Security SME - Cloud Security Analyst

Nasze wymagania: 5+ years of experience as a technical analyst in cybersecurity, focusing on security and compliance platforms (SaaS/On-prem). Hands-on knowledge of CNAPP, APSM, CSPM solutions, vulnerability scanning, compliance, and inventory tools. Proven experience with Agile/Scrum, including writing epics, features, and user stories. Familiarity with API integrations, microservices, Kubernetes, AWS/GCP cloud platforms, and DevOps processes. Preferred: Knowledge of security standards (PCI-DSS, CIS benchmarks) and relevant certifications (Public Cloud, Security Analyst). Mile widziane: Ability to thrive in a fast-paced environment with shifting priorities. Strong communication skills in English (both verbal and written). Proactive, collaborative, and self-driven mindset. Strong stakeholder management and problem-solving skills. O projekcie: Do you want to work on securing cloud environments in complex global architectures? This role might be exactly what you’re looking for! Sounds like your kind of challenge? Zakres obowiązków: We are looking for an experienced and motivated Cloud Security Analyst to join the Cloud-Native Application Protection Platform (CNAPP) team within our Cybersecurity Technology Engineering function. In this role, you will act as the critical link between business stakeholders (IT Service Owners, Cloud Service Teams, Platform Teams) and the CNAPP team to ensure security is embedded into internal processes. You will leverage your in-depth knowledge of CNAPP capabilities (e.g., vulnerability scanning, inventory, cloud security posture management), DevSecOps practices, and data lake integrations to translate business requirements into actionable user stories and technical specifications aligned with CNAPP milestones. • Gather and analyze requirements by collaborating with architects, cloud and container engineers, capability leads, and control owners. • Define and prioritize epics within Agile sprints, providing clear goals and sufficient technical details for execution. • Maintain traceability between business requirements, technical specifications, and implemented features. • Conduct workshops and demos with stakeholders to validate design approaches and agree on implementation details. • Create acceptance criteria and map necessary API integrations with downstream systems (e.g., reporting tools, data lakes). • Support CNAPP adoption by providing guidance and performing security and threat assessments for cloud-native platforms. Note: Detailed project information will be shared during the recruitment process. Oferujemy: Flexible cooperation model – choose the form that suits you best (B2B, employment contract, etc.) Hybrid work setup – 2 days on site per week Collaborative team culture – work alongside experienced professionals eager to share knowledge Continuous development – access to training platforms and growth opportunities Comprehensive benefits – including Interpolska Health Care, Multisport card, Warta Insurance, and more High quality equipment – laptop and essential software provided