Technical Cloud Security Analyst

Cloud Security Specialist (CNAPP)

About the Role

We are looking for an experienced Cloud Security Specialist to join a growing Cloud-Native Application Protection Platform (CNAPP) team.

In this role, you will act as a key link between business stakeholders and engineering teams, ensuring effective embedding of CNAPP capabilities into internal processes. You will translate security and cloud-related requirements into actionable user stories and technical specifications aligned with agile delivery milestones.

This position combines deep technical cloud security expertise with strong stakeholder management and Agile delivery experience.

Key Responsibilities

• Gather, analyze, and document functional and non-functional requirements in collaboration with architects, cloud engineers, container teams, and control owners

• Act as Subject Matter Expert (SME) in cloud and container security

• Define and prioritize epics and user stories within Agile/Scrum frameworks

• Maintain traceability between business requirements and delivered technical features

• Advise stakeholders on CNAPP capabilities including:

  • Vulnerability scanning

  • Cloud Security Posture Management (CSPM)

  • Asset inventory and compliance monitoring

• Conduct workshops, demos, and design validation sessions

• Define clear acceptance criteria for delivered solutions

• Support API integrations and system integrations (e.g., reporting platforms, data lake integrations)

• Collaborate closely with engineering teams across cloud, containers, and cybersecurity domains

Required Experience & Skills

Technical Skills

• 5+ years of experience as a Cloud Security SME in cloud and security projects

• Hands-on experience with CNAPP, CSPM, vulnerability management, compliance controls, and configuration baselines

• Strong understanding of DevSecOps practices

• Experience working in Agile/Scrum environments (epics, features, user stories)

• Experience with APIs, microservices, Kubernetes, and public cloud platforms (AWS, GCP)

• Familiarity with data platforms (e.g., Databricks or similar)

• Understanding of regulatory and compliance frameworks (e.g., PCI-DSS, CIS Benchmarks)

• Relevant cloud certifications (AWS, GCP) – nice to have

Soft Skills

• Excellent stakeholder management and communication skills (written and spoken English)

• Ability to work in fast-paced, evolving environments

• Strong prioritization and consensus-building skills

• Proactive, collaborative, and self-driven mindset

• Ability to meet tight delivery timelines without compromising quality

Location & Work Model

• Hybrid work model – 6 days per month from the office in Kraków (preferred) or Warsaw

Contract Type

• B2B contract

Benefits

• Private medical care (LuxMed)

• MyBenefit cafeteria platform

• Dedicated Contractor Care support