Published: 12 January 2024
Aarau
80% – 100%
Unlimited employment
swissgrid ag
Electricity flows with us. On behalf of Switzerland and in cooperation with international partners, we do our utmost every day to develop the best solutions for the Swiss electricity grid.
As a cyber security detection engineer, you have a significant impact on the security of Switzerland’s most critical infrastructure. You will be a member of the Cyber Defense Center and support this very diverse team to defend the IT and ICS networks and support to keep the lights on in Switzerland.
Cyber Security Detection Engineer (80-100%)
Participate in the power supply in Switzerland
In this very unique role you will be responsible for the operation and improvement of detection tools and identify new threats for Swissgrid. You will also help the analysts and incident responders to act in case of a security incident. You will take on the following tasks:
• Identify new threats and create detection use cases
• Actively improve our internal detection framework
• Analyse incidents and red team engagements to identify blind spots
• Analyse alerts from our monitoring tools and take action
• Define new detection as well as preventive measures
• Exchange views and experience with leading experts of other SOCs and CERTs from national and international critical infrastructure and governments
• On-call work within the framework of the Analyst on Duty framework
This is how you make the difference
For this position, we are looking for an innovative team player who is focused on finding solutions and who thinks out of the box. You like taking responsibility and act independently. We need a creative and committed person with a passion for the digital world and safeguarding civil infrastructure. You have the following:
This is what you can expect
We offer you varied and exciting tasks within a company that is unique in Switzerland. In addition, you can take advantage of the following benefits:
About us
The CDC at Swissgrid is a team of seven people, responsible for detection and response of cyber security incidents. The team is part of the Cyber Security department and directly reporting to the head of Cyber Security (CISO). We are a small, close-knit group who support each other in good and tough moments, who live security and technology and who strongly value inclusion and equality. We work together, and together we also enjoy a drink after a hard day - or from time-to-time we leave work behind and engage in leisure activities together.