediation activities.
  • Develop and maintain risk-based vulnerability management methodologies.
  • Produce executive and technical reporting for senior stakeholders.
  • Contribute to SCB implementation and governance based on CIS Benchmarks and industry best practices.
  • Assess baseline compliance across infrastructure and application environments.
  • Partner with engineering teams to improve overall configuration compliance posture.
  • Define and maintain FIM monitoring strategies, policies, and alerting thresholds.
  • Conduct advanced analysis of integrity monitoring events and identify relevant security risks.
  • Drive enhancements to monitoring coverage and detection capabilities.
  • Act as the primary technical contact for internal and external audits including: FINMA, DORA, Internal Audit, External Regulatory Reviews
  • Ensure continuous audit readiness through robust evidence management and control validation.
  • Interpret regulatory requirements and translate them into technical and operational controls.
  • Support risk assessments and control effectiveness reviews.

What You Bring

  • 5+ years of experience in Cyber Security, Infrastructure Security, or Security Engineering.
  • Strong hands-on experience in: Vulnerability Management, Secure Configuration Baselines (CIS Benchmarks), File Integrity Monitoring
  • Strong understanding of: Windows and Linux security, Cloud security principles, Security monitoring and detection engineering, Security automation and orchestration
  • Experience with enterprise-scale security control implementation and governance.
  • Experience within regulated industries such as Banking or Financial Services.
  • Knowledge of FINMA, DORA, NIST CSF, ISO 27001, CIS Controls, or similar frameworks.
  • Experience integrating security platforms through APIs and automation.
  • Exposure to SIEM, Cortex XSOAR, Elastic Stack and threat detection engineering practices.
  • Ability to translate complex technical issues into business-relevant insights.
  • Self-driven and capable of operating independently.
  • Strong ownership mindset and accountability.
  • Excellent stakeholder management and influencing skills.
  • Ability to lead initiatives across multiple teams and organizational boundaries.
  • Continuous improvement mindset with a focus on automation and operational excellence.
  • English – Fluent (mandatory)
  • German – Strong advantage

If you have any questions, check out our FAQ page or call Agnieszka Leputa at +48 538 562 645

 

For this vacancy we only accept direct applications.

 

Diversity is important to us. Therefore, we are looking to receiving applications regardless of any personal background. 

What We Offer

Flexible Work Models
We trust our employees and offer a work environment that is well-balanced, productive and fosters success. 

Personal Development
You will benefit from a culture of continuous learning and feedback. Your personal growth is supported through an extensive learning offering.

Agile Working Methods 
Whether through scrum or design thinking,
we solve exciting tasks together in teams.