Job offers

IT Security Specialist (SDLC)

Warsaw

About Us

ERGO Technology & Services S.A. (ET&S S.A.) was established in January 2021 following the integration of ERGO Digital IT and Atena into one entity, leveraging both companies strengths and best practices.

ET&S S.A. belongs to ERGO Technology & Services Management AG, the technology holding of ERGO Group AG, supporting millions of internal and external customers with state-of-the-art IT solutions to everyday problems.

Discover how we implement AI, IoT, Voice Recognition, Big Data science, advanced mobile solutions, and more to accommodate our customers’ future needs worldwide.

Become a part of the digital revolution and apply to join us!

About the role 

IT Security Specialist role as a member of ITSO team is dedicated to tech-skilled person with understanding of cybersecurity threats along with a knowledge of cybersecurity frameworks (NIST, ISO27001) as well as IT risk management and IT service management standards based on ITIL. As a part of 1st Line of Defense, the team of IT Security Specialists will be responsible for many operational activities in IT Security topics organization. That brings a great opportunity to demonstrate wide scope of IT Sec knowledge, but also perfect chance for growth and to gain new experience in a dynamic and diverse employee oriented environment. Primary scope of ITSO team will be:

  • identification of vulnerabilities and performing preventive actions
  • day-to-day IT risk management
  • third party risk management
  • monitoring compliance and updating internal Cyber Security framework standards

How you will get the job done

  • managing the core process ‘Secure Software Development Lifecycle’ (SDLC), including:
    • identifying and evaluating risks and vulnerabilities of in-house and outsourced software developments
    • specifying, evaluating, and monitoring IT security guidelines, controls, and measures within the framework of the IT security architecture in the area of application development
    • ensuring responsibility for further development of the testing process regarding in-house and out-sourced software developments, including organization and evaluation of technical reviews. In particular defining of measures and appropriately monitoring their implementation to ensure static/dynamic application security testing as well as penetration testing
    • advising projects in the area of secure software development
  • creating security guidelines and instructions based on requirements from policies and standards
  • cooperating with multiple teams/software developers/project managers in verifying security standards in global projects
  • conducting IT Risk Assessments
  • cooperating with local 2nd Line of Defense team and further Global IT Security teams
  • improving IT security awareness in cooperation with security QA

Skills and experience you will need

  • fluency in English – in speaking and writing
  • University degree in IT, Cyber Security, or other IT related studies or proven experience in (IT) security
  • knowledge of NIST Framework
  • knowledge of network infrastructure
  • knowledge of Information Security risk management standards
  • excellent analytical thinking and problem-solving skills
  • perfect planning and organizational skills
  • attention to details
  • interest in various fields of IT
  • ability to work independently and remotely in a team (coordination, reliability, and communication)

Nice to have 

  • German language skills
  • cyber security scope certificates or online training courses (finished and ongoing)

Interested in this position?

Apply now

Why work with us?

Let&s be fit

We realize that most of us need assistance to stay in shape and good health. That's why we provide every employee with a medical package coverage and co-finance a sports card. Additionally, we support a number of sports sections, and, you can even join our yoga team in the summer to practice yoga on the roof!

Let&s be balanced

Work-life balance is essential for us. That's why we offer our employees flexible working hours, pet-friendly offices, and if you would like to stay with your pet at home, a remote work environment. However, it won't be easy to stay at home with our in-office gaming room.

Let&s be smart

Staying up-to-date with all the new systems and technologies is not an easy task. That's why we have an extensive training and workshops offer, both in-house and with external providers. We organize hackathons and meetups, which are an excellent opportunity for our specialists to showcase their expertise. On top of that, we offer digital learning platforms, language courses, and a library.

Let&s be responsible

We love to see the difference we make together with our CSR projects. That's why we are always open to new projects, and we would love to include you in our next charity event!

Let&s be fun

At ET&S we love not only to work but also relax together. Sports events like company-wide bike race, or maybe a film marathon in our cinema room? Don't worry; we got it covered! Maybe you have a passion and would love to make an event out of it? Sure! We will help you!

Let&s be diverse

At ET&S we create a working environment free of prejudice and exclusion. Each member of our team can experience being valued, regardless of his or her gender, nationality, religious beliefs, disabilities, age, and sexual orientation or identity. Your wide range of qualifications, experiences, and ways of thinking are of great benefit to us!

Get to know us better

Check how it is working at ERGO Technology & Services

link to facebook

link to linkedin