Job offers

Senior Digital Forensics and Incident Response Expert (DFIR)

Warsaw

About Us

ERGO Technology & Services S.A. (ET&S S.A.) was established in January 2021 following the integration of ERGO Digital IT and Atena into one entity, leveraging the strengths and best practices of both companies.

ET&S S.A. belongs to the ET&SM technology holding of ERGO Group AG, supporting millions of internal and external customers with state-of-the-art IT solutions to everyday problems. We are dedicated to bring a digital innovations to every aspect of the landscape of insurance. Discover how we are implementing AI, IoT, Voice Recognition, Big Data science, advanced mobile solutions and much more to accommodate our customers’ future needs around the globe. See how you can be a part of the digital revolution and apply to join us today!

How you will get the job done

The Cyber Security Incident Response Team (CSIRT) of the ERGO Group AG is responsible to conduct Group wide breach responses, forensic investigations and incident response. The team is equipped with an arsenal of Blue Team technologies to perform its activities. An industry-leading tool is to enable the ERGO Group AG to get a holistic view of current threads and to scan holistically for Indicators of Compromise and hunt down potential attackers. Furthermore, the technology will create new possibilities and capabilities to react to those threads for the whole ERGO Group.

In your function, you will be the responsible party for managing Major Security Incident and processes/procedures for the global CSIRT team. In this role as a lead incident responder, you are responsible for incident management and coordination with different workstreams and other CSIRT Specialists, manage reporting and communication with 3rd parties and higher management. Developing and utilizing metrics to demonstrate improvements and identify gaps in adherence of process is integral part of the responsibility.

 

In short your tasks will be

  • managing critical incident process and ensures procedures are followed
  • supporting remediation measures during incident
  • defining and applying of containment strategies
  • presenting results and recommendations for different levels i. e. for upper management, technical teams as the Security Operation Center (SOC), the ERGO Group Incident Response & Digital Forensics (DFIR) team
  • tracking escalations to other teams and works with other team leads / managers to drive escalations to resolution
  • tracking follow-up action items relating to incidents and working with other teams to drive these items to resolution
  • implementing improvements in the incident lifecycle and introducing performance enhancements in response and resolution
  • evaluating Incident procedures and policies on a continuous basis
  • ensuring communication of Incident policies and procedures to the supporting teams
  • producing leadership overview and weekly/monthly metrics package for review and action identification
  • developing of rapid response playbooks
  • supporting Service Management for customer satisfaction

Skills and experience you will need

  • fluent in English
  • proven experience in the IT security area
  • at least 8 years of hands-on experience with hardware/software tools used in incident response, computer forensics, network security assessments
  • understating of security risk and mitigation strategy for IT infrastructure
  • strong knowledge about security processes and frameworks (SANS, NIST, etc.)
  • experienced in management reporting and generating technical reports (Microsoft Office tools)
  • strong ability to work in a multinational and complex environment
  • ability to coordinate people in different locations and at different stakeholder levels
  • ability to present complex facts in a shot for different stakeholder levels
  • ability to stay focused, keep calm and work under high stress
  • must have strong understanding of basic network protocols, network devices, computer security devices, security architecture and system administration
  • being an innovator, creative, passionate, independent and motivated to make a difference and help reducing cyber risk for ERGO Group

Desired Certification

  • Bachelor / Master in IT / Business IT / Computer Science or similar education
  • Any of the below certifications is an extra advantage:
    • CISSP,
    • CISM,
    • GCIA,
    • GCIH

or equivalent

Interested in this position?

Apply now

Why work with us?

Let&s be fit

We realize that most of us need assistance to stay in shape and good health. That's why we provide every employee with a medical package coverage and co-finance a sports card. Additionally, we support a number of sports sections, and, you can even join our yoga team in the summer to practice yoga on the roof!

Let&s be balanced

Work-life balance is essential for us. That's why we offer our employees flexible working hours, pet-friendly offices, and if you would like to stay with your pet at home, a remote work environment. However, it won't be easy to stay at home with our in-office gaming room.

Let&s be smart

Staying up-to-date with all the new systems and technologies is not an easy task. That's why we have an extensive training and workshops offer, both in-house and with external providers. We organize hackathons and meetups, which are an excellent opportunity for our specialists to showcase their expertise. On top of that, we offer digital learning platforms, language courses, and a library.

Let&s be responsible

We love to see the difference we make together with our CSR projects. That's why we are always open to new projects, and we would love to include you in our next charity event!

Let&s be fun

At ET&S we love not only to work but also relax together. Sports events like company-wide bike race, or maybe a film marathon in our cinema room? Don't worry; we got it covered! Maybe you have a passion and would love to make an event out of it? Sure! We will help you!

Let&s be diverse

At ET&S we create a working environment free of prejudice and exclusion. Each member of our team can experience being valued, regardless of his or her gender, nationality, religious beliefs, disabilities, age, and sexual orientation or identity. Your wide range of qualifications, experiences, and ways of thinking are of great benefit to us!

Get to know us better

Check how it is working at ERGO Technology & Services

link to facebook

link to linkedin