About us

At Auctane, we are united by a passion to help sellers — wherever they are, however they operate — fulfill the promises they make to consumers. The Auctane mission is to fuel commerce through exceptional delivery. We make it possible for businesses to meet the ever rising expectations of their customers, and we make the world smaller and more accessible to consumers everywhere. Auctane brands enable hundreds of thousands of merchants to annually deliver billions of products — over $200 billion worth — to customers around the globe. And Auctane is just getting started.

Auctane is a team of shipping and software experts with a passion for helping merchants move their ideas, dreams and innovations around the globe. The Auctane family includes ShipStation, ShipWorks, ShipEngine, ShippingEasy, Stamps, Endicia, Metapack, Shipsi, GlobalPost, and Packlink. Our partners include Amazon, UPS, USPS, eBay, BigCommerce, Shopify, WooCommerce, and Walmart.

Our values

About the role

The mission of this role is to be a key contributor to the day to day operational InfoSec management. The role will be responsible for leading the detection and response of cyber security threats/incidents, as well as managing the vulnerability management process.

This role will play a key part in shaping the processes and ways of working to best ensure Auctan identifies and responds to threats and cyber attacks.

What will you be doing?

Learn and train, to enhance knowledge of Security Orchestration and Automation. Working to review and enrich playbooks and see opportunities for automation efficiencies in our Security detection and response capabilities.
Liaising with the Engineering teams on incident response, vulnerability management and remediation actions
Responsible for providing technical expertise in the support of security incidents using a plethora of leading security tools, coupled with continuous learning and training
Working with AWS & GCP Cloud-native security tooling such as GuardDuty, Security Hub, GCP Security Command Center to ensure a level of protection & monitoring of threats in Auctane Public Cloud envs.
Following up on regular security reviews, vulnerability, risk assessments and audits utilising our CSMP tool Wiz and Endpoint vulnerability tool Crowdstrike.
Building relationships with all staff to promote “Security by Design” throughout the Engineering Teams and wider business, including Infosec Training and Awareness
Being part of the internal Infosec / cyber security incident process - investigate suspected attacks and help manage security incidents, including providing post-mortem analysis, identify causes, develop solutions and preventive measures
Responding swiftly to new and emerging security threats and vulnerabilities, investigate suspected attacks and be an integral part of the Information security incident process

What are we looking for?

As a trusted authority within Information Security who can demonstrate and apply the following:

Previous experience working in an Incident Response style role (internal or customer facing)

General/ Basic Knowledge:
- IT (Mac, Windows OS’s)
- Public cloud Environments (AWS, GCP)
- Networking Protocols

Awareness of MITRE ATT&CK framework in a Detect and Respond environment

Entry level Experience of security tooling and technologies, including:
- EDR (Crowdstrike)
- Email Protection (email - Abnormal)
- Google Workspace
- Identify Providers (OKTA)
- GCP/AWS native security (Guard Duty, Security Hub)

Knowledge of vulnerabilities, threats, attack methods and infection vectors with Cloud Environments.
Able to balance the demands of delivering high quality and demanding timescales.
Hold yourself accountable to delivering on your commitments.
Have a “can-do” attitude and demonstrate a passion for new technology and learning and cross-team collaboration.

What will make you stand out?

Knowledge of vulnerabilities, threats, attack methods and infection vectors with SDLC
Experience in using automation to solve problems (Tines.io) and SIEM
Involvement in the Scoping and coordination of 3rd Party Pen Tests
General development knowledge:
A desire to constantly challenge the norm

What do we offer?

