Job offers

Digital Forensics and Incident Response Specialist (Compromise Assessment & Rapid Response)

Warsaw

About Us

ERGO Technology & Services S.A. (ET&S S.A.) was established in January 2021 following the integration of ERGO Digital IT and Atena into one entity, leveraging both companies strengths and best practices.

ET&S S.A. belongs to ERGO Technology & Services Management AG, the technology holding of ERGO Group AG, supporting millions of internal and external customers with state-of-the-art IT solutions to everyday problems.

Discover how we implement AI, IoT, Voice Recognition, Big Data science, advanced mobile solutions, and more to accommodate our customers’ future needs worldwide.

Become a part of the digital revolution and apply to join us!

About the role

We are seeking for skilled and motivated Compromise Assessment Rapid Response Specialist. In your function, you will be a part of the CARR (Compromised Assessment & Rapid Response) Team, using Advanced Persistence Threat scanner to support ERGO Group from cyber threats by conducting digital investigations, analyzing security incidents, and providing incident response advisories. You will be responsible for managing scans, evidence acquisition, analysis of malware files, data breaches and unauthorized access. As a part of Global Incident Response Team, you will take part in the incident investigations and cooperate with CSIRT (Computer Security Incident Response Team), CTI (Cyber Threat Intelligence) and SOC (Security Operations Center) Global Teams. In case there is a need for follow-up activities and collection of evidence, you will be responsible for coordinating the work of different cross-functional teams.

 

How you will get the job done

  • scanning management for a Compromise Assessment and Rapid Response (CA&RR) tool for various customers in the ERGO group analysis of findings in the CA&RR tool (e.g. detecting backdoor, attackers’ tools, system misconfigurations, forensics artifacts or malicious activity)
  • developing rapid response playbooks
  • analysing malware files
  • defining threat remediation strategies for various customers in the ERGO group
  • creating custom YARA rulesets based on existing rules (i.e. YARA and SIGMA)
  • cooperating with technical teams as the SOC, CTI and CSIRT

Skills and experience you will need

  • fluent English
  • proven experience in the IT security area (e.g. hands-on SOC experience)
  • hands-on experience with hardware/software tools used in incident response, computer forensics, network security assessments
  • understanding of Windows internals and Active Directory environments
  • knowledge of Linux environment and Linux forensic skills
  • general to elevated understanding of computer networking concepts and protocols
  • basic understanding of scripting languages
  • ability to stay focused, keep calm and work under stress
  • ability to communicate with technical and business stakeholders
  • ability to work in a multinational and multicultural environment
  • being an innovator, creative, passionate, independent, and motivated to make a difference and help reducing cyber risk for ERGO Group

Nice to have

  • Bachelor / Master in IT / Business IT / Computer Science or similar education
  • certifications such as: Forensic or incident handler certification, e.g. GCFA, GCFE, GCIH, GX-FA or GRID, Security Management certification, e.g. Security+, CySA+ or equivalent

Interested in this position?

Apply now

Why work with us?

Let&s be fit

We realize that most of us need assistance to stay in shape and good health. That's why we provide every employee with a medical package coverage and co-finance a sports card. Additionally, we support a number of sports sections, and, you can even join our yoga team in the summer to practice yoga on the roof!

Let&s be balanced

Work-life balance is essential for us. That's why we offer our employees flexible working hours, pet-friendly offices, and if you would like to stay with your pet at home, a remote work environment. However, it won't be easy to stay at home with our in-office gaming room.

Let&s be smart

Staying up-to-date with all the new systems and technologies is not an easy task. That's why we have an extensive training and workshops offer, both in-house and with external providers. We organize hackathons and meetups, which are an excellent opportunity for our specialists to showcase their expertise. On top of that, we offer digital learning platforms, language courses, and a library.

Let&s be responsible

We love to see the difference we make together with our CSR projects. That's why we are always open to new projects, and we would love to include you in our next charity event!

Let&s be fun

At ET&S we love not only to work but also relax together. Sports events like company-wide bike race, or maybe a film marathon in our cinema room? Don't worry; we got it covered! Maybe you have a passion and would love to make an event out of it? Sure! We will help you!

Let&s be diverse

At ET&S we create a working environment free of prejudice and exclusion. Each member of our team can experience being valued, regardless of his or her gender, nationality, religious beliefs, disabilities, age, and sexual orientation or identity. Your wide range of qualifications, experiences, and ways of thinking are of great benefit to us!

Get to know us better

Check how it is working at ERGO Technology & Services

link to facebook

link to linkedin