IT Security Incident Response Specialist

Cyclad works with top international companies to strengthen technology capabilities and deliver secure, innovative solutions supporting critical business operations. The current project is a Hybrid role within the transportation and infrastructure sector, specifically in manufacturing/industry, based in Warsaw, Poland.

• Strong commercial experience in IT Security Operations, Incident Response, or Cybersecurity
• Fluent Polish language skills, both written and spoken (minimum C2 level)
• Strong knowledge of cybersecurity threats and attack techniques including phishing, ransomware, DDoS, APTs, SQL Injection, and Cross-Site Scripting (XSS)
• Experience in malware detection and analysis using tools such as VirusTotal and Sandbox environments
• Hands-on experience with SIEM platforms and security event monitoring
• Practical experience with network monitoring and traffic analysis tools such as Wireshark and tcpdump
• Strong incident management skills covering full lifecycle from detection to resolution
• Experience performing root cause analysis and security risk assessments
• Ability to prioritize incidents based on severity, business impact, and urgency
• Experience collaborating with system administrators, infrastructure teams, and developers
• Strong analytical thinking and problem-solving skills
• Ability to work independently and take ownership of security incidents
• High attention to detail and commitment to security best practices
• Industry certifications such as GCIH, CISSP, CEH, CompTIA Security+, or equivalent cybersecurity training considered an advantage

• Monitor and supervise security systems including SIEM platforms, firewalls, IDS/IPS, and other security monitoring tools
• Identify, classify, and investigate security incidents to determine root causes and impact
• Respond to cybersecurity incidents and coordinate incident management activities
• Implement corrective actions and recommend improvements to security infrastructure
• Prepare detailed reports on incidents, investigations, and remediation
• Develop, maintain, and update incident response procedures and security playbooks
• Participate in development and testing of Disaster Recovery Plans (DRP) and Business Continuity Plans (BCP)
• Support and participate in internal and external security audits
• Collaborate with infrastructure, system administration, and development teams for incident resolution
• Contribute to continuous improvement initiatives related to cybersecurity operations and incident response processes

Only candidates with citizenship in the European Union and residence in Poland are eligible to apply.