IT Security Incident Response Specialist

Cyclad is an international consulting company specializing in IT/ICT sectors, providing outsourcing services in HR and IT across diverse industries including Banking, Aviation, Travel, Cybersecurity, and BPO.

• 5 years of experience in a similar position
• Strong commercial experience in IT Security Operations, Incident Response, or Cybersecurity
• Fluent Polish language skills (minimum C2 level)
• Strong knowledge of cybersecurity threats and attack techniques, including phishing, ransomware, DDoS, APTs, SQL Injection, and Cross-Site Scripting (XSS)
• Experience in malware detection and analysis using tools such as VirusTotal or Sandbox environments
• Hands-on experience with SIEM platforms and security event monitoring
• Practical experience using network monitoring and traffic analysis tools such as Wireshark and tcpdump
• Strong incident management skills covering full lifecycle from detection through resolution
• Experience performing root cause analysis and security risk assessments following incidents
• Ability to prioritize incidents based on severity, business impact, and urgency
• Experience collaborating with system administrators, infrastructure teams, and developers
• Strong analytical thinking and problem-solving skills
• Ability to work independently and take ownership of security incidents
• High attention to detail and commitment to security best practices

Nice to have:

• Experience with IDS/IPS

• Monitor and supervise security systems, including SIEM platforms, firewalls, IDS/IPS solutions, and other security monitoring tools
• Identify, classify, and investigate security incidents to determine root causes and potential impact
• Respond to cybersecurity incidents and coordinate incident management activities across relevant teams
• Implement corrective actions following incident investigations and recommend improvements to security infrastructure
• Prepare detailed reports regarding detected incidents, investigation findings, and remediation activities
• Develop, maintain, and update incident response procedures and security playbooks
• Participate in development and testing of Disaster Recovery Plans (DRP) and Business Continuity Plans (BCP)
• Support internal and external security audits
• Collaborate with infrastructure, system administration, and development teams to ensure effective incident resolution
• Contribute to continuous improvement initiatives related to cybersecurity operations and incident response processes