🗓️ Annual Salary Review: We are reviewing the salaries of all our teams annually in order to evaluate an increase according to individual performance and the business results.
📦 99% discount on your personal shipment orders via Packlink.pro
💙 Up to 500 PLN/year to match your NGO donations! We are happy to support your initiatives by duplicating the amount donated.
😊 Volunteer day. You can take 1 day off per year in order to participate in volunteering activities! We will love to see some pictures in our slack!
Referral Fee 🔗 We need your support in hiring top-class talent! We offer a referral bonus of 4-20K, depending on the complexity of the role and the hiring process.
👩‍⚕️We have an Employee Assistance Program with psychological assistance free of charge.
⚖️ Great work-life balance We offer a flexible work schedule and will do our best to adapt to your personal situation. Working in a fast-paced environment can be intense, but that doesn’t mean you shouldn’t enjoy your free time!
💜 An inclusive and upbeat work environment Leave your suit behind... we’re a t-shirt and converse kind of place! More importantly, our company culture promotes diversity and inclusion. The personality and opinions of each of our team members are important and valid, and we aim to offer all employees a safe environment where they can be themselves and thrive.
🌍 A cross-cultural atmosphere We are a truly international team of 20 nationalities that speak 10 languages. Our company language is English and all internal communication and company-wide meetings are in English.
🏟️ Company events Work hard, play hard! We do our best every day, even at our regular team-building events.
📺 Internal and external training, free access to online training platforms such as Linkedin Learning

🏠 Possibility to work in a home-office using equipment provided by AUCTANE, or in our office prepared in accordance with all safety requirements.
📙 Personal Training Budget. Up to 7.600/ 3.500 PLN/year training budget (certifications, conferences attendance, etc.) to invest in your professional development. We want to help you improve your technical skills, feel involved in the product community, and develop your soft skills to lead teams and manage other stakeholders.
🌅 Up to 30 days of vacation per year (additional days are granted along with seniority at AUCTANE).
🗺️ Languages classes every week. Thirsty for knowledge? Learn a new language by joining our free English/Spanish/German classes. You can connect and enjoy taking up a new language or improving your current skills with one of our great instructors.
🏥 Free private medical insurance.
📄 Attractive life insurance.
🏐 Co-financing for sports and recreational activities
🏐 Gym membership co-financing
🏢 A nice Office in Zielona Gora (free drinks, snacks…)
Do you want to know a little bit more about the team? Please, don’t hesitate to reach out to Amazing Auctane-PL and our Instagram

Apply for this Job

* Required

First Name *

Last Name *

Email *

Phone *

Resume/CV *

Dropbox Google Drive

(File types: pdf, doc, docx, txt, rtf)

Cover Letter

Dropbox Google Drive

(File types: pdf, doc, docx, txt, rtf)

When autocomplete results are available use up and down arrows to review

+ Add another education

+ Add another employment

Please provide your Primary Home Address. *

Please provide your Primary Home Address.

LinkedIn Profile

Website

Have you ever worked for our company in the past? *

If a current employee, please provide your email address.

Do you have any relatives employed at the company? *

If applicable, please list the Full Name of the relative who works for the company. (We are not asking for relationship type.)

Do you have legal authorization to work in the United States? *

Will you now or in the future require work visa sponsorship (e.g.H-1B, TN, E-3, F-1 Stem Eligible) for employment? *

If applicable, what type of sponsorship will you require now or in the future? (Optional and Voluntary)

For California Applicants: CPRA Notice

For California Residents; please read the following notice in its entirety. Find the CPRA Notice here.

I am a California resident and acknowledge the CPRA notice.
I am not a California Resident.

Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in Auctane Careers’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Gender

Are you Hispanic/Latino?

Please identify your race

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Veteran Status

Voluntary Self-Identification of Disability

Form CC-305

Page 1 of 1

OMB Control Number 1250-0005

Expires 04/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

Alcohol or other substance use disorder (not currently using drugs illegally)
Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
Blind or low vision
Cancer (past or present)
Cardiovascular or heart disease
Celiac disease
Cerebral palsy
Deaf or serious difficulty hearing
Diabetes
Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
Epilepsy or other seizure disorder
Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
Intellectual or developmental disability
Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
Missing limbs or partially missing limbs
Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
Partial or complete paralysis (any cause)
Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
Short stature (dwarfism)
Traumatic brain injury

Disability Status

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

Our system has flagged this application as potentially being associated with bot traffic. Please turn off any VPNs, clear your browser cache and cookies, or try submitting your application in a different browser. If this issue persists, please reach out to our support team via our help center.

Please complete the reCAPTCHA above.

Security Analyst

Apply for this Job

Voluntary Self-Identification

Voluntary Self-Identification of Disability