Security Specialist

Job description:

This is an initial 1-year contract with a strong likelihood to extend long-term (up to 5 years), based on project roadmaps, with a start date by May 2026.

The team is made up of around 6 other members, and they focus on security assessments, technical reviews, security advisory, security process enhancement and automation, controls testing, and creation of Security standards following industry best practices.

As part of a diverse and experienced team you would perform cyber/technology risk assessments, technical security controls reviews across multiple platforms which include Cloud applications/environments, operating systems, container orchestration environments, CI/CD pipelines and network infrastructure.

The candidate should be able to assess technical controls, develop security policies and compliance standards, and enhance existing manual compliance checks processes. The candidate should have a very good technical understanding and ownership mindset. Also very dynamic, results oriented and comfortable with reporting.

In this role you will provide expert advice and operational experience on information security risk and control matters throughout the organisation.

This includes:

?

• Conduct technical control assessments/tests on applications and infrastructure components
• Integrating security into DevOps
• Enhance manual compliance review processes by leveraging automation
• Conduct compliance reviews/audits of the organization's information assets.
• Review of existing security standards/baselines and creation of new ones
• Review and advise on the security measures to protect the confidentiality, integrity and availability of the Bank's information assets and critical services.
• Perform risk assessments and contribute to reviews of the assessment methodology
• Contribute to the implementation of industry-recognised key critical controls and contribute to IT Security compliance mandate
• Support the team on technical security projects, in particular to develop and enhance the bank's security policies and procedures. Participate in the gathering and analysis of information from security-related sources

About the customer:

sh.webhire.com/servlet/av/search?SearchFields=ACCT_ID&ACCT_ID=550&SiteName=Internet&ResultTem

This would be an operational role running on going corporate security work-packages, also supporting various deliverables for projects.

Requirements:

• Proven experience in an offensive security role in an enterprise level environment e.g. as Security Engineer, Security Consultant etc
• Certification in security-related disciplines and technologies would be an advantage (accreditation such as OSCE, OSCP, OSEP, GPEN, GMOB, GXPN, OSWE, CISSP)
• Experience with scripting and automation / Software Engineering (Basic to Intermediate)
• Experience in enhancements of manual compliance reviews
• Security knowledge in cloud technology, operating system, application security, penetration testing and sound knowledge of cyber governance risk management practices
• Familiarity with industry-recognized frameworks and controls (e.g., NIST CSF, CIS, OWASP, SANS, SWIFT CSP etc...). We are looking for experience in implementing these frameworks.
• Experience with documenting and communicating results that may be consumed by both developers and management-level audiences.
• Confident communicator with the ability to engage technical and non-technical stakeholders
• Autonomous, proactive, and comfortable working in a governance-focused environment
• Fluency in English

• Microsoft Azure
• Identity and Access Management
• Openshift Container Platform
• Vulnerability Scanners
• SharePoint Online, DevOps
• Github

Compensation benefits:

Please note: Interviews are conducted via video call (two stages), however the role is 100% based in Switzerland.

Our client offers:

• Opportunity to work in a diverse and international environment
• 50% home office
• 20 days per year working remotely from abroad
•  Modern office in central Basel (50 minutes direct train from Zurich) with subsidised canteen

Are you interested in working in an international environment at one of the most important financial institutions worldwide?

Apply now! We look forward to receiving your full application before Thursday, 5 March.