Alpiq is a leading Swiss energy services provider and electricity producer in Europe. We operate in 15 European countries, with revenues of approximatively CHF 15 bn in 2022 and 1200 employees. The Group Security team lead by the CISO (Chief Information Security Officer) takes care of IT, OT and Physical Security. We make sure Business and Support functions can run activities in a secured environment. 

As part of the Group Security team and reporting to the CISO, the Head of Security Operations will take over the Security Operations team which manages and supervises security incidents & alerts, leads the Security Operations Center (SOC), and improves the security of our Infrastructures. The Security Operations team especially works with IT, OT, business and support functions stakeholders to ensure proper end to end management of security incident, from detection to resolution and post incident action plans.

This role is an attractive opportunity for a seasoned security professional, who would like to put their experience to use in a challenging and dynamic environment. The incumbent manages a team of two and reports directly to the CISO. She/he is to be based at our offices in Olten or Lausanne, Switzerland with regular travels between these locations and occasional international business trips.
 
Main responsibilities

• Managing the SOC and building the Alpiq Computer Security Incident Response Team (CSIRT) based on the Security Operations team and cross departments capabilities. Security incidents being at the end, always treated and reported in a business perspective
• Leading the management of security incidents for the whole Group, ensuring that all required stakeholders are involved, that proper actions are allocated, taken and tracked, that remediation plan are documented, communicated and implemented. This includes post incident action plans
• Reporting Security incidents in a timely manner, with calibrated report and communication according to the targeted stakeholders (Line Management, C-Level, Data Privacy, Legal, Divisions, Business units, Countries, Technology teams, etc.)
• Defining together with all relevant stakeholders (Business stakeholders, Application owners, Project managers, etc) which data, assets and processes need to be protected and how, what kind of alerts to be implemented
• Providing security incidents pre-defined "Playbooks" and procedures to SOC and all relevant stakeholders to manage security incidents
• Running Security incidents and crisis simulations to prepare stakeholders to real security incidents
• Ensuring that legal or regulatory requirements are respected (working if need be, with Legal department and Data Privacy)
• Working closely with Infrastructure teams to monitor and improve the security on our Infrastructures and M365 stack. This implies the identification and implementation of processes, controls, and tools to manage monitor and manage security
• Leading the construction and follow-up of the Security Operation plan, involving all relevant stakeholders
• Contributing to Security budget construction, follow-up, and regular forecasts
• Managing a team of two Security specialists/operators

 
Your profile 

• University Degree or equivalent
• Several years of relevant experience in a similar position (Security operations, security incident & SOC Mgt, etc.)
• Excellent IT expertise and passion for complex systems, technologies and processes
• Solid experience in contract and provider management
• Continuous Improvement mindset and project/change management experience
• Excellent communication, cross-departments cooperation and influencing skills
• Fluent English required, additional French or German a plus