Senior Security Analyst (m/f/d)

Location: Poland (Warsaw)

ASSA ABLOY Group is a global leader in access solutions, powering secure identities for millions worldwide. We foster a collaborative, inclusive, and dynamic work environment where innovation, learning, and professional growth are strongly encouraged.

What would you do as our Senior Security Analyst

Cyber Security evolves every day – and so do we. As a Senior Security Analyst, you play a central role in protecting people, operations, and innovation across an international region. Your work combines security operations, threat intelligence, resilience, and risk advisory, with real ownership and visible impact.

This role is ideal for someone who wants to influence not only how threats are detected and handled, but also how resilience, recovery, and continuity are embedded into enterprise IT services.

Your responsibilities

Lead, Detect, Respond

• Lead and coordinate investigations of security incidents and suspicious activities in Central Europe
• Take ownership during incident response, including containment, recovery, and post‑incident analysis
• Drive escalation, decision‑making, and stakeholder communication during high‑impact events
• Capture lessons learned and translate them into continuous security and resilience improvements

Drive Proactive Security & Vulnerability Management

• Plan, run, optimize, and interpret vulnerability assessments across infrastructure, networks, applications, and cloud environments
• Define and influence risk‑based remediation priorities in close collaboration with IT and DevOps teams
• Transform technical findings into clear, actionable guidance for engineering and leadership
• Continuously improve vulnerability and exposure management practices

Own Disaster Recovery & Service Continuity

• Own and champion Disaster Recovery (DR) and Service Continuity for enterprise IT and OT services
• Define, maintain, and improve DR standards, toolkits, recovery objectives, and control requirements
• Review infrastructure, architectures, and operational processes through a resilience and recovery lens
• Provide clear overviews on risk exposure, outage impact, and recovery readiness to IT and security leadership
• Drive improvements in DR preparedness, testing quality, and recovery maturity
• Act as the authoritative voice for DR governance across the organization

Transform Threat Intelligence into Action

• Monitor global threat intelligence feeds and emerging attacker techniques
• Develop and advance the Threat Intelligence framework for the Central Europe region
• Assess the relevance and impact of threats on the business and technology landscape
• Translate intelligence into strategic, operational, and tactical security decisions

Shape Compliance, Risk & Resilience

• Contribute actively to NIS2 alignment, security governance, and advisory discussions
• Participate in risk modelling, threat scenarios, and resilience trade‑off assessments
• Support application and infrastructure security assessments and risk reviews
• Represent security and resilience in cross‑functional initiatives and projects
• Support internal and external audits, assessments, and reviews

Strengthen Security Culture & Enablement

• Contribute to and enhance the global security training and awareness program
• Challenge existing approaches constructively and recommend pragmatic improvements
• Introduce automation, scripting, and modern security approaches where they add value

The profile we’re looking for

• A driven, senior analyst mindset with confidence to own topics and take responsibility
• 5+ years’ experience in enterprise security, resilience, disaster recovery, or service continuity environments
• Strong understanding of risk management, outages, recovery trade‑offs, and resilience design
• Comfortable reviewing architecture and infrastructure, not just documentation
• Experience working in large, complex, or globally distributed organisations
• Exposure to consultancy, advisory, or stakeholder‑facing roles is highly valued
• Interest or hands‑on experience with automation and scripting (e.g. Python, PowerShell)
• Strong communicator, able to challenge constructively and influence stakeholders without direct authority

Skills & experience

• Strong experience in vulnerability management, threat intelligence, security operations, or resilience
• Hands‑on expertise with tools such as Rapid7, Qualys, Tenable, Splunk, BitSight, or similar
• Ability to translate complex technical findings into decisive actions and leadership‑level insights
• Solid understanding of attacker behaviors, security architecture, and risk‑based security frameworks (e.g. ISO 27001 / ISO 27005, resilience and continuity standards)
• Fluency in English

Preferred qualifications

• Masters degree (or equivalent experience) in IT, Cybersecurity, or a related field
• Security or resilience certifications such as CISSP, CISM, CRISC, EDRP are a plus
• Working knowledge of ISO 27001, ISO 22301, GDPR, or comparable frameworks

We review applications regularly, so don’t wait  

We are building diverse, inclusive teams, and encourage applications from everyone -– from fresh talent to experienced professionals – so if you feel like this is the job for you and you see yourself working with us, just set up your profile and apply.  

To make sure your personal data is safe, we don’t look at any applications sent by email or post. If you have any questions about the role or the process, email Elżbieta Łątka-Likh, Talent Acquisition Business Partner, at elzbieta.latka-likh@assaabloy.com.

Let’s create a safer and more open world – together!

To find out more about us, visit www.assaabloy.com

We are the ASSA ABLOY Group
Our people have made us the global leader in access solutions. In return, we open doors for them wherever they go. With nearly 63,000 colleagues in more than 70 different countries, we help billions of people experience a more open world. Our innovations make all sorts of spaces – physical and virtual – safer, more secure, and easier to access. 

As an employer, we value results – not titles, or backgrounds. We empower our people to build their career around their aspirations and our ambitions – supporting them with regular feedback, training, and development opportunities. Our colleagues think broadly about where they can make the most impact, and we encourage them to grow their role locally, regionally, or even internationally.

As we welcome new people on board, it’s important to us to have diverse, inclusive teams, and we value different perspectives and experiences.