PROJECT INFORMATION: Industry: banking Work model: Hybrid (3/week in Gdynia) Remuneration: up to 195 PLN/h netto + VAT (B2B) Summary: This role is primarily responsible for leading remediation efforts in the cybersecurity domain, ensuring that security vulnerabilities are effectively assessed, communicated, and resolved throughout the organization.Main Responsibilities: Lead the identification of remediation gaps and drive strategic resolution initiatives across the organization. Provide expert guidance to stakeholders on remediation strategies, ensuring alignment with security best practices and regulatory expectations. Analyze complex scanning results to define actionable steps that reduce risk exposure for the bank. Collaborate cross-functionally with accountable and responsible remediation owners to ensure timely and effective execution. Ensure security findings are clearly understood and that remediation efforts are progressing at an appropriate pace. Demonstrate autonomy and ownership in task execution, maintaining a proactive governance approach and influencing remediation outcomes. Key Requirements: Deep understanding of security domains, with at least 3+ years of hands-on experience in security findings assessment and remediation. Governance knowledge, supported by experience in security findings fields (containers vulnerabilities, SAST, EASM findings, threat modeling, API-related findings). Knowledge in problem management, Secure DevOps, DORA, OWASP. Advanced troubleshooting and conceptual skills with a knack for resolving uncommon remediation-related problems. Familiarity with tools & methodologies for security findings assessment and enrichment. Proficiency in interpreting and communicating results via exploratory data analysis and statistical modeling techniques. Strong understanding of risk management and risk-based approaches. Experience in cross-organizational collaboration and negotiation. Experience in preparing and delivering presentations, clearly communicating remediation progress and strategic recommendations. Fluency in business and technical English is mandatory (both written and spoken). Experience in automation, preferably with Python, Apache Airflow, or Power Automate. Practical application of AI technologies in governance and automation workflows. Ability to mentor team members and facilitate knowledge sharing across the security function. Nice to Have: Additional certifications in cybersecurity or related fields. Experience with cloud security practices. Familiarity with regulatory compliance frameworks.