General Information

Junior Security Risk&Compliance Analyst
Work arrangement
Krakow, Rzeszow
Business Services Center (PL)
Information Technology
Area of interest
IT - Development, IT - Services
Way of work

Description & Requirements

Who we are looking for
Our Information Security and Compliance team provides services for Deloitte CE practitioners in 40+ offices and across 18 countries on matters that have to do with information security management and compliance, cybersecurity risk management, and coordination of incident response activities.

As a Junior Security Specialist in our team, you will assist with Level 1 handling of requests from our practitioners regarding various information security compliance requirements and exceptions, as well as assisting Senior specialists with specific tasks. You will be reporting to a Senior member of the Deloitte CE CISO team


  • 1+ year of experience working in a role handling information security;
  • Fluency in spoken and written English (C1);
  • Skills in Microsoft Office;
  • Ability to use their initiative, manage high workload effectively and meet deadlines;
  • Attention to detail and focus on quality whilst ensuring efficiency and maintaining a high work output.

Nice to have:

  • Any of the following certifications is a big differentiator: CISA, CISM, ISO 27001.
Your future role
  • Reviewing exception requests based on our exception management procedure and acting upon approved scenarios or escalating to colleagues for approvals as defined in the process;
  • Conducting application security assessments based on our procedure and security requirements, requesting and collecting information from business stakeholders and global services;
  • Assisting senior colleagues with specific tasks requiring assessment of contractual requirements;
  • Participating in meetings along senior colleagues, maintaining minutes, and following up on proposed action plans with interested parties;
  • Monitoring DLP alerts and collecting additional information from business stakeholders and data owners to identify false positives or confirm DLP incidents and escalate to senior colleagues;
  • Follow-up and track actions defined in the Risk Treatment Plan, update status throughout the company, and escalate delays or missed deadlines to senior colleagues within the team.
What we offer
Selection process
🛋️ Take part in our selection process right from the convenience of your home.

💻 In case your educational / professional background meets the core requirements of the position, we will invite you to a live video interview, that gives us the opportunity to talk to each other just like it was a meeting in person.