Cyber Prevent and Assurance Manager

Your place in the team:

Develop and lead the Security Assurance & Prevent infrastructure, processes and procedures.

You will be involved in the following tasks:

• plan, coordinate, and execute cybersecurity assessments on IT infrastructure and applications, reporting risks to Senior Management
• collaborate with IT, business, and project teams to ensure security controls and procedures are implemented and monitored
• act as escalation point for cybersecurity testing, assurance processes, and methodologies
• review and evaluate project proposals and tenders in relation to information security requirements
• report technology security risks and propose remediation and mitigation options
• engage stakeholders on compliance and continuous improvement of information security controls
• ensure compliance with legal and regulatory requirements
• research new threats and security alerts, recommending remedial actions
• evaluate emerging technologies and vendor services for security, compatibility, and cost
• approve security configurations (firewalls, VPNs, IDS/IPS, WAF, OS, cloud, middleware, servers)
• coordinate security reviews of project proposals and tender materials
• monitor and ensure fulfillment of security requirements
• maintain IT and network security solutions, ensuring confidentiality, consistency, and availability
• develop, update, and deliver cybersecurity and data protection training materials
• participate in the Technology Risk Management process and identify key security controls
• communicate results of audits and provide consulting support
• support development teams by determining and reviewing security and compliance requirements

We are looking for you, if you have…

• BSc in Computer/Industrial/Electrical & Electronics Engineering (preferred)
• Master’s degree in Computer Science or equivalent information security experience (preferred)
• information security industry certifications (preferred)
• strong understanding of security principles, practices, and standards
• ability to communicate complex technology concepts at both high and technical levels
• knowledge of IT general controls: systems development, change management, computer operations, and data access
• 5+ years of progressive experience in Information Security
• solid understanding of operating systems, databases (UNIX/Linux, Windows Server), and network security
• advanced knowledge of major security tools (IDS/IPS, DLP, identity management)
• fluency in English

What we offer:

• cafeteria package & bonus or comission
• laptop & mobile phone (with unlimited voice and data tariff package)
• hybrid way of working
• corporate Health Insurance (Swiss Clinic)
• employee discounts (e.g. Vodaflotta)
• wellbeing program in the topics of sport, nutrition, relax and help (spiritual support)  
• 4 paid days leave/year for charity projects  
• other discounts (e.g. AYCM card, eye-glass allowance)  
• learning opportunities (internal trainings)