Promise Group is a leading Microsoft partner in CEE region, offering a wide range of products and services for clients from various economic sectors, including finance, telecommunications, media, energy, manufacturing, trade, services, public administration, education, and healthcare. The company has been operating since 1991 and, since 1996, has been the largest provider of Microsoft solutions in Poland. Promise Group specializes in software licensing optimization, IT systems design, implementation, maintenance, and business application development.

We are currently seeking talented individuals to join our team in the role of Senior IT Security Specialist!

Key Responsibilities

• Lead the development and implementation of IT security strategies, aligned with organizational goals and industry best practices.
• Own and run the day-to-day operation of security tools, incident response, threat monitoring, and mitigation.
• Manage and optimize Microsoft security technologies, including Microsoft Defender XDR, Sentinel, Intune, Azure AD, and M365 compliance tools.
• Perform regular security assessments, penetration testing coordination, and vulnerability management.
• Guide and mentor IT team members and promote a culture of security-first thinking across the organization.
• Drive security awareness training programs and simulate phishing campaigns.
• Evaluate and implement new tools and technologies to enhance our security approach
• Lead internal audits, support compliance initiatives (e.g., ISO 27001, GDPR), and manage security documentation.
• Collaborate with stakeholders and senior leadership to define risks, policy enforcement, and incident response plans.
  
  

Required

Our Requirements:

• 4 - 5+ years of hands-on experience in IT security roles, preferably in mid- to enterprise-level companies and within a Microsoft-based environment.
• Deep knowledge of Microsoft ecosystem security tools: Azure AD, Microsoft Defender, Sentinel, Intune, Conditional Access, M365 Security & Compliance Center.
• Familiarity with endpoint protection, firewalls, and vulnerability management tools.
• Experience with network security, firewalls, VPNs, endpoint protection, email security, and data loss prevention.
• Solid understanding of security frameworks and standards (NIST, ISO 27001, CIS).
• Strong analytical skills and a methodical approach to risk and threat analysis.
• Excellent communication skills and ability to influence at all organizational levels.
• Proactive mindset with the ability to independently drive initiatives forward.
• Passion for staying ahead of cybersecurity trends and evolving threats.
  
  

Preferred (Nice To Have)

• Certifications such as:
• Microsoft Certified: Security, Compliance, and Identity Fundamentals, SC-200, CISSP, CEH,
• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• Certified Information Systems Security Professional (CISSP)
• CompTIA Security+.
• Knowledge of scripting (e.g., PowerShell) for automation of security tasks.

We Offer

• Opportunities for professional development (participation in training, conferences, mentoring, shadowing are just some of the tools that support our people’s growth)
• Work with the largest Microsoft partner in Poland
• Stable employment in a company that has been in the market for over 30 years
• Hybrid or remote work model
• Non-corporate environment with focus on high level of collaboration among teams and team members
• Focus on integration – we meet for joint trips, picnics, play board games at work, and organize group outings
• Benefits package – Multisport card, private medical care, life insurance, subsidies for English classes. Plus, fresh fruit every Wednesday and ice cream treats on Thursdays during the summer months!
  
  

Our Values

Promise Group is dedicated to collaboratively enhancing technological competencies and inspiring individuals and organizations to achieve their full potential. Our culture is built on open communication, mutual respect, responsibility, trust, and commitment. We prioritize transparent dialogue and active listening, value diverse perspectives, and maintain healthy relationships by addressing concerns constructively. We take responsibility for our actions, keeping our promises and learning from mistakes. Trust is fundamental; we avoid superficial judgments and build strong connections. Our commitment to continuous improvement drives us to hone our skills, tackle new challenges, and pursue innovative initiatives, ensuring we make a positive impact on our clients, employees, and the broader community.