Technology Security Senior Expert

Your place in the team:

Coordinating and participate technology Audit, Risk and compliance assessments also covering mandatory state audits. Responsible for support all technology security and risk management processes are optimised for maximum efficiency in line with Cyber Security Baseline controls.

You will be involved in the following tasks:

• perform audits and security risk assessments for IT compliance (e.g., SOX 404, PCI DSS, ISO 27001)
• identify and evaluate cyber risks, offering recommendations for improvement
• assess and document the effectiveness of security controls for systems, networks, and applications
• support ISO 27001 audits and maintain ISMS documentation and controls
• develop and enforce security policies, standards, and regulations
• conduct IAM security control design and process definition
• design and deliver cybersecurity awareness training
• participate in Technology Risk Management processes
• assist in security reviews and evaluations of projects and tender materials
• support security incident analysis and response activities
• collaborate with IT, business, and project teams to implement and monitor security controls
• evaluate and improve existing security processes and procedures
• support Data Loss Prevention (DLP) analysis, alert handling, and policy fine-tuning
• provide assurance and consulting services to enhance security operations and compliance adoption

We are looking for you, if you have…

• Bachelor's degree in Computer, Industrial, or Electrical & Electronics Engineering (preferred)
• Master's degree in Computer Science or equivalent information security experience is an advantage
• information security certifications (e.g., CISA) are highly preferred
• strong understanding of security principles, practices, and standards with practical application
• proficiency in communicating complex technology risks and controls at both strategic and technical levels
• solid knowledge of IT general controls, including system development, change management, computer operations, and access controls
• 5+ years of progressive experience in information security
• expertise in security tools and technologies such as intrusion detection/prevention systems, data loss prevention, and identity management
• fluent in English, with strong communication skills

What we offer:

• cafeteria package & bonus or comission
• laptop & mobile phone (with unlimited voice and data tariff package)
• hybrid way of working
• corporate Health Insurance (Swiss Clinic)
• employee discounts (e.g. Vodaflotta)
• wellbeing program in the topics of sport, nutrition, relax and help (spiritual support)  
• 4 paid days leave/year for charity projects  
• other discounts (e.g. AYCM card, eye-glass allowance)  
• learning opportunities (internal trainings